September 2018
Beginner to intermediate
224 pages
5h 33m
Japanese
Content preview from 図解まるわかり セキュリティのしくみ
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
44
個人情報でなければ、途中の経路で盗聴されても「特に被害はない」と
感じるかもしれません。しかし、他愛のない会話であっても、途中で書き
換えられてしまうと、送信した内容とまったく異なる内容が相手に届いて
しまうかもしれません。
このように伝送途中のデータを書き換えられてしまうことをとい
います(図 2-4)。メールの文章を書き換えられる程度であれば、やりと
りの最中に気づくかもしれませんが、購入した商品の数量を書き換えられ
て、10 倍、100倍の数が発注されていたらどうでしょう。購入者はもち
ろん、店舗や配送業者も巻き込んだ問題になってしまいます。
通信が暗号化されていれば問題ないと考えてしまいがちですが、第5 章
ので登場するように、「中間者攻撃」をされる可能性もあります。
この場合、送受信者の双方がまったく気づかない状況も考えられます。
途中の経路ではなく、ファイルなどが書き換えられる改ざんもありま
す。例えば、Webサイトの更新に使われる が乗っ取られ
ると、Webサイトのコンテンツが書き換えられます(図 2-5)。また、デ
ータベースのアカウントが乗っ取られると、その権限でアクセスできるデ
ータベースの内容が書き換えられます。
このように、Webサーバの管理者権限や、コンテンツの更新権限が奪
われると、その権限でアクセス可能なコンテンツを改ざんすることが可能
です。また、偽サイトを作成し、本来のサイトへのアクセスを自動的に偽
サイトに誘導させるような方法も考えられます。 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.