著者

Motoyuki Ohmori

雑誌

研究報告インターネットと運用技術(IOT) (ISSN:21888787)

巻号頁・発行日

vol.2018-IOT-43, no.3, pp.1-3, 2018-09-20

---

Computer security has been getting more attentions because a computer security incident may cause great damage on an organization. It may be then said that an inventory of hosts should be necessary in order to prepare for a security incident. It is, however, difficult to build up an inventory and keep it up-to-date. In addition, it is still unclear which items of an inventory of hosts are really necessary and which items are unnecessary. This paper then discusses the necessary items for an inventory from the viewpoint of feasibility. This paper also discusses how an inventory should be maintained regarding a security incident. This paper then presents how to automatically collect inventory items in order to make it easy to maintain an inventory.

著者

Motoyuki Ohmori Masayuki Higashino Toshiya Kawato

雑誌

研究報告インターネットと運用技術(IOT) (ISSN:21888787)

巻号頁・発行日

vol.2018-IOT-42, no.6, pp.1-5, 2018-06-21

---

In order to appropriately and quickly handle a security incident, ones may need Incident Tracking System (ITS) that records facts: what happens, when happens, who handles and how. It may be, however, difficult for a person in charge of incident handling to input all detailed information to ITS, and ITS should have minimal but enough information for further incident handling. In addition, a person in charge should be able to operate ITS intuitively since an incident does not happen so often. It is, however, unclear what information ITS should hold and how ITS navigates a person in charge to complete incident handling. This paper discusses these issues, and introduces our implementation and usage of ITS using Redmine within Computer Security Incident Response Team (CSIRT).