Click here to load reader
Web view本ツールは、中小企業向けの情報セキュリティポリシーのサンプルです。ツールAの結果をもとに自社に必要なサンプルを
Embed Size (px)
Citation preview
1
2
5
2
7
3
9
4
12
5
21
6
24
7
26
8
34
9
38
10
40
11
42
12
47
13
48
Ver.1.4
1
20yy.mm.dd
1.
//
1.
2.
3.
4.
5.
2.
//
1.
2.
(1)
(2)
(3)
(4)
3.
4.
5.
6.
43
1
20yy.mm.dd
1.
2./
//
3.
IPA
[]
https://www.ipa.go.jp/security/
[]
https://www.ipa.go.jp/security/kokokara/
JVNJapan Vulnerability Notes
https://jvn.jp/index.html
JPCERT JPCERT/CC
https://www.jpcert.or.jp/
http://www.ppc.go.jp/
2
20yy.mm.dd
1.
2.
1
3.
4.
5.
IPA
3
20yy.mm.dd
1.
1.1
2
1
0
1.2
1.3
1.4
2.
/
USBHDD
USB//
3.
3.1
//
USBHDDCDDVD
//OS
3.2
USBHDDCD-RWDVD-RW
OS
CD-RDVD-R
4.
4.1
Windows Server
NAS
USB
HDD
Web
NAS
4.2
NAS
3.
4.3
4
20yy.mm.dd
1.
1.1
1.2
25
15507
:
:
9312
:
1.3
2.
2.1
2.2
2
(1)
(2)
(3)
(4)
2.3
19
2.4
19
2.5
16
2.6
2.1
22.1
(1) 94
(2)
2.7
191114
2.8
19
2.9
2.1
2.10
19
2.11
2.12
3.1
5.3.4
2.13
4.5.
3.
3.1
(1)
(2)
(3)
(4)
(5)
(6)
(7)
(8)
(9)
(10)
(11)
3.2
3.3
3
4.
4.1
4.2
5.
5.1
5.1.1
3.
5.1.2
5.1.3
5.1.4
5.1.5
5.2
5.2.1
5.3
5.3.1
5.3.2
5.3.3
5.3.4
5.4
5.4.1
5.4.2
5.4.3
.
5.4.4
6.
6.1
(1)
(2)
(3)
6.2
2
6.3
2.62.32.10
34
5
20yy.mm.dd
1.
9.1
2.
9.2
11
3.
9.3
4.
5.
9.3
6.
7.
9.4
8.
9.
9.1
Windows Active Directory
Web
9.2
Windows
ID
ID
9.3
WindowsOSadministratoradmin
LinuxOSroot
12
Guest
12
1
36
10
1
51
9.4
MAC
IP
6
20yy.mm.dd
1.
1
2
//
3
USBHDDCD-R
2.
LAN
3.
FAX
4.
/
1
7
20yy.mm.dd
1.
1.1
6.1
1.2
1.3
6.2
1.4
1.4.1
1.4.2
6.3
1.4.3LAN
LAN
1.5
2.
USBHDDCD
3.
3.1
USBHDDCD
3.2
5
5
WindowsL
4.
4.1
/
()
()
4.2
SSL/TLS
4.3
4.4
TOBCC
CCTO
ZIP/
HTML
HTML
4.5
3
URL
VIP
()
ID
URL
URLURLHTML
FAX
(exe/scr/cpl)
(lnk)
RLO4
5.
USBHDDCD/
5.15.3
5.1
Wi-Fi
5.2
OS
LAN/
5.15.3
LAN
App StoreGoogle Play
Wi-Fi
5.2.1
/
LAN/
5.3
6.
6.1
Windows
Microsoft
7
Office
Microsoft
2007
Outlook
Microsoft
2007
Ver.
Ver.
Ver.
Ver.
6.2
Windows10
Microsoft
Office2016
Microsoft
Microsoft Update
Adobe Reader
Adobe
Android
Google
iOS
Apple
iOS
6.3
8
20yy.mm.dd
1.
1.1
1.1.1
6.1
1.1.2
6.2
1.1.3
6.4
2.
3
LAN
/
3.
6.5
4.
5.
6.
6.1
Windows Active Directory
Windows
Windows
TB
RAID
GB
6.2
Windows Server
Microsoft
2008
SQL
Ver.
Ver.
Ver.
Ver.
6.3
OS
Ver.
Ver.
Ver.
Ver.
6.4
MAC
6.5
ISMSISMS/ISMS
PCI DSS
ASPSaaS
9
20yy.mm.dd
1.
1.1
1
2
3
4
5 /
6
7
8
1.2
IPA
https://www.ipa.go.jp/security/vuln/index.html
1.3
1.4
1.5
1
2
3
4
5
6
10
20yy.mm.dd
1.
1.1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
1.2
1.3
1
2
3
4
5
6
7
1.4
1.1
1.5
1.11.31.4
11
20yy.mm.dd
1.
2.
3
2
1
0
3.
1
090-****-****
president@*****.co.jp
090-****-****
incident@*****.co.jp
090-****-****
system@*****.co.jp
4.
4.1
3
1
2
3 /
4
5
6
7
2
1
2
3
1
2
4.2
3
1
2
3
4
5
6
7
2
1
2
3
4
5
6
7
1
1
2
3
4
5
6
0
4.3
1
2
3
4
5
6
7
4.5
(IPA/ISEC)
https://www.ipa.go.jp/security/outline/todokede-j.html
TEL: 03-5978-7518
[email protected]
[email protected]
FAX03-5978-7518
https://www.ipa.go.jp/security/anshin/index.html
TEL:03-5978-7509
[email protected]
5.
5.1
5.2
()
()
()
()
5.3
12
20yy.mm.dd
1.
1.2.
13
20yy.mm.dd
1.
1
1.
2.1212
3
(1)
(2)
(3)
(4)(3)
(5)
(6)
(7)
(8)(5)
(9)(8)(5)
(10)
1.
2.3
3.
