September 2018
Beginner to intermediate
224 pages
5h 33m
Japanese
Content preview from 図解まるわかり セキュリティのしくみ
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
22
情報セキュリティのCIA(三要素)
情報セキュリティマネジメントシステム(ISMS)に関する国際規格の日
本語版であるJISQ27000 では、「情報セキュリティ」を「情報の
(Confidentiality)、(Integrity)及び(Availability)を維持す
ること」と定義としています。それぞれの頭文字を取って、
と呼ぶこともあります。
許可されたものだけが使える「機密性」
許可されたものだけが利用できるように設計されていることを「機密性」
が高いといいます。ここで、許可された「もの」というのは人だけではあり
ません。コンピュータなどの機械に対しても、()を適
切に与える必要があります(図1-10)。
内容が正しい状態を保つ 「完全性」
改ざんや破壊が行われておらず、内容が正しい状態にあることを「完全
性」が保たれているといいます。ファイルの中身が不正に書き換えられて
いないこと、ネットワークなどを経由する間に情報が失われていないこと
などを証明する必要があります(図1-11)。
障害の影響を受けにくくする「可用性」
障害が発生しにくく、障害が発生しても影響を小さく抑えられ、復旧ま
での時間が短いことを「可用性」が高いといいます。機密性や完全性が維
持されていても、システム自体が使えなくては意味がありません。サイバ
ー攻撃を受けてシステムが停止すると可用性は損なわれるので、そうなら
ないようにいつでも利用可能にする必要があります ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.