セキュリティ意識の向上を目的としたサーバ侵入演習の実践と評価

Presentation	2018-07-25 Practice and Evaluation of Penetration Testing Exercises for Raising Cybersecurity Awareness Daisuke Suzuki,
PDF Download Page	PDF download Page Link
Abstract(in Japanese)	(See Japanese page)
Abstract(in English)	The aim of this study is to clarify the educational effect of a penetration testing exercise aimed at raising cybersecurity awareness and promoting acquisition of security knowledge and skills. In the exercise, students perform server attack experiments in virtual environments on their laptops and also experience attacks on servers in their laboratory. In order to participate in this class, students are required to learn about compliance. Student self-assessment and confirmation test clarified that this exercise is effective for students to acquire security knowledge and skills. From reactions of students, it was also found that this exercise stimulates students' interest in security and compliance training has the effect of preventing students from abusing skills acquired in the exercise.
Keyword(in Japanese)	(See Japanese page)
Keyword(in English)	Information security / Information assurance / Server construction / Penetration testing / Curriculum design
Paper #	ISEC2018-25,SITE2018-17,HWS2018-22,ICSS2018-28,EMM2018-24
Date of Issue	2018-07-18 (ISEC, SITE, HWS, ICSS, EMM)

Conference Information
Committee	HWS / ISEC / SITE / ICSS / EMM / IPSJ-CSEC / IPSJ-SPT
Conference Date	2018/7/25(2days)
Place (in Japanese)	(See Japanese page)
Place (in English)	Sapporo Convention Center
Topics (in Japanese)	(See Japanese page)
Topics (in English)	Security, etc.
Chair	Tsutomu Matsumoto(Yokohama National Univ.) / Atsushi Fujioka(Kanagawa Univ.) / Tetsuya Morizumi(Kanagawa Univ.) / Yoshiaki Shiraishi(Kobe Univ.) / Keiichi Iwamura(TUC)
Vice Chair	Shinichi Kawamura(Toshiba) / Makoto Ikeda(Univ. of Tokyo) / Shiho Moriai(NICT) / Shoichi Hirose(Univ. of Fukui) / Masaru Ogawa(Kobe Gakuin Univ.) / Takushi Otani(Kibi International Univ.) / Hiroki Takakura(NII) / Katsunari Yoshioka(Yokohama National Univ.) / Minoru Kuribayashi(Okayama Univ.) / Tetsuya Kojima(NIT,Tokyo College)
Secretary	Shinichi Kawamura(Kobe Univ.) / Makoto Ikeda(SECOM) / Shiho Moriai(Tokai Univ.) / Shoichi Hirose(NICT) / Masaru Ogawa(Tokyo Univ. of the Arts) / Takushi Otani(Toyo Eiwa Univ.) / Hiroki Takakura(NTT) / Katsunari Yoshioka(NICT) / Minoru Kuribayashi(NIT, Tokyo) / Tetsuya Kojima(Tyukyo Univ.)
Assistant	/ Kazunari Omote(Tsukuba Univ.) / Yuuji Suga(IIJ) / Hisanori Kato(KDDI Research) / Nobuyuki Yoshinaga(Yamaguchi Pref Univ.) / Daisuke Suzuki(Hokuriku Univ.) / Akira Yamada(KDDI labs.) / Keisuke Kito(Mitsubishi Electric) / Hiroko Akiyama(National Institute of Technology, Nagano College) / キタヒロカネダ(CANON)

Paper Information
Registration To	Technical Committee on Hardware Security / Technical Committee on Information Security / Technical Committee on Social Implications of Technology and Information Ethics / Technical Committee on Information and Communication System Security / Technical Committee on Enriched MultiMedia / Special Interest Group on Computer Security / Special Interest Group on Security Psychology and Trust
Language	JPN
Title (in Japanese)	(See Japanese page)
Sub Title (in Japanese)	(See Japanese page)
Title (in English)	Practice and Evaluation of Penetration Testing Exercises for Raising Cybersecurity Awareness
Sub Title (in English)
Keyword(1)	Information security
Keyword(2)	Information assurance
Keyword(3)	Server construction
Keyword(4)	Penetration testing
Keyword(5)	Curriculum design
1st Author's Name	Daisuke Suzuki
1st Author's Affiliation	Hokuriku University(Hokuriku Univ.)
Date	2018-07-25
Paper #	ISEC2018-25,SITE2018-17,HWS2018-22,ICSS2018-28,EMM2018-24
Volume (vol)	vol.118
Number (no)	ISEC-151,SITE-152,HWS-153,ICSS-154,EMM-155
Page	pp.pp.131-136(ISEC), pp.131-136(SITE), pp.131-136(HWS), pp.131-136(ICSS), pp.131-136(EMM),
#Pages	6
Date of Issue	2018-07-18 (ISEC, SITE, HWS, ICSS, EMM)