Tag: japanese


Jul 25, 2022
WebAuthnã®å®è£ ïŒ Yubicoããã®æ°èŠã¢ããããŒãã®éèŠæ§
WebAuthnã§ã¯ããããã®ç¥èªãšãããã³ã«ã䜿ãããŠããŸãã ãããããããã®æå³ãšããããã®äžããéèŠãªãã®ã ããç¹å®ããæ¹æ³ãçè§£ããŠããŸããïŒ åŒç€Ÿã§ã¯ãããããã説æãšãµããŒãã®äž¡æ¹ããçšæããŠããŸãã ãã®ããã°ã§ã¯ãWebAuthnã®å®è£ ã®ã³ãããjava-webauthn-serverã©ã€ãã©ãªã®ã¢ããããŒããYubicoã®WebAuthnã¹ã¿ãŒã¿ãŒãããã®ææ°çã«ã€ããŠã®ãã¥ãŒã¹ããäŒãããŸãã åæ Universal 2nd FactorïŒU2FïŒã¯ãYubiKeyãªã©ã®ããŒããŠã§ã¢ããŒã¯ã³ã䜿ã£ããªãŒãã³èªèšŒèŠæ Œã§ãã ããã¯åœåãFIDOã¢ã©ã€ã¢ã³ã¹ã«ãã£ãŠ2014幎ã«å ¬éãããŸããã Yubicoã¯ãã®èŠæ Œãéçºè ã§ãYubiKeysã¯æåã®Universal 2nd FactorïŒU2FïŒã»ãã¥ãªãã£ããŒã®ã²ãšã€ã§ããã ãã®èŠæ Œã¯äž»ã«æ¬¡ã®2ã€ããæ§æãããŠããŸãã ãã¹ãã³ã³ãã¥ãŒã¿ïŒã¯ã©ã€ã¢ã³ãïŒãšã»ãã¥ãªãã£ããŒïŒãªãŒã»ã³ãã£ã±ãŒã¿ïŒã®éã§ USB ãŸã㯠NFC ãä»ããŠéä¿¡ããããã«äœ¿çšãããFIDO U2F HIDãããã³ã« ïŒåŸã«CTAP1ãClient To Authenticator Protocolã«æ¹åïŒ. ãŠã§ããµã€ãã§èªèšŒæ å ±ã®ç»é²ãšèªå®ã«äœ¿çšãããFIDO U2F JavaScript API ãããã®ãããã³ã«ã®ãµããŒãã¯è€æ°ã®ç°ãªããã©ãŠã¶ã«è¿œå ããããã®èŠæ Œã¯ã³ã³ã»ãããå®èšŒãšèšŒæã«äœ¿ãããŠããŸããããããã€ãã®å¶çŽãæ®åã®åŠšãã«ãªã£ãŠããŸããã é²å U2Fã¯ã»ãã¥ãªãã£ã®åŒ·åãšäœ¿ãåæã®é¢ã§ã¯åªããŠããŸãããããŸã æ¹åã®äœå°ããããŸããã U2Fã®åŸç¶ãœãªã¥ãŒã·ã§ã³ã¯FIDO2ã§ãããã¹ã¯ãŒãã¬ã¹ãã°ã€ã³ããããã€ã¹äžã§ã®PINãçäœèªèšŒã®ãµããŒãããã®ä»ããã€ãã®æ¡åŒµæ©èœãªã©ã倿°ã®æ°ãããŠãŒã¹ã±ãŒã¹ã«å¯Ÿå¿ããŠããŸãã ãã®è£œåã«ããããããã®æ°æ©èœãã»ãã¥ãªãã£ããŒã§ãµããŒãããCTAP2ãšãFIDO U2F JavaScript APIã®åŸç¶è£œåã§ããWebAuthnãšããæ°ããAPIãç»å ŽããŸããã WebAuthnã¯åŸæ¥ã®JavaScript APIã«å®å šã«ä»£ãããW3Cã«ãã£ãŠæšæºåãããäž»æµãã©ãŠã¶ã§å®è£ ãããŠããŸãã æ§åã®U2F APIã®ãµããŒãã¯çŸå𿮵éçã«çµäºããŠããŠã倧åã®ãã©ãŠã¶ã§ã¯æ©èœããŠããŸããã ããã§ãWebAuthnã®åºçªãšãªããŸããWebAuthnã¯ãCTAP1ïŒU2Fãããã³ã«ïŒããã³CTAP2ïŒFIDO2ãããã³ã«ïŒã®äž¡æ¹ãšå®å šãªäºææ§ããããŸãã ãŸããWebAuthn APIãå©çšããæ¡åŒµæ©èœã«ãããå€ãU2FèªèšŒæ å ±ãç¶ç¶ããŠå©çšããããšãå¯èœã§ããŠãŒã¶ãŒã¯ã»ãã¥ãªãã£ããŒãåç»é²ããªããŠããåŒãç¶ã䜿çšã§ããŸãã WebAuthnã¯ã»ãšãã©ã®éçºè ãæ¥ããAPIãªã®ã§ããWebAuthnãã¯ãã©ãŠã¶ã ãã§ãªããã»ãã¥ãªãã£ããŒãããµãŒããŒãŸã§ã®ãšã³ãããŒãšã³ãã®å®è£ å šäœãæãçšèªã«ãªã£ãŠããŸãã WebAuthnå®è£ æ¹æ³Â  ãããŸã§ããã¹ãããèªèšŒã·ã¹ãã ãžã®éä¿¡ïŒCTAPïŒãWebããŒãžãããã©ãŠã¶ãžã®éä¿¡ïŒWebAuthnïŒã«ã€ããŠèª¬æããŠããŸãããããµãŒããŒåŽã«ã€ããŠã¯ãŸã 確èªããŠããŸããã FIDO2仿§æžã§ã¯ããµãŒããŒãèªèšŒæ å ±ãæ€èšŒããããã«å¿ èŠãªããšã段éçã«èª¬æããŠããŸãããå®éã®WebAuthnã®å®è£ ã¯èªè ã®æŒç¿ãšããŠæ®ãããŠããŸãã å®è£ ã«äœ¿ããã©ã€ãã©ãªã¯ããã€ããããŸããããã®äžã§ãYubicoã®java-webauthn-serverã©ã€ãã©ãªããŒãžã§ã³2.0ã¯ãå ¬éãããã°ããã§ãã ãã®ã©ã€ãã©ãªã䜿çšãããšãæ¢åã®JVMããŒã¹ã®ããã¯ãšã³ãã«WebAuthnã®ãµããŒãã远å ããæ¬¡ã®ããšãå®è¡ã§ããŸãã ã¯ã©ã€ã¢ã³ãã«éä¿¡ããå¿ èŠããããã€ããªã¡ãã»ãŒãžã®äœæãšèªã¿èŸŒã¿ æå·çœ²åã®æå¹æ§ç¢ºèª 仿§ã«ãã£ãŠèª²ãããèŠåã®å±¥è¡ ãã®æ°ããã©ã€ãã©ãªã¯ãFIDO Metadata Service …

Jul 25, 2022
ç¶ç¶çãªèªèšŒã®ããã®åºç€æ§ç¯
ç¶ç¶çãªèªèšŒãšã¯ãã·ã¹ãã ãã¢ããªã±ãŒã·ã§ã³ãããã€ã¹ã®éãè¡ãæ¥ãããŠãŒã¶ãŒã®ã¢ã€ãã³ãã£ãã£ããªã¢ã«ã¿ã€ã ã«æ€èšŒããæ©èœãæäŸãããå°æ¥ã®ãå®å šãªç¶æ ãã®ã»ãã¥ãªãã£ã®æŠå¿µã®ããšã§ãã çè«çã«ã¯ãç¶ç¶çãªèªèšŒãœãªã¥ãŒã·ã§ã³ã¯ãããŸããŸãªç£èŠãœãŒã¹ããã®ãªã¹ã¯ä¿¡å·ã䜿çšããŠãŠãŒã¶ãŒãèªèšŒããæœåšçãªè åšãç¹å®ãã䟵害ããããšãã©ã°ãä»ããããèªèšŒæ å ±ã®æ©èœãç©æ¥µçã«ä¿®åŸ©ããŸãã ãããã仿¥ãç¶ç¶çãªãŠãŒã¶ãŒèªèšŒã¯æŠå¿µã«ãããããŸã 確ç«ãããèŠæ Œã§ã¯ãããŸããã æ¥çš®å šäœã§çŸåšäœ¿çšãããŠããåŸæ¥ã®èªèšŒæ¹æ³ã¯éçã§ããããŠãŒã¶ãŒã¯èªèšŒã¯ãŒã¯ãããŒã®éå§æã«ã®ã¿ãèªèšŒèŠçŽ (äŸ:ãã¹ã¯ãŒããŸãã¯PINãã¯ã³ã¿ã€ã ãã¹ã³ãŒããçäœèªèšŒ)ã®æäŸã«ç©æ¥µçã«åå ããå¿ èŠããããŸãã æŠå¿µçã«ã¯ãç¶ç¶çãªèªèšŒã¯ãå°çäœçœ®æ å ±ãçäœèªèšŒã®å€æŽãããã«ã¯ããŒã¹ãããŒã¯ãããŠã¹ãã¿ãŒã³ãã³ã³ããã¹ãããã®ä»ã®æŽ»åãã¿ãŒã³ãªã©ã®åäœç£èŠãªã©ãæ©æ¢°åŠç¿ãããŒã¹ãšããã€ã³ããªãžã§ã³ããªãªã¹ã¯ç£èŠãœãŒã¹ãžã®ç©æ¥µçãªåå ã«åã£ãŠæãããã®ãããŸãã¯è£åŒ·ãããã®ã§ãã ç¶ç¶çãªèªèšŒãžã®åãçµã¿ ç¶ç¶çèªèšŒã®èåŸã«ããæç¢ºãªæšé²åïŒ ãµã€ããŒæ»æã¯ãã®æ°ãšç²Ÿå·§ããå¢ãç¶ããŠãããããŒã¿äŸµå®³ã®61%ã¯ãŠãŒã¶ãŒèªèšŒæ å ±ãæ ¹æºãšãªã£ãŠããŸãã SMSããŒã¹ã®OTPïŒã¯ã³ã¿ã€ã ãã¹ã¯ãŒãïŒã®ãããªåŸæ¥ã®ã»ã«ã³ããã¡ã¯ã¿ãŒã§ã»ãã¥ãªãã£ãé«ããããšããŠãããŠãŒã¶ãŒã®äžæºãå®å šã§ãªãåé¿çãæãã ãã§ã43%ã®çµç¹ãå€èŠçŽ èªèšŒïŒMFAïŒã®äœ¿çšã«ãããæå€§ã®é害ãšããŠãŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãæããŠããŸãã ãã€ããªããã¯ãŒã¯ããªã¢ãŒãã¯ãŒã¯ãžã®ç§»è¡ã¯ã仿¥ã®ID管çãã¢ã¯ã»ã¹ç®¡çã®æ¹æ³ã«ããã匱ç¹ãå¢å€§ãããŠããŸãã IDã¢ã¯ã»ã¹ç®¡ç(IAM)ãããã³ç¹æš©ã¢ã¯ã»ã¹ç®¡ç(PAM)ãœãªã¥ãŒã·ã§ã³ã䜿çšããŠããšã³ã¿ãŒãã©ã€ãºã¢ããªã±ãŒã·ã§ã³ãžã®ã¢ã¯ã»ã¹å¶åŸ¡ã®åçåã詊ã¿ãããŠããŸãããå€ãã®å Žåãã·ã³ã°ã«ãµã€ã³ãªã³ (SSO) ã䜿çšããŠããŠãŒã¶ãŒãã¢ã¯ã»ã¹ã§ããã¢ããªã±ãŒã·ã§ã³ããšã«åå¥ã®ããŒã¯ã³ãå²ãåœãŠãŸãã IAMãPAMã®ãœãªã¥ãŒã·ã§ã³ã®äžã«ã¯ããªã¹ã¯åæãé©çšããŠã¹ãããã¢ããèªèšŒãä¿ããã®ããããŸãããããã¯ç¶ç¶çãªèªèšŒã®æ¬è³ªãæããŠããŸããã ããã«ãåè¿°ã®ãœãªã¥ãŒã·ã§ã³ã¯ãç¹ã«èšå®ãããŠããªãã¢ããªã±ãŒã·ã§ã³ãç£èŠãæ¥ç¶ãæäœããããšãã§ããªããããç¬èªã®å£ã«ãã£ãŠå¶éãããããšãå€ããè åšãç°åžžãæ€åºã§ããé«åºŠãªèªååæ©èœãã€ã³ããªãžã§ã³ã¹ã«ãã£ãŠãIDãšã¢ã¯ã»ã¹ã管çããããã®å šäœçãªãã£ããæžå°ããŸãã ç¶ç¶çãªèªèšŒã®æŠå¿µã¯ãããªãåããååšããŠããã2004幎ã«ã¯ã枩床ãç®ã®åããã¯ãªãã¯å§ã枬å®ããããŸããŸãªæ¹æ³ãç ç©¶ããã80%以äžã®ç²ŸåºŠã§æ¬äººç¢ºèªãç¶ç¶çã«èªèšŒããããšãã§ããŸããã 仿¥ãã³ã³ããã¹ããè¡åããŒã¿ã«ã€ã³ããªãžã§ã³ã¹ãé©çšããããã»ã¹ãèªèšŒãã¬ãŒã ã¯ãŒã¯ãšçµã¿åãããŠåçã«ã¢ã¯ã»ã¹å¶åŸ¡ãé©çšã§ãããã€ã³ããœãªã¥ãŒã·ã§ã³ãããã€ãååšããŸãã ãã ããIDãŸãã¯ã¢ã¯ã»ã¹ã管çããæ¹æ³ã§ã¯ãåºã«ãªãä¿¡é Œã¢ãã«ã«ãŠãŒã¶ãŒåããã¹ã¯ãŒããªã©ã®åŸæ¥ã®èªèšŒæ¹æ³ãã¢ãã€ã«ããŒã¹ã®èªèšŒã·ã¹ãã ãå«ãŸããŠããå ŽåãIDããŒã¹ã©ã€ã³ (æ¬äººã§ããããšã®èšŒæ) ã«ã¯æ¬è³ªçã«æ¬ é¥ããããŸãã å®éã«ã¯ãç¶ç¶çãªèªèšŒã®æŠå¿µãå®çŸããåã«å®è¡ããªããã°ãªããªãéèŠãªæé ããããŸãã ç¶ç¶çãªèªèšŒã®æ§æèŠçŽ æå 端ã§åŒ·åãªèªèšŒã¯ãç¶ç¶çãªèªèšŒãšãŒããã©ã¹ãã®äž¡æ¹ã«å¿ èŠãªæ§æèŠçŽ ã®äžã€ã§ãã ãæ±ºããŠä¿¡é Œãããå¿ ã確èªãããã®ãŒããã©ã¹ããã¬ãŒã ã¯ãŒã¯ã§ã¯ãçµç¹ã¯ããããã¯ãŒã¯ãŸãã¯ããŒã¿ãžã®ã¢ã¯ã»ã¹ãèš±å¯ãããåã«é©åã«æ€èšŒãããªãéãããŠãŒã¶ãŒããã±ãããã€ã³ã¿ãŒãã§ã€ã¹ããŸãã¯ããã€ã¹ãä¿¡é ŒããŠã¯ãããŸããã ãã®ä¿¡é Œã¯ãç¶ç¶çãªèªèšŒã®å Žåãšåæ§ã«ããªã¹ã¯ã·ã°ãã«ã䜿çšããŠååçã«ç¢ºç«ã§ããŸãããæåã«åŒ·åãªèªèšŒã䜿çšãããã¯ã¢ããããå¿ èŠããããŸãã ãã ããMFAã®ãã¹ãŠã®åœ¢åŒãåãã§ã¯ãªãããšã«æ³šæããŠãã ããã ã©ã®ãããªåœ¢åŒã®MFAããäœãMFAã䜿çšããªãããã¯åªããŠããŸããããŠãŒã¶ãŒåãšãã¹ã¯ãŒãããŸãã¯SMSã®ã¯ã³ã¿ã€ã ãã¹ã³ãŒã (OTP) ãããã·ã¥éç¥ãèªèšŒã¢ããªãªã©ã®ããããã¢ãã€ã«ããŒã¹ã®èªèšŒã¯ããã£ãã·ã³ã°ãæšçåæ»æãã¢ã«ãŠã³ãã®ä¹ã£åãã«å¯ŸããŠè匱ã§ãã ãããã®èªèšŒã¯ããã«ãŠã§ã¢ãäžéè (MiTM) æ»æãSIMã¹ã¯ãããããã³ãã®ä»ã®æªæã®ããè¡çºã«ãã£ãŠäŸµå®³ãããå¯èœæ§ã®ãã ãå ±æã·ãŒã¯ã¬ããã ã«äŸåããŠããŸãã Yubicoã¯ãFIDO2ãªã©ã®æå ç«¯èŠæ Œã«æ¯ãããã匷åãªèªèšŒã䜿çšããŠãåäººãæ¬äººã§ããããšã確èªããããã«æ±ãããå°æ¥ã®ãŒããã©ã¹ãæŠç¥ã®ããé²åããç¶æ ãšããŠç¶ç¶çèªèšŒããšãããŠããŸãã ã€ã³ããªãžã§ã³ããªã·ã¹ãã ãå人ã®ãã¿ãŒã³ãåŠç¿ããããããŠãŒã¶ãŒã¯ããé »ç¹ã«æ¬äººç¢ºèªãæ±ããããããã«ãªããŸããæéã®çµéãšãšãã«ãæ¥åžžçãªæŽ»åã§ã¯èªèšŒããã³ããã®æ°ãæžå°ããäžèŠåãªæŽ»åãæœåšçã«ãªã¹ã¯ã®é«ã掻åæã«ç¹æš©ã¢ã¯ã»ã¹ãè¡ãã«ã¯ãåŒãç¶ãã¹ãããã¢ããèªèšŒãå¿ èŠã«ãªããŸãã ããã«åããããã«ãçµç¹ã¯å°ãªããšããã£ãã·ã³ã°å¯Ÿç ã®2èŠçŽ èªèšŒ (2FA) ãŸãã¯MFAã®ããŒã¹ã©ã€ã³ã確ç«ããå¿ èŠããããŸããããã«ã¯ãåçŽãªã¿ãããçäœèªèšŒã«äŸåããYubiKeyãªã©ã®ããŒããŠã§ã¢ããŒã¹ã®èªèšŒãå«ãŸããŸãã çæ³çãªã®ã¯ãçµç¹ããŠãŒã¶ãŒãã¬ã³ããªã§ãã¹ã¯ãŒãäžèŠã®åŒ·åãªèªèšŒã«ç§»è¡ããå Žåã«ã®ã¿ããŒããã©ã¹ããšç¶ç¶çãªèªèšŒãã¬ãŒã ã¯ãŒã¯ãæ§ç¯ã§ããããã«ãªãããšã§ãã çŸåšããã¹ãŠã®ã·ã¹ãã ãšã¢ããªã±ãŒã·ã§ã³ã«ç¶ç¶çãªèªèšŒãé©çšã§ããåäžã®è§£æ±ºçã¯ãããŸããã ãããã仿¥ã®çµç¹ã¯ãèªèšŒãåäžãããæ©å¯æ§ã®é«ãããŒã¿ãžã®ã¢ã¯ã»ã¹ãäžè¬çã«æäŸããããã·ã§ã³ã»ã¯ãªãã£ã«ã«ãªã¢ããªã±ãŒã·ã§ã³ã«ç¶ç¶çãªèªèšŒã®æŠå¿µãé©çšãããããè¡åãèµ·ããããšãã§ããŸãã FIDO U2FãFIDO2ãªã©ã®ãã£ãã·ã³ã°å¯ŸçèªèšŒãããã³ã«ãšãŒããã©ã¹ãååã䜿çšããèªèšŒãã¬ãŒã ã¯ãŒã¯ãå°æ¥ã«åã匷åããããšã§ãå°æ¥ã®ããçŸä»£çã§å¿çæ§ã®é«ãã»ãã¥ãªãã£æŠç¥ã®åºç€ãç¯ãããšãã§ããŸãã â 匷åãªãã£ãã·ã³ã°å¯ŸçèªèšŒã䜿çšããŠãŒããã©ã¹ãæŠç¥ãå éããæ¹æ³ã®è©³çްã«ã€ããŠã¯ããã¡ãã®ãã¯ã€ãããŒããŒãåç §ããŠãã ããã.

Jul 25, 2022
ãªã¢ãŒãã¯ãŒã«ãŒã«å¯ŸãããœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æã®å¢å ãžã®å¯Ÿå¿
çŸåšããã³ãããã¯ãããŸããŸãªãœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æã«ãã£ãŠã€ãã®æ¡ä»¶ãæäŸããŠããããšã¯æçœã§ãã ãããŸã§ãããªã¢ãŒãã¯ãŒã¯ã®æ®åãããã«äŒŽããªã¹ã¯ã«é©å¿ããäžã§ãã¹ãã¢åãã£ãã·ã³ã°ããããŽã£ãã·ã³ã°ãã©ã³ãµã ãŠã§ã¢ãªã©ã³ãããŠã€ã«ã¹é¢é£ã®æ»æãå¢ããŠããããšã«ã€ããŠãFBI ãCISA, ãã€ã³ã¿ãŒããŒã«ãã¯ããä¿¡é Œã§ããçµç¹ãããå€ãã®å ±åãèŠåãåºãããŠããŸãã ãœãŒã·ã£ã«ãã£ã¹ã¿ã³ã¹ãšãªã¢ãŒãã¯ãŒã¯ã¯ãå€ãã®ç¹ã§ããã«ãŒã«ãšã£ãŠãã奜ãŸããç°å¢ãäœãåºããŠããŸããã仿¥ç®ã«ããããœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æã®çš®é¡ã¯ãéå»ã«èŠããããã®ãšããŸãå€ãããŸããã ããã§ã¯ããªãä»ã§ãå€§èŠæš¡ãªæ å ±æŒæŽ©ãé »ç¹ã«ãã¥ãŒã¹ã®èŠåºããè³ãããŠããã®ã§ãããã? æŽå²ããåŠã¶ããšãäžã€ãããšããã°ãããã«ãŒã¯åžžã«äººçèŠå ãå©çšãããšããããšã§ãã äžç¢ºå®æ§ãææã泚æåæ£æŒ«ãå€ç«ãæ··ä¹±ã¯ãã¹ãŠããŠãŒã¶ãŒã®è匱æ§ã®å¢å€§ã«ã€ãªãããŸãã ãããŠãäžççãªãã¥ãŒã¹ã®è©±é¡ãç®ãŸããããå€åãç¶ããäžã§ããã³ãããã¯ã倧ããªãã¥ãŒã¹ã€ãã³ãã®äžã§ãæ¥åèŠäž»çŸ©çãªããã«ãŒãæªçšãããããªæ¬¡ã®å±éãäºæ³ããããšã¯äžå¯èœã§ãã äŸãšããŠãCOVIDã®æ¯æ°åºæ¿çãææžçã«é¢é£ãããã£ãã·ã³ã°æ»æã®å¢å ã«ã€ããŠèŠãŠã¿ãŸãããã ãã³ãããã¯åæåŸãããœãŒã·ã£ã«ãã£ã¹ã¿ã³ã¹ã¯ç¶ç¶ããä»®æ³äžçã§ã®ãããšããå¢å ãããšäºæ³ãããŠããŸããã€ãŸããäŒæ¥ã¯ãœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æã®å¢å ãã身ãå®ãããã«ã匷åãªèªèšŒãå©çšããªããã°ãªããŸããã 忣åãé²ãäœæ¥ç°å¢ã§ã¯ãã·ã¹ãã ãšæ å ±ã®ã»ãã¥ãªãã£ã«å¯Ÿããä¿¡é Œã倱ãããããããŠãŒã¶ãŒãšã®ä¿¡é Œãå確ç«ããããšãäžå¯æ¬ ã§ãã ãã®æ¹æ³ã¯ãã¡ãïŒ åŸæ¥å¡ã®æè²ããã¬ãŒãã³ã°ã ãã§ã¯äžååã§ã æ°åã³ãããŠã€ã«ã¹é¢é£ã®è©æ¬ºã«æ³šæããããåŸæ¥å¡ãæè²ããããšã¯ãäžå¯æ¬ ã§ãããå æ¬çãªå¯Ÿå¿ã§ã¯ãããŸããã ãã£ãã·ã³ã°ããœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°ã«é¢ãããŠãŒã¶ãŒæè²ããããè¡ã£ãŠããæ»æã®äžã«ã¯æåãããã®ãããã®ã§ãã ãŠãŒã¶ãŒã®è¡åãå¿ èŠãšãããã£ãã·ã³ã°æ»æãäžéè æ»æã®ç¹å®ããŠãŒã¶ãŒã«äŸåããŠããéããè匱æ§ã¯ä»åŸãåé¡ãšãªãã§ãããã 2FAæŠç¥ãèŠçŽãææã«æ¥ãŠããŸã çµç¹ã¯ãå°æ¥ã®ãœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æããä¿è·ããããã«ããã¹ã¯ãŒããå埩質åããŸãã¯åºæ¬çãª2èŠçŽ èªèšŒ (2FA) ã«ç¶ç¶çã«äŸåããäœè£ã¯ãããŸããã ãããã®æ¹æ³ã¯ãã¢ãã€ã«ãã«ãŠã§ã¢ã, SIMã¹ã¯ããããã£ãã·ã³ã°æ»æã«å¯ŸåŠã§ããªãããšãäœåºŠã蚌æãããŠããŸãã ããã«ãŒã¯ãŸããŸãè³¢ããªã£ãŠããŠãããç§ãã¡ããããªããªããã°ãªããŸããã ãŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ã¯ãçµç¹ã®å®å šã«ãšã£ãŠéèŠã§ã ååãITéšéããç©ççã«é¢ããèªå® ãšè·å Žã®ç掻ãäž¡ç«ãããŠããäžçã§ã¯ã匷åãªèªèšŒããããŸããŸãªããã€ã¹ãããžãã¹ã«äžå¯æ¬ ãªã¢ããªã±ãŒã·ã§ã³ãããŸããŸãªç°å¢ã§å€§èŠæš¡ã«æ©èœããå¿ èŠããããŸãã ãŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãåäžããã»ã©ãç¹å®ã®ãŠãŒã¶ãŒã®ã¿ãä¿è·ããè€éãªãã€ã³ããœãªã¥ãŒã·ã§ã³ãšã¯ç°ãªããäŒæ¥å šäœã«å±éããŠã»ãã¥ãªãã£ã確ä¿ããããšã容æã«ãªããŸãã ã€ãŸããæ°åã³ãããŠã€ã«ã¹é¢é£ã®æ»æã®å¢å ã¯ãçŸå®ã«ååšããå±éºã§ãã ãããããããäžæçãªè åšã§ãã£ãããæ°åã³ãããŠã€ã«ã¹ã ãã®åé¡ã§ãããšã¯èããããŸããã ããã¯ããœãŒã·ã£ã«ãšã³ãžãã¢ãªã³ã°æ»æãå¢ãç¶ããŠããããšãç€ºãææ°ã®äºäŸã«ãããããã匷åãªå¯Ÿå¿ãæ±ããããŠããŸãã åœç€Ÿã¯æ¥ã ã倧å°ã®äŒæ¥ãæ°ããæ¥åžžã«é©å¿ã§ããããæ¯æŽããŠããŸãã æºåã¯ããããã§ããããïŒ äž»èŠãªã¯ã©ãŠãããŒã¹ãµãŒãã¹ã«å¯ŸããŠããŒããŠã§ã¢æ¯æŽãåãã匷åãªèªèšŒã䜿çšããŠãããžã¿ã«å€é©ãå éãããŸãã Google Cloud, ãMicrosoft Azure Active Directoryãã¯ãããšããå€ãã®æ¥åžžã®æ¥åã¢ããªã±ãŒã·ã§ã³ã¯ãYubiKeyãšã®ã·ãŒã ã¬ã¹ãªçµ±åãå®çŸããŠããŸãã

Jul 25, 2022
補åéçºã®ã»ãã¥ãªãã£åªå ã®ã¢ãããŒããæ€èšãã4ã€ã®çç±
ã€ã³ã¿ãŒãããã¯ãã¯ãã«ãªçºæã§ãã å ã ã¯ã³ã©ãã¬ãŒã·ã§ã³ã®ããã«äœãããŸãããããã¹ãŠã®äººãäºæ³ããèœåãã¯ããã«è¶ ãã瀟äŒã®äžæ žçãªæ©èœãæ ãããã«ãªããŸãããéçºè ãšããŠãåœç€Ÿã¯æ¥ã ãããã®çŽ æŽããã鲿©ã«è²¢ç®ããŠããŸãããã€ã³ã¿ãŒãããã®æªæ¥ãå®ããç¶æããããšãåœç€Ÿã®ä»äºã§ãã 端çã«èšãã°ãã€ã³ã¿ãŒãããã¯å ã ãèªåè»ã®ããã«ã»ãã¥ãªãã£ã念é ã«çœ®ããŠæ§ç¯ããããã®ã§ã¯ãããŸããã§ããã ããããæéããããŠãã€ã³ã¿ãŒããããŠãŒã¶ãŒããã³å ±æãããæ©å¯ããŒã¿ãä¿è·ããå¿ èŠæ§ãèªèããããã«ãªããŸããã çŸåšã§ã¯ãèªåè»ãè³Œå ¥ããéã«ãšã¢ããã°ãã·ãŒããã«ããèŠå ±ã·ã¹ãã ãªã©ãè£ åãããŠããããšãæåŸ ããã®ãšåæ§ã補åããµãŒãã¹ã«ã»ãã¥ãªãã£æ©èœãçµã¿èŸŒãŸããããšãæåŸ ãããŠããŸãã ã»ãã¥ãªãã£ã¯è£œåéçºã©ã€ããµã€ã¯ã«ã®äžã§åŸãã远å ããããšãã§ãããšã¯ãããããã¯æãŸãããããŸããã ãµã€ããŒã»ãã¥ãªãã£ã®ç¶æ³ã¯é²åããŠãããçµç¹ãããã«åãããŠé²åããå¿ èŠããããŸãã ããã§ã¯ã次äžä»£ã®é©æ°çãªãœãªã¥ãŒã·ã§ã³ãæ§ç¯ããéã«ãçµç¹ãã»ãã¥ãªãã£åªå ã®èãæ¹ã®æ¡çšãæ€èšãã¹ã4ã€ã®çç±ã説æããŸãã æ å ±æŒæŽ©ããã®åŸ©æ§ã«ã¯ã³ã¹ããããã æ å ±æŒæŽ©ãããããçµæžçæ Œå·®ã¯ãç¹ã«å°èŠæš¡äŒæ¥ã«ãšã£ãŠå£æ» çãªãã®ã§ãã æ å ±æŒæŽ©ã«ãã£ãŠäŒæ¥ã被ãã³ã¹ãã¯å¹³å392äžãã«ã§ãããæåã®æ å ±æŒæŽ©ããæ°å¹Žéãçµç¹ã¯ç¶ç¶çã«æ®åã³ã¹ããè² ãããšã«ãªããŸãã ãã®ãããªåœ±é¿ãå éãã«ããæ¹ããæåããå ç¢ãªã»ãã¥ãªãã£åºç€ã«æè³ãããããã¯ããã«ã³ã¹ããããããŸãã æš©éããŒã¹ã®ã¢ã¯ã»ã¹ã匷åãªèªèšŒããªã¹ã¯ã®æå°åã®ååãæåãã確ç«ãããšãçµç¹ã®è³éãšæéãç¯çŽããå°æ¥çãªãã©ã³ã䟡å€ã®äœäžãæããããšãã§ããŸãã ãã¬ãã£ããªãã©ã³ãã®è©å€ã顧客ã®ä¿¡é Œãäœäžããã æ å ±æŒæŽ©ã¯ã顧客ã®ä¿¡é Œã倱ããªã©ããã©ã³ãã®ã€ã¡ãŒãžãšè©å€ã«å€§ããªãã¡ãŒãžãäžããå¯èœæ§ãããããŸãã å®éã調æ»ã«ãããšãæ å ±æŒæŽ©ã®è¢«å®³è ã®65%ã¯æŒæŽ©åŸã«çµç¹ã«å¯Ÿããä¿¡é Œã倱ãã80%ã®æ¶è²»è ã¯æ å ±æŒæŽ©ããããšãµãŒãã¹ã®äœ¿çšãé¿ããŠããŸãã å ç¢ãªã»ãã¥ãªãã£ã¯ç«¶äºåã®ããå·®å¥åèŠå ãªã¢ãŒãã¯ãŒã«ãŒã®å¢å ã«ããã»ãã¥ãªãã£ã®ç¶æ³ãçµ¶ããé²åããŠãããããå°æ¥ãèŠæ®ããŠã»ãã¥ãªãã£ã匷åããèãæ¹ãæ¶è²»è ãäŒæ¥ã®éã§æšæºãšãªããå ç¢ãªã»ãã¥ãªãã£ãªãã·ã§ã³ããããšä»ã®ç«¶åä»ç€Ÿãšã®å·®å¥åã«ã€ãªãããŸãã ããªã¡ãŒã¿ïŒå¢çïŒã«éç¹ã眮ããã¢ãããŒãããããã¹ãŠã®èŠçŽ (ãããã¯ãŒã¯ããšã³ããã€ã³ããã¯ã©ãŠããµãŒãã¹ãã¢ãã€ã«ããã€ã¹) ãä¿è·ããå æ¬çãªå€å±€ã¢ãããŒãã«ç§»è¡ãããªãã¬ãŒã¿ãŒãã·ã¹ãã 管çè ãããã³éçºè ã¯æåããã§ãããã ã·ãŒã ã¬ã¹ãªãŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ã¯é¡§å®¢å¿ èª å¿ãè²ãŠã é©åã«è¡ãããå Žåãåªããã»ãã¥ãªãã£ã¯ãã客æ§ã®è£œåãšã¯ã¹ããªãšã³ã¹ãåäžãããéèŠãªåœ¹å²ãæãããŸãã å®éãããã«ãããã¹ãŠã®ãšã¯ã¹ããªãšã³ã¹ãå·Šå³ãããããšãããã®ã§ãã ãã¹ã¯ãŒããäŸã«æããŠã¿ãŸãããã 誰ãããã奜ãŸãªãããèŠããŠããã®ãé£ãããã¢ã«ãŠã³ãä¹ã£åãããé©åã«ä¿è·ãããšããç¹ã§ã¯ãã»ãšãã©åœ¹ã«ç«ã¡ãŸããã ãããããããã¯ä»ã§ãã€ã³ã¿ãŒãããäžã§åºã䜿çšãããŠãããå€ãã®å Žåãã¢ã«ãŠã³ãã®äœæããã°ã€ã³ã¯ãWebãµã€ããã¢ãã€ã«ã¢ããªãšã®æåã®ããåãã«ãªããŸãã ã補åéçºã®åææ®µéã§ã»ãã¥ãªãã£ãåªå ãããšãçµæãšããŠåŸããã補åã¯ãæåããããåªãããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãæäŸããŸããããšLet’s Encryptã®ãšã°ãŒã¯ãã£ããã£ã¬ã¯ã¿ãŒããžã§ã·ã¥ã»ã¢ãŒã¹æ°ã¯èª¬æããŠããŸãã ãåŸä»ãã§è¿œå ãããã»ãã¥ãªãã£ã¡ã«ããºã ã»ã©ããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ã«æ··ä¹±ãçãããããã®ã¯ãããŸãããã ã»ãã¥ãªãã£ãåŸåãã§ã¯ãªãäºåã«èããããŠããã°ãæåããæåŸãŸã§ã·ãŒã ã¬ã¹ã§æ¥œãããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãèšèšããæ©äŒã«æµãŸããŸãã çµå±ã®ãšãããã»ãã¥ãªãã£åªå ã®èãæ¹ã¯ãçµç¹ãæ å ±æŒæŽ©ã«ããæªåœ±é¿ãåé¿ããæçµçãªåçã顧客ããã©ã³ãã«å©çãããããããšãã§ããŸãã Yubicoã§ã¯åŒ·åãªèªèšŒããã®ããºã«ã®éèŠãªããŒã¹ãšããŠéèŠããŠããŸãããæçµçã«ãã¹ãŠã®äººã«ãšã£ãŠã€ã³ã¿ãŒããããå®å šãªå Žæã«ããããã«èæ ®ãã¹ã (ãããŠååããå¿ èŠããã) ä»ã®å€ãã®ã»ãã¥ãªãã£åŽé¢ãããããšãèªèããŠããŸãã ãªãŒãã³ã¹ã¿ã³ããŒãã§åŒ·åãªYubiKeyèªèšŒãå®è£ ããããšã«é¢å¿ã®ããéçºè ã¯ãYubicoéçºè ããã°ã©ã ã«åå ããŠããªãŒãã³ãœãŒã¹ã©ã€ãã©ãªãšãµãŒããŒãå®è£ ã¬ã€ãããã¬ãŒãã³ã°ãªãœãŒã¹ãªã©ã«ã¢ã¯ã»ã¹ã§ããŸãã

Jul 25, 2022
ææ°ã®èªèšŒã®æªæ¥ã¯ã©ããªã£ãŠããã®ã§ããããïŒ
2008幎ã«YubiKeyãæåã«åžå Žæå ¥ããŠä»¥æ¥ãèªèšŒãšã»ãã¥ãªãã£ã®äžçã§ã¯å€ãã®å€åãèµ·ãã£ãŠããŸãããã®ããã°ã§ã¯ããªãŒãã³èªèšŒèŠæ Œã«ãããåœç€Ÿã®ç«ã¡äœçœ®ã確èªãããPasskeyãã®ç»å Žã«ã€ããŠèª¬æããææ°ã®WebAuthn/FIDOèªèšŒã®æªæ¥ã«ã€ããŠæ å ±ãå ±æããŸãã ã°ããŒãã«èŠæ Œã®äœæ ãã¹ãŠã®äººãšãã¹ãŠã®ãµã€ãã«é«åºŠãªã»ãã¥ãªãã£ãå°å ¥ããããã«ãYubicoã¯2012幎ã«Googleãšãšãã«Universal Second FactorïŒU2FïŒãäœæãã2013幎ã«ãããFIDO Allianceã«ç§»è¡ããŠããã¹ãŠã®äººã«ãšã£ãŠã€ã³ã¿ãŒããããããå®å šã«ããã°ããŒãã«èŠæ Œãææ¡ããŸããããã®èŠæ Œã§ã¯ãããŒããŠã§ã¢ã®å ¬ééµ/ç§å¯éµã®æå·ã«ããã»ãã¥ãªãã£ã䜿çšãããUSBããã€ã¹ãšããŒãïŒãŸãã¯ã¢ãã€ã«ã®NFCïŒãããã³ããããµããŒãããWebãµã€ãããå¿ èŠã§ãªãããšã瀺ãããŸããã U2FãFIDO2/CTAP2ããã³ W3C WebAuthnã«æ¡åŒµããããã«ãåœç€Ÿã¯æšæºåå£äœã®ã¡ã³ããŒãšååã驿°ãç¶ããŸããããããã®é²åããèŠæ Œã§ã¯ãæ¢åã®ãã¹ãŠã®U2Fããã€ã¹ããµããŒãããããã«ãé»è©±ãã³ã³ãã¥ãŒã¿ãŒãªã©ã®ããã€ã¹ã«çµã¿èŸŒãŸããŠããããã€ã¹PINãçäœèªèšŒãèªèšŒãã¯ãããžãŒãããã³ãŠãŒã¶ãŒåããã¹ã¯ãŒãããŸã£ãã䜿çšããªãæäœãå¯èœã«ããããŒã«ã«ã§æ€åºå¯èœãªã¯ã¬ãã³ã·ã£ã«ããµããŒããããªãã·ã§ã³ã远å ãããŠããŸãã çŸåšèµ·ããŠããããš ãã®æšæºåäœæ¥ããã³ãã©ãããã©ãŒã ãšã®é£æºãéããŠããã¹ãŠã®äž»èŠãªãã¹ã¯ãããããã³ã¢ãã€ã«ãã©ãããã©ãŒã ãžã®æ®éçãªãµããŒããå®çŸããçŸåšå¯ŸåŠäžã®ããã€ãã®ãŸããªåé¡ããã©ã¹ãŸãã¯ãã€ãã¹ããŠãããããå Žæã§ãã£ãã·ã³ã°ã«åŒ·ãèªèšŒãè¡ãããšãã§ãããœãªã¥ãŒã·ã§ã³ã§ããWebAuthn/FIDOã宿ããŸããã SMSãã¢ãã€ã«ããã·ã¥éç¥ãã¯ã³ã¿ã€ã ãã¹ã¯ãŒãïŒOTPïŒãªã©ã®ä»£æ¿ã®å€èŠçŽ èªèšŒïŒMFAïŒãœãªã¥ãŒã·ã§ã³ã«ã¯æªçšå¯èœãª æè¡çãªæ¬ é¥ãå«ãŸããŠãããããã«ãã人ã ãã ãŸããäžéè ããã£ãã·ã³ã°æ»æãç°¡åã«ãªããŸããããã¯ã ãŠãŒã¶ãŒåãšãã¹ã¯ãŒãã«ãŸããMFAã¡ã«ããºã ãæ®åãã仿¥ããŸãã«æ»æè ãè¡ã£ãŠããããšã§ãã æ¬¡ã«èµ·ããããš FIDO AllianceãWorld Wide Web ConsortiumïŒW3CïŒãããã³ãã©ãããã©ãŒã ãã³ããŒãšäœå¹Žã飿ºããWebAuthn/FIDOã§å¯èœãªå¯Ÿå¿ãããã«åŒ·åããŠããŸããããããŠãã©ããªæªæ¥ãåŸ ã£ãŠãããæ¥œãã¿ã«ããŠããŸããæ¬æ¥ããããã®é©æ°ãšè¿œå ã«é¢ãã3ç¹ã«ã€ããŠèª¬æããŸãã çšèªã®å€æŽ 倿ŽãããŠããçšèªãããã€ããããŸããããããã¯ãŠãŒã¶ãŒãšéçºè ã®äž¡æ¹ã«ãšã£ãŠçè§£ãããããã®ã«ãªã£ãŠãããšæããŸãããSecurity Keyããšãããã¬ãŒãºã¯ãWebAuthn/FIDOã¯ã¬ãã³ã·ã£ã«ãå«ããYubiKeyãªã©ã®å€éšFIDO察å¿ããŒããŠã§ã¢ããã€ã¹ãè¡šãæšæºçãªè¡šçŸã«ãªã£ãŠããŸãããã ãããWebAuthn/FIDOã¯ã¬ãã³ã·ã£ã«ããšã¯å¿ ãããèšããããèšèãšããããã§ã¯ãªããå°éå®¶ã§ãªã人ã«ãšã£ãŠã¯ã»ãšãã©çè§£ãããŠããŸããã ããã¹ã¯ãŒããã¯ãã§ã«åºãçè§£ãããŠããçšèªã§ãããããã®WebAuthn/FIDOã¯ã¬ãã³ã·ã£ã«ã§ãã¹ã¯ãŒãã眮ãæããããšãã§ãããããæ¥çã«ãPasskeyããšããçšèªãå°å ¥ãããŸãããããã¯ãæšå¹ŽAppleãçºè¡šããâPasskeys in iCloud Keychainâããã³æè¿ã®WIREDèšäºã§å ¬ã«èšåãããŸããããã®æçš¿ã®æ®ãã®éšåã§ã¯ãWebAuthn/FIDOã¯ã¬ãã³ã·ã£ã«ãSecurity Keyå ã«ããããããã€ã¹ã®ããŒããŠã§ã¢ã«ãã€ã³ããããŠãããããŸãã¯ã¯ã©ãŠããããã€ããŒã«ãã£ãŠã³ããŒãããããã€ã¹äžã®ãã¡ã€ã«ã«ä¿åãããŠãããã©ããã«é¢ä¿ãªããWebAuthn/FIDOã¯ã¬ãã³ã·ã£ã«ã«ã€ããŠèšåãããšãã¯PasskeyãšèšããŸãã ãã®è¡šçŸãæ®åãå§ãããããPasskeyã®å®çŸ©ãPasskeyã远å ã®èªèšŒãªãã·ã§ã³ãšããŠã©ã®ããã«æ©èœããããWebAuthn/FIDOèªèšŒãªãã·ã§ã³ã®æ¡åŒµãã©ã®ããã«ãªããã«ã€ããŠãã客æ§ãããŒãããŒããå€ãã®åãåããããããŸããããã®é²åããã¹ããŒãªãŒã«ã€ããŠã¯ã以äžã§èª¬æããŸãã Bluetoothã®æ¹åãããã³Security KeyãšããŠã®é»è©± Yubicoã¯ããããã¿ã€ãã®BluetoothèªèšŒã·ã¹ãã ãæ§ç¯ããä»ç€ŸãšååããŠæåã®FIDO Bluetoothãã©ã³ã¹ããŒããäœæããŸããããããåœç€Ÿãäžããæçµçãªæ±ºå®ã¯ãBluetooth YubiKeyã®è£œåãåºè·ããªãããšã§ãããããã¯ããã®åãçµã¿ã§åŠãã æ¬¡ã®ããšã«åºã¥ããŠè¡ãããŸããã Bluetoothã®ãã¢ãªã³ã°ã¯ã»ãã¥ãªãã£ã䜿ããããã®ç¹æ§ãäžååã§ãã ããããªãŒã¯æ®éãç¶æããããã«å®æçãã€æ éã«å é»ãããã亀æå¯èœã§ããå¿ èŠããããããã«ãããããã€ã¹ã®å ç¢æ§ãæãªããããããå¿ èŠãªãšãã«å¿ èŠãªã ã代æ¿åãçšæããå¿ èŠããã Bluetoothã®ãããã³ã«ãããŒããŠã§ã¢ã®å®è£ ã¯è€éã§ãããçºèŠãããè匱æ§ã«å¯ŸåŠããããã«åžžã«ææ°ã®ç¶æ ã«ä¿ã€å¿ èŠããã BluetoothããŒããŠã§ã¢ããã©ã€ããŒãããã³OSãµããŒãã®ç¶æ ã«äžè²«æ§ããªããä¿¡é Œæ§ããªã Bluetooth Security KeyãšããŠäœ¿çšããã®ã«é©ããŠããããã€ã¹ã¯é»è©±ã ãã§ãããšããçµè«ã«è³ããŸãããç¹ã«é»è©±ã¯ã次ã®çç±ã§é©ããŠããŸãã ã»ãšãã©ãã¹ãŠã®é»è©±ã«ãBluetoothã®ãã¢ãªã³ã°ã容æã«ããã«ã¡ã©ããã ã»ãšãã©ã®å Žåãææè ãæ éãã€å®æçã«å é»ãã ãœãããŠã§ã¢ãšãã¡ãŒã ãŠã§ã¢ã宿çã«æŽæ°ããã¡ã«ããºã ããã§ã«ããªãã£ãŠãã å€ãã®æéãææè ãä¿æããŠãããšèãããã èªèšŒåšãšããŠé»è©±ã䜿çšããããšã¯åœç€Ÿã®åœåã®ããžã§ã³ã®äžéšã§ãããé·ãéããã«åãçµãã§ããŸãããé»è©±ã«çµã¿èŸŒãŸããŠããçäœèªèšŒããFIDO2ã䜿çšããŠåãããã€ã¹ã«ãã°ã€ã³ããããã«äœ¿çšã§ããããã«ããã®ãšåãæ¹æ³ã§ãä»ã®ããã€ã¹ã§èªèšŒããããã«äœ¿çšã§ããããã«ããã«ã¯ã©ãããã°ããã§ããããïŒæšæºåå£äœãšãã©ãããã©ãŒã ã§ã®é·å¹Žã®äœæ¥ãçµãŠãæºåã¯ã»ãŒæŽã£ãŠããŸããã«ã¡ã©ãå©çšããBluetoothã®ãã¢ãªã³ã°ã¯ãçŸåšäž»èŠãªãã©ãŠã¶ãšOSã§æå¹ã«ãªã£ãŠããããã©ãããã©ãŒã ã®Bluetoothã®çã¯ãé·å¹Žã®ãã¹ããã¢ããã°ã¬ãŒãããã°ãã£ãã¯ã¹ã«ãã£ãŠã»ãšãã©ä¿®æ£ãŸãã¯åé¿ãããŠãããBluetooth+ãããã¯ãŒã¯ãã©ã³ã¹ããŒãã¯ååã«ãã¹ããããŠããŸãã æå¹ã«ããå Žåã®macOS/iOSã§ã®çŸåšã®è¡šç€ºã¯æ¬¡ã®ãšããã§ãïŒå€æŽãããå¯èœæ§ããããŸãïŒ: ããã¯æåŸ ã§ããŸãããé»è©±ã¯å£ãããããé«äŸ¡ã§ãé »ç¹ã«äº€æããããŸãããªã·ãŒãæ³åŸã«ãã£ãŠäœ¿çšãçŠæ¢ãããŠããå ŽåããããŸããã€ãŸããSecurity Keyã䜿çšããäžã§æãé£ããéšåã¯ãçŽå€±ããéã«ã©ãã«ããŠãåç»é²ããããæ°ãããã®ã«ç§»è¡ãããã§ããããã«ããããšã§ãããããã¯ãé»è©±ã®å Žåã¯ããã«é »ç¹ã«çºçããŸãã ãã®ãããã¢ã«ãŠã³ãã«è¿œå ãããããã€ãã®èªèšŒåšã®1ã€ãšããŠé»è©±ãèšå®ããããšããå§ãããŸãã ã³ããŒå¯èœãªãã«ãããã€ã¹Passkey ãããŸã§ãSecurity Keyãšãã©ãããã©ãŒã èªèšŒåšã«ãã£ãŠäœæãããã¯ã¬ãã³ã·ã£ã«ã¯åäžããã€ã¹ã§ãããäœæãããããŒããŠã§ã¢ã«ãã€ã³ããããŠããŸããããããã¯åäžããã€ã¹Passkeyã§ãããããã¯åªããã»ãã¥ãªãã£ç¹æ§ãåããŠãããããã€ã¹ããªããŠãã¢ã¯ã»ã¹ãã§ããªããããçè§£ãããããä¿¡é Œã§ããã·ã¹ãã ãæ§ç¯ã§ããŸãã ã¯ã¬ãã³ã·ã£ã«ãäœæããããŒããŠã§ã¢ã«çžãããªãããšã§ãã³ããŒå¯èœãªã¯ã¬ãã³ã·ã£ã«ã远å ã§ãããã©ãã§ããããïŒãã®ã³ããŒå¯èœãªããã«ãããã€ã¹Passkeyãã¯çŸåšããŒã¿çãšããŠå ¬éãããŠããŸãã ã¯ã¬ãã³ã·ã£ã«ã®ã³ããŒå¯èœã«ããããšã¯ãããã·ãŒã ã¬ã¹ãªããã€ã¹ç§»è¡ãšããã€ã¹ã®æå€±/ç Žæã«ãã埩å ãå¯èœã«ããSecurity …

Jul 25, 2022
iOSã®ã¹ããŒãã«ãŒããšããŠã®YubiKey
èšŒææžããŒã¹ã®ã¹ããŒãã«ãŒãã¯ã20幎以äžã«ããã£ãŠãå€èŠçŽ èªèšŒã®æãä¿¡é Œãããå®çžŸã®ããå®è£ ã®1ã€ã§ããããããåé¡ã1ã€ãããŸãããäžè¬çãªã¯ã¬ãžããã«ãŒãã®åœ¢ãããã¹ããŒãã«ãŒãã¯ãããŒããŠã§ã¢ãšãœãããŠã§ã¢ãå¥éçšæããªããšã¢ãã€ã«ããã€ã¹ã§ã¯ããŸãæ©èœããŸããã§ããã çŸåšãã¹ããŒãã«ãŒãã«ã¯è²¡åžã«åãŸãã¯ã¬ãžããã«ãŒããµã€ãºãããããŒãã§ãŒã³ã«åãŸãããŒããŠã§ã¢ã»ãã¥ãªãã£ããŒãŸã§ãããŸããŸãªãã©ãŒã ãã¡ã¯ã¿ããããŸããYubicoã®ã»ãã¥ãªãã£ããŒã®æºåž¯æ§ãšãã«ããããã³ã«ã®ãµããŒãã«ãããPersonal Identity VerificationïŒPIVïŒå¯Ÿå¿ã®YubiKeyãèšŒææžããŒã¹ã®ã¹ããŒãã«ãŒããšããŠããµããŒã察象ã®iOSããã€ã¹ã§äœ¿çšã§ããããã«ãªããŸããã iOS 14.2以éãAppleã¯ã¹ããŒãã«ãŒãããã€ãã£ãã§ãµããŒãããPIVäºæã®ã¹ããŒãã«ãŒããããŒããŠã§ã¢ãªãŒããŒããœãããŠã§ã¢ãå¥éçšæããªããŠãiPhoneãšéä¿¡ã§ããããã«ããŠããŸããYubiKey 5ã·ãªãŒãºã®ããŒã¯ãããŒããŠã§ã¢ããŒã¹ã®ã»ãã¥ãªãã£ãšæºåž¯åã®ã¯ã¬ãã³ã·ã£ã«ãæäŸããPIVèŠæ ŒããµããŒãããããããAppleããã€ã¹ãšLightningã³ãã¯ã¿ã§ç©ççã«ããŸãã¯NFCã§ã¯ã€ã€ã¬ã¹ã«éä¿¡ã§ãããããiOSã®ã¹ããŒãã«ãŒããšããŠé©ããŠããŸãã æè¿ãç±³åœè¡æ¿ç®¡çäºç®å±ïŒOMBïŒãããã£ãã·ã³ã°å¯ŸçMFAãæ¡çšããããã®ã»ãã¥ãªãã£èŠä»¶ãæºããããé£éŠæ©é¢ã«èŠæ±ããã¡ã¢ãçºè¡šããŸãããã¹ããŒãã«ãŒãã¯ãã®èŠä»¶ãæºãããŠãããããã«ã¯ãæ¿åºæ©é¢ãèŠå¶å¯Ÿè±¡ã®æ¥çãæé«ã®Authenticator Assurance Level 3ïŒAAL3ïŒèŠä»¶ãæºããããšãã§ããYubiKey 5 FIPS ã·ãªãŒãºããã®äžã€ã§ãããã®æçš¿ã§ã¯ãã¹ããŒãã«ãŒãã®æŠèŠãYubiKeyãã¹ããŒãã«ãŒããšããŠäœ¿çšããéã®æ©èœãšå©ç¹ãããã³YubiKeyãiOSäžã®Yubico Authenticatorã¢ããªãšéä¿¡ããŠãã¯ã©ã€ã¢ã³ãã®èšŒææžããŒã¹ã®èªèšŒãã¡ãŒã«ãžã®çœ²åãããããiOSããã€ã¹ã§ã®ã¡ãã»ãŒãžãšããã¥ã¡ã³ãã®åŸ©å·åãªã©ã®ãŠãŒã¹ã±ãŒã¹ããµããŒãããæ¹æ³ã確èªã§ããŸãã ã¹ããŒãã«ãŒããšã¯ äžè¬çãªã¹ããŒãã«ãŒãã¯ãããŸããŸãªãµã€ãºãšåœ¢ç¶ïŒããŒããã«ãŒããŸã§ïŒãæã€ç©çããã€ã¹ã§ãããã»ãã¥ã¢ãšã¬ã¡ã³ããåã蟌ãŸããã³ã³ãã¥ãŒã¿ããããåããŠããŸããã»ãã¥ã¢ãšã¬ã¡ã³ãã«ãããæ å ±ãå®å šã«ä¿åãååŸãéä¿¡ããããšãã§ããŸãããããã®ã¹ããŒãã«ãŒãã®æãäžè¬çãªã¿ã€ãã«ã¯ãéè¡ã®ATMã«ãŒããeãã¹ããŒããã°ããŒãã«IDã«ãŒãããããŸãã PIVã¹ããŒãã«ãŒã ãã®æçš¿ã®ç®çãšããŠãNISTã®PIVèŠæ Œã«æºæ ããPersonal Identity VerificationïŒPIVïŒã¹ããŒãã«ãŒãã«çŠç¹ãåœãŠãŠããŸããPIV察å¿ã®ã¹ããŒãã«ãŒãã§ã¯ããã¹ãŠã®é»åéä¿¡ãããŒã¿ä¿åãããŒã¿æ€çŽ¢ãããå®å šã«ãããè¯ãä¿è·ãããããšãä¿èšŒãããŠããŸãã PIVã¹ããŒãã«ãŒãã¯ãæ¬äººç¢ºèªãç©ççã¢ã¯ã»ã¹ãããã³å®å šãªã³ã³ãã¥ãŒã¿ãŒãããã¯ãŒã¯ããã³ã·ã¹ãã ãžã®èªèšŒã¢ã¯ã»ã¹ã®ããã«ç±³åœè»ã®å šå¡ã«çºè¡ãããCommon Access CardïŒCACïŒãšããŠæãäžè¬çã«äœ¿çšãããŠããŸãïŒ2018幎以éïŒã ã¹ããŒãã«ãŒããšããŠã®YubiKey YubiKeyã¯ã匷åãªäºèŠçŽ ãå€èŠçŽ ãããã³ãã¹ã¯ãŒãã¬ã¹ã®èªèšŒåšãšããŠããç¥ãããŠããŸããå€ãã®äººã«ã¯ç¥ãããŠããŸãããã PIV-äºæã® ã¹ããŒã ã«ãŒãã§ããããŸãããã¹ãŠã®YubiKey 5ã·ãªãŒãºã®ããŒã¯ãPIVã€ã³ã¿ãŒãã§ãŒã¹ã«åºã¥ããã¹ããŒãã«ãŒãæ©èœãåããŠããŸããããã¯YubiKeyãæ¬äººç¢ºèªãç©ççã¢ã¯ã»ã¹ãããã³å®å šãªã³ã³ãã¥ãŒã¿ãŒãããã¯ãŒã¯ãšã·ã¹ãã ãžã®èªèšŒã¢ã¯ã»ã¹ã®ããã®ïŒPIVäºæã®CACãšïŒåãæå·åæ©èœãåããŠããããšãæå³ããŸãã æŽŸçPIVã¯ã¬ãã³ã·ã£ã« ç±³åœæ¿åºã¯20幎以äžã«ããã£ãŠã¹ããŒãã«ãŒããçºè¡ããŠããŸããããäœãå€ãããªãä»è¡ã£ãã®ã§ããããïŒiOSããã€ã¹ãã¹ããŒãã«ãŒããšéä¿¡ããæ¹æ³ã«å¯ŸããŠè¡ã£ãæè¿ã®Appleã®å€æŽã«å ããŠãNISTã¬ã€ãã©ã€ã³ã¯ã掟çPIVã¯ã¬ãã³ã·ã£ã«ã®æ¿èªããã䜿çšãéããŠãã¢ãã€ã«ããã€ã¹çµç±ã®é»åèªèšŒã®äœ¿ãããããå€§å¹ ã«æ¹åããŸããã æŽŸçPIVã¯ã¬ãã³ã·ã£ã«ã®æ¿èªãšã¯ããããã®ã¯ã¬ãã³ã·ã£ã«ãšé¢é£ããç§å¯éµãFIPS Series YubiKeyã®PIVäºæã®ã»ãã¥ã¢ãšã¬ã¡ã³ãã«ããããžã§ãã³ã°ã§ããããã«ãªã£ãããšãæå³ããŸãããããã£ãŠã掟çPIVã¯ã¬ãã³ã·ã£ã«ã«å¯Ÿå¿ããç§å¯éµã¯ãæ¿åºçºè¡ã®PIVã¯ã¬ãžããã«ãŒãã®æ¹åŒã«å ããŠã代æ¿ã®ãã©ãŒã ãã¡ã¯ã¿ã®æå·åã¢ãžã¥ãŒã«ã«æ ŒçŽããããšãã§ããŸãã YubiKeyã®å©ç¹ YubiKeyãã¹ããŒãã«ãŒããšããŠäœ¿çšããå©ç¹ã¯ãæºåž¯æ§ããã©ãŒã ãã¡ã¯ã¿ãŒã®å°ååãããã³ã«ãŒããªãŒããŒããœãããŠã§ã¢ãå¥éå¿ èŠãšããã«ãLightningã³ãã¯ã¿ããã³éæ¥è§ŠïŒNFCïŒã€ã³ã¿ãŒãã§ã€ã¹ãä»ããŠiOSããã€ã¹ãšéä¿¡ã§ããããšã§ãã YubiKeyã®PIVäºæã®ã¹ããŒãã«ãŒãã¢ãžã¥ãŒã«å ã§ã¯ãåå¥ã®ã¹ãããã«ããŸããŸãªãŠãŒã¹ã±ãŒã¹ã«å¯Ÿããè€æ°ã®ããžã¿ã«èšŒææžãä¿åã§ããŸããYubiKeyã®ã¹ããŒãã«ãŒãã¢ãžã¥ãŒã«ã®åPIVã¹ãããã¯ãä»éããç§å¯éµãšãšãã«X.509èšŒææžãä¿æã§ããŸãã æŽŸçPIVã¯ã¬ãã³ã·ã£ã«ã®ææè ããŸãã¯NISTã®ä¿èšŒã¬ãã«ãå¿ èŠãªäººã®å ŽåãYubiKey FIPSã·ãªãŒãºã®ããŒã¯PIVæºæ ã®FIPS 140-2ã§æ€èšŒæžã¿ã®ã¹ããŒãã«ãŒãã§ãããNIST SP800-63Bã¬ã€ãã³ã¹ã«ãããæé«ã®Authenticator Assurance Level 3ïŒAAL3ïŒãéæããèŠä»¶ãæºãããŠããŸãã Yubico Authenticator Yubico Authenticator for iOSã¯ãã¢ãã€ã«ãŠãŒã¶ãŒãšãã¹ã¯ããããŠãŒã¶ãŒåãã«ã»ãã¥ãªãã£ã¬ã€ã€ãŒã远å ããèªèšŒã¢ããªã§ããYubico Authenticatorã¢ããªã¯ãåœåãäºèŠçŽ èªèšŒã®åœ¢åŒãšããŠ1åéãã®ãã¹ã³ãŒãçšã«YubiKeyã®OATH-TOTPã¢ãžã¥ãŒã«ãšé£åããããã«èšèšãããŸããã ããŒãžã§ã³1.6以éãiOSçšã®Yubico Authenticatorã¢ããªã䜿çšããããšã§ãYubiKeyã¹ããŒãã«ãŒããLightningã³ãã¯ã¿ãŸãã¯NFCãä»ããŠPIVã¢ãžã¥ãŒã«äžã®X.509èšŒææžãšéä¿¡ã§ããããã«ãªããŸããã iOSã§YubiKeyãã¹ããŒãã«ãŒããšããŠäœ¿çšããå ŽåãYubico …

Jul 25, 2022
èªèšŒãææ°ã®MFAçšèªã®ã¢ã«ãã¡ãããã¹ãŒãã«ã€ããŠã®è§£èª¬
倧åã®ãµã€ããŒæ»æã¯ããã°ã€ã³ãã¹ã¯ãŒãããã®ä»èªèšŒæ å ±ã®çé£ããå§ãŸããŸãã ã¯ã©ãŠãåãé²ãäžçã§ã¯ãäŒæ¥ãåäººãæ¿åºæ©é¢ã®éä¿¡ã·ã¹ãã ã«ã¯ãã€ã³ã¿ãŒãããçµç±ã§èª°ã§ãã¢ã¯ã»ã¹ã§ããæ»æãåãããããªã£ãŠããŸãã æ§ã ãªãµã€ããŒæ»æã®äžã§ããã¯ã¬ãã³ã·ã£ã«ãã£ãã·ã³ã°ã¯æãé倧ãªåé¡ã§ããããã®è åšããèªåãä¿è·ããããã«ã¯ã¬ã€ãã³ã¹ã®æå³ãçè§£ããããšã倧åã§ãã  Yubicoã§ã¯ããã£ãã·ã³ã°å¯Ÿçã®å€èŠçŽ èªèšŒïŒMFA)ã¬ã€ãã®å ±æãã¯ãããšããä¿è·ããŒã«ããçšæããŠããŸãã ã»ãã¥ãªãã£æ¥çã«ã¯ãé åèªãè€éãªæè¡ããŒã«ããæ§æããããã¢ã«ãã¡ãããã¹ãŒããã®æªãã€ã¡ãŒãžããããŸãããMFAãäŸå€ã§ã¯ãããŸããã MFAã®ãã¹ãŠãçè§£ããããšããæ°ãé ããªããŸãããMFAã®çšèªãçš®é¡ãåžžèçãªã«ããŽãªãŒã«åé¡ããŠã¿ããšãæã£ãŠããããããããããããªããŸãã é£éŠæ¿åºã¯ãäŒæ¥ã«å¯ŸããŠå ç¢ãªèªèšŒããã»ã¹ãæ¡çšããããã«ããŸããŸã匷ãèŠè«ããŠããŸãã ãã€ãã³å€§çµ±é ã«ããæšå¹Žã®ãµã€ããŒã»ãã¥ãªãã£ã«é¢ãã倧統é 什ãšãã®ä»ã®ä»å¹Žã®ç·æ¥å£°æãããè¡æ¿ç®¡çäºç®å±ïŒOMBïŒã«ããå ¬çæ©é¢åãã®ãã£ãã·ã³ã°å¯ŸçMFAã®ããã®ãŒããã©ã¹ãæŠç¥ã®çå®èšç»ããµã€ããŒã»ãã¥ãªãã£ã»ã€ã³ãã©ã¹ãã©ã¯ãã£ã»ãã¥ãªãã£åºïŒCISAïŒã®æè¿ã®å£°æãšShield Upããã°ã©ã ãŸã§ãèžãŸãããšãä»ãããµã€ããŒã»ãã¥ãªãã£è åšãã身ãå®ãããã¹ãŠã®MFAå°éçšèªã確å®ã«çè§£ããæã§ãã 以äžã¯ãçµç¹ã§äœ¿çšã§ããéèŠãªçšèªã§ãã ããã«ã¯ãäž»èŠãªèªèšŒçšèªãšãã®å®çŸ©ãããã³äž»æµèªèšŒããŒã«ãšMFAããŒã«ã®ãªã¹ããå«ãŸããŠããŸãã ãŸãããã¹ã¯ãŒãã®èœãšã穎ãšãæªæ¥ã®ãã¹ã¯ãŒãã¬ã¹èªèšŒã«åããéèŠãªã¹ãããã«ã€ããŠãããã¡ãã®ãã€ãžã§ã¹ãçãããªã§ç޹ä»ããŠããŸãã MFAçšèªïŒ2FAãMFAããã£ãã·ã³ã°å¯ŸçMFAã®å®çŸ© 2èŠçŽ èªèšŒïŒ2FAïŒ 2FAãšã¯ã2çš®é¡ã®éãèŠçŽ ãçµã¿åãããŠäœ¿ãããŠãŒã¶ãŒã䞻匵ãããªã³ã©ã€ã³IDã確èªããæ¹æ³ã§ãã ãããã2段éèªèšŒããšåŒã¶å ŽåããããŸãããç¥èªãšããŠ2FAã䜿çšãããŠããŸãã 2FAã«äœ¿çšãããèŠçŽ ã«ã¯ãæ¬äººãç¥ãèŠçŽ ïŒäŸïŒãã¹ã¯ãŒããPINïŒãæ¬äººãæã€èŠçŽ ïŒäŸïŒã»ãã¥ãªãã£ããŒãé»è©±çªå·ïŒãæ¬äººãåããèŠçŽ ïŒäŸïŒé¡èªèšŒïŒãå«ãŸããŸãã å€èŠçŽ èªèšŒïŒMFAïŒ MFAã§ã¯ãã¢ã«ãŠã³ãã«ãµã€ã³ã€ã³ããããã«ãè€æ°ã®èšŒæ ãŸãã¯èŠçŽ ã䜿ã£ãŠã3ã€ä»¥äžã®æ¹æ³ã§ãã°ã€ã³ããããšãèŠæ±ãããŸãã MFAã«ã¯SMSããŒã¹ã®ã¯ã³ã¿ã€ã ãã¹ã¯ãŒãïŒOTPïŒãã¢ãã€ã«ã¢ããªãçäœèªèšŒãç£æ°ã¹ãã©ã€ãã«ãŒããã¹ããŒãã«ãŒããç©çã»ãã¥ãªãã£ããŒãªã©æ§ã ãªçš®é¡ããããŸãã ãã£ãã·ã³ã° ãã£ãã·ã³ã°ãšã¯ããŠãŒã¶ãŒãéšãããŠãŠãŒã¶ãŒåããã¹ã¯ãŒããã¯ã¬ãžããã«ãŒããªã©ã®å人æ å ±ãããã®ãŠãŒã¶ãŒã®ã¢ã«ãŠã³ãã®ä¹ã£åããè¬ã第äžè ã«æããããã«èªå°ãããããšã§ãã ãã£ãã·ã³ã°æ»æã®59%ãééç®çã§ãã ãã£ãã·ã³ã°å¯ŸçMFA ãã£ãã·ã³ã°å¯ŸçMFAãšã¯ãæ»æè ãã¢ã¯ã»ã¹æ å ±ãååããããšãããŠãŒã¶ãŒãéšããŠæ å ±ãé瀺ãããããšãé²ãèªèšŒããã»ã¹ã®ããšã§ãã ãã¹ã¯ãŒããSMSããã®ä»ã®ã¯ã³ã¿ã€ã ãã¹ã¯ãŒãïŒOTPïŒãã»ãã¥ãªãã£ã®è³ªåãããã«ã¯ã¢ãã€ã«ããã·ã¥éç¥ãªã©äžè¬çã«äœ¿çšãããMFAã¯ãåè¿°ã®æ»æã®ãããããŸãã¯äž¡æ¹ã®åœ±é¿ãåããããããããã£ãã·ã³ã°æ»æãžã®èæ§ã¯ãããŸããã æŽã«ããã®ããã»ã¹ã§ã¯åžžã«ååœäºè ã¯ãã®æå¹æ§ãšéå§ã®ææã瀺ã蚌æ ãæåºããªããã°ãªããŸããã ã¢ã¡ãªã«åè¡åœè¡æ¿ç®¡çäºç®å±ãæè¿çºè¡ããèŠæžïŒ7ããŒãžïŒã«ãããšããã£ãã·ã³ã°å¯ŸçMFAã¯ãé£éŠæ¿åºã®PIVïŒPersonal Identity VerificationïŒã«ãŒãããã³ã¹ããŒãã«ãŒããšãææ°ã®FIDOããã³WebAuthnã®2ã€ã®èªèšŒæè¡ãšããŠå®çŸ©ãããŠããŸãã èªèšŒãšMFAã§ãã䜿ãããŠããçšèª èªèšŒã¢ã㪠èªèšŒã¢ããªã¯ãã¢ãã€ã«ãŸãã¯ãã¹ã¯ããã端æ«ã§æéããŒã¹ã®ã¯ã³ã¿ã€ã ãã¹ã³ãŒã (TOTP) ãçæããããšã§ããªã³ã©ã€ã³ã¢ã«ãŠã³ãã®ã»ãã¥ãªãã£å±€ã远å ããŸãã TOTPæ¹åŒã¯2å±€ç®ã®ã»ãã¥ãªãã£ã远å ããèšèšã§ã倿°ã®èªèšŒã¢ããªã§æ¡çšãããŠããŸãã ããã«ã¯ãã¢ãã€ã«ãšãã¹ã¯ãããã«ãããŠæãå®å šãªèªèšŒã¢ããªã§ããYubico AuthenticatorãäŸã«æããããŸãã èªèšŒã¢ããªã¯ã¬ãã«2ã®åŒ·åºãªã»ãã¥ãªãã£ã§ããããã£ãã·ã³ã°å¯ŸçMFAãšåãã¬ãã«ã«ãŸã§ã¯å±ããŸããã çäœèªèšŒ çäœèªèšŒã¯ãç©ççãŸãã¯è¡åçãªäººéã®ç¹æ§ã«ããã·ã¹ãã ãããã€ã¹ããŸãã¯ããŒã¿ãžã®ã¢ã¯ã»ã¹ãèš±å¯ãã人ãããžã¿ã«ã§èå¥ããä»çµã¿ã§ãã ãã€ãªã¡ããªã¯ã¹èå¥åã®äŸãšããŠã¯ãæçŽãé¡ã®ãã¿ãŒã³ãé³å£°ãã¿ã€ãã³ã°ã®ãªãºã ãæããããŸãã ã»ãã¥ãªãã£ããŒãªã©ã®çäœèªèšŒããŒã¿ãååŸãããšããã³ãã¬ãŒããä¿åãããåŸã§ããã€ã¹ãŸãã¯ã¢ããªã±ãŒã·ã§ã³ãžã®èªèšŒã«äœ¿çšã§ããããã«ãªããŸãã çäœèªèšŒã¯2FAã®å®å šãªåœ¢æ ãšèããããŠããŸãããããã§ããµã€ããŒæ»æãåãããããLapsus$ã«ããæè¿ã®ãµã€ããŒæ»æãªã©ãèšå€§ãªçäœèªèšŒããŒã¿ããŒã¹ã®çé£ãçºçããŠããŸãã FIDO CTAP1 FIDOãšã¯ãåçŽãªãã¹ã¯ãŒãã«ä»£ããèªèšŒèŠæ Œã®éçºãšæ®åãããã·ã§ã³ãšããŠ2013幎ã«çºè¶³ãããªãŒãã³ãªæ¥çå£äœFIDOã¢ã©ã€ã¢ã³ã¹ã®ããšã§ãã Yubicoã¯FIDOã¢ã©ã€ã¢ã³ã¹çäºäŒã®äŒå¡ã§ãFIDOæšæºã®äœè å Œéçºè ã§ãã CTAP1ãšã¯ãClient to Authenticator Protocolã®ããšã§ãå€éšããŒã¿ãã«èªèšŒåšïŒããŒããŠã§ã¢ã»ãã¥ãªãã£ããŒãªã©ïŒãã³ã³ãã¥ãŒã¿ãªã©ã®ã¯ã©ã€ã¢ã³ããã©ãããã©ãŒã ãšé£åãããããšãã§ãããããã³ã«ã§ãã U2FïŒäžèšã®å®çŸ©åç §ïŒã¯ãFIDOã®CTAP1ãšCTAP2ãããã³ã«ã®äžéšã§ãã FIDO CTAP2 …

Jul 25, 2022
æ¿åºãå ¬çæ©é¢ãWebAuthnã«æ³šç®ãã¹ã5ã€ã®çç±
é£éŠæ¿åºãå·æ¿åºãå°æ¹èªæ²»äœãªã©ã®å ¬å ±éšéæ©é¢ã¯ãå°å瀟äŒã®æ©èœãæ¯ããéèŠãªè²¬ä»»ãæ ã£ãŠããŸããåœå®¶å®å šä¿éããå ¬å ±äº€éæ©é¢ãå ¬å ±æè²ãæ²»å®ãå·ç«å ¬åãéèãµãŒãã¹ããšãã«ã®ãŒãé»åç¶²ãªã©ãå€ãã®ãµãŒãã¹ã¯ãã¹ãŠçšéã§è³ãããå ¬å ±éšéã管çããŠããŸãã ãããã¯ç掻ã«äžå¯æ¬ ãªèŠçŽ ã§ããããããã®éèŠãªæ¥åãç¶æããããã«å¿ èŠãªå人æ å ±ãæ©å¯æ å ±ã®éãèšå€§ã§ãããããæ¿åºæ©é¢ã¯åžžã«æŒæŽ©ãªã¹ã¯ã«ãããããŠããŸãã æ¿åºããã®ä»ã®å ¬çæ©é¢ãéå¶ããã·ã¹ãã ãããŒã¿ã«ã¯ãåŸæ¥å¡ãè«è² æ¥è ã ãã§ãªããããŒãããŒãåžæ°ãæ¥ã ã¢ã¯ã»ã¹ããŠãããã¢ã«ãŠã³ãä¹ã£åãã«é¢é£ããã»ãã¥ãªãã£äŸµå®³ã®å¯èœæ§ãé£èºçã«é«ãŸã£ãŠããŸãã äºå®ããªã¢ãŒããããã³ã°ã¯é©ãã¹ãæ©ãã§çºçãç¶ããŠããããã®äžæ¹ã§ããé«åºŠã«æé·ããŠããŸãã 2020å¹Žçæ å ±æŒæŽ©å ±åæžã«ãããšã55%ã¯çµç¹çãªç¯çœªéå£ã«ãããã®ã§ã38%ã¯åœå®¶ãæ¿åºãé¢äžããæŽ»åã«ãããã®ã ã£ããšã®ããšã§ãã CACãPIVã«ãŒãã¯ãå ¬çéšéå ã®ããŸããŸãªé£éŠæ¿åºæ©é¢ã§äºå®äžã®èªèšŒæ¹æ³ãšãªã£ãŠããŸãããå€ãã®å Žåããããã®ã«ãŒãã¯é©åã§ã¯ãªãããã¹ã¯ãŒãã¯é«åºŠãªæ»æããä¿è·ããããã®ååãªã»ãã¥ãªãã£ãæäŸããŸããã 幞ããªããšã«ãFIDO Allianceã®FIDO2仿§ã»ããã®ã³ã¢ã³ã³ããŒãã³ãã§ããWebAuthnã¯ããã¹ãŠã®ã³ã³ãã¥ãŒãã£ã³ã°ãã©ãããã©ãŒã ã§ãµããŒããããããã«ãªã£ãããã£ãã·ã³ã°ã«åŒ·ãææ°ã®WebèªèšŒèŠæ Œã§ãã WebAuthnã䜿çšãããšãWebãµã€ãããµãŒãã¹ãããã³ã¢ããªã±ãŒã·ã§ã³ã¯ããã¹ã¯ãŒããžã®äŸåãå®å šã«æé€ãããªãã·ã§ã³ã«ã£ãŠåŒ·åãªèªèšŒãç°¡åã«æäŸã§ããŸãã ããã«ã¯ãæ¿åºããã¹ãããWebããŒã¹ã®ã¢ããªã±ãŒã·ã§ã³ããµãŒãã¹ (èªåè»å±ãªã©) ãå«ãŸããŸãããããã¯ãåŸæ¥å¡ãšé¡§å®¢ã®äž¡æ¹ã察象ãšããŠããŸãã ããã§ã¯ãé£éŠæ¿åºããã®ä»ã®å ¬çæ©é¢ãWebAuthnã«æ³šç®ãã¹ã5ã€ã®çç±ãæããŸãã èŠæ Œåããã匷åãªèªèšŒ 匷åãªèªèšŒã®èŠæ ŒåãåããŠå¯èœã«ãªããŸããã ããžã¿ã«å ¬å ±éšéãµãŒãã¹å šäœã§åçŽãªå€èŠçŽ èªèšŒ (MFA) ãèšå®ãã䟿å©ã§äžè²«æ§ã®ããå®å šãªãã°ã€ã³ã䜿çšããããšãæ³åããŠã¿ãŠãã ããã WebAuthnã¯ããã¹ãŠã®äž»èŠãªãã©ãŠã¶ãšãªãã¬ãŒãã£ã³ã°ã·ã¹ãã ã§ãããå¯èœã«ãããµãŒãã¹ãšã¢ããªã匷åããŠããšã³ããŠãŒã¶ãŒã匷åãªèªèšŒãå©çšã§ããããã«ããŸãã ã»ãã¥ãªãã£ã®åäž å ¬å ±éšéã¯éèŠãªæ å ±ãžã®ã¢ã¯ã»ã¹æš©ãæã¡ãæ©å¯ããŒã¿ãä¿åããŠãããããæ å ±æŒæŽ©ã«ãã£ãŠäœçŸäžäººãã®äœæ°ã®å®å šãšã»ãã¥ãªãã£ãè ããããå¯èœæ§ããããŸãã å ¬éããŒæå·åã䜿çšããããšã§ãWebAuthnã¯åŒ·åãªèªèšŒã®ã¬ãã«ãåŒãäžããå ¬å ±éšéã®åŸæ¥å¡ãè«è² æ¥è ãããŒãããŒãåžæ°ãå«ããŠãŒã¶ãŒã«å ç¢ãªMFAã»ãã¥ãªãã£ãæäŸããŸãã ã·ãŒã ã¬ã¹ãªãŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ WebAuthn APIã䜿çšããããšã§ãWebã¢ããªãã¢ãã€ã«ã¢ããªã§åŒ·åãªèªèšŒã«ã¢ã¯ã»ã¹ã§ããããããã¹ã¯ãŒãã®ãªã»ãããSMSã³ãŒãã®ç ©ãããããªããªãããŠãŒã¶ãŒã¯ã»ãã¥ãªãã£ããŒãã¿ããããã ãã§ç°¡åã«ãµã€ã³ã€ã³ã§ããŸãã WebAuthn APIã䜿çšãããšãITããŒã ãšéçºè ã¯ãWebAuthnãæ¢åã®ãµãŒãã¹ãšæ°ãããµãŒãã¹ã«ç°¡åãã€è¿ éã«çµ±åããäžè²«æ§ã®ããã·ãŒã ã¬ã¹ãªèªèšŒãšã¯ã¹ããªãšã³ã¹ããŠãŒã¶ãŒã«æäŸã§ããŸãã WebAuthnã¯ãçäœèªèšŒããããŒããŠã§ã¢ã»ãã¥ãªãã£ããŒãŸã§ããŠãŒã¶ãŒã«å¹ åºãèªèšŒãªãã·ã§ã³ãæäŸããŸãã çç£æ§ã®åäž WebAuthnã§ã¯ããã¹ã¯ãŒãã®ãªã»ããã¯ãã¯ãåé¡ã§ã¯ãããŸããã ãã¹ã¯ãŒããªãã®ãã°ã€ã³ãå¯èœã«ãªãããšã§ããã¹ã¯ãŒãã®ç®¡çã«è²»ããããæéããã©ã¹ãã¬ãŒã·ã§ã³ããªããªããŸãã ãã¹ã¯ãŒãã®ãªã»ãããšç®¡çã«ãªãœãŒã¹ãè²»ããå¿ èŠããªããªãããããã®æéççž®ã¯å éšã®å ¬å ±éšéã®åŸæ¥å¡ãšå€éšãŠãŒã¶ãŒã®äž¡æ¹ã«å¯Ÿãããã«ããã¹ã¯ãšãµããŒãã»ã³ã¿ãŒã«ãŸã§åã³ãŸãã ã³ã¹ãã®åæž ç¹ã«æ¿åºæ©é¢ããã®ä»ã®å ¬çæ©é¢ã®æ å ±æŒæŽ©ã¯ãæ©å¯ããŒã¿ã®æå€±ãçç£æ§ã®äœäžãçµæžç䟵害ãªã©ãããŸããŸãªåœ¢ã§æªåœ±é¿ãåºãå¯èœæ§ããããŸãã WebAuthnã¯ãæ å ±æŒæŽ©ããµããŒãã³ã¹ãã«äŒŽãçµæžçæªåœ±é¿ã軜æžããæ¿åºæ©é¢ããã®ä»ã®å ¬å ±éšéã®ãµãŒãã¹ãã以åã¯ã€ã³ãã©ã¹ãã©ã¯ãã£ãšãã¹ã¯ãŒãã®ç¶æç®¡çã«å åœããŠããäºç®ãå¥ã®çšéã«äœ¿ãããšãå¯èœã«ããŸãã

Jul 25, 2022
YubiKeyã«ãããŠã¯ã©ã€ãã®éèŠãªITã€ã³ãã©ã®ä¿è·
ãã·ã¢ã«ãããŠã¯ã©ã€ããžã®äŸµæ»ã¯ãç©ççãªäžçãšããžã¿ã«äžçã®äž¡æ¹ã«ãããŠã®æŠéã§ãã åæ¹ã«ãšã£ãŠãæ å ±æŠã¯æŠå Žã«ãããŠäººé¡å²äžæãéèŠãªåœ¹å²ãæãããŠããŠãæå€§ã®æ»æãã¯ãã«ãšè åšã¯è匱ãªãã°ã€ã³èªèšŒæ å ±ã§ãã å€§ææ¿åºç³»ãšãã«ã®ãŒäŒæ¥ã®ãŠã¯ã©ã€ãã®ãµã€ããŒã»ãã¥ãªãã£æ åœè ã«ãããšãæªéãå«ãã€ã³ãã©ãžã®æ»æã¯2021å¹Žå šäœã§ã¯2äž1000ä»¶ã§ãããã2022幎2æ24æ¥ãã3æ24æ¥ã®éã ãã§76äžä»¶ä»¥äžãšã3519ïŒ ãå¢å ããŸããã 3æ4æ¥ãYubicoã¯èªèšŒããŒãããŒã§ããHideezããããŠã¯ã©ã€ãã®éèŠã€ã³ãã©ã®ä¿è·ãžã®ååãäŸé ŒãããŸããã æŠäºãåçºããæãHideezããŒã ã®å€ãã¯ãŠã¯ã©ã€ãã«çãŸããæå€§ã®æšçãšãªããŠã¯ã©ã€ãã®äŒæ¥ãITã·ã¹ãã ã®ããã«èªåãã¡ã®å°éç¥èã補åããµãŒãã¹ãæäŸããæ±ºæãããŸããã Yubicoã¯2äžåã®YubiKeyã®å¯èŽãšãæè¡æ¯æŽã®æäŸã決å®ããŸããã ãã®åŸæ°é±éã®ãã¡ã«ãYubiKeyã¯äžèšãã¯ãããšãã12ã®æ¿åºæ©é¢ãšéèŠãªã€ã³ãã©ãæäŸããäŒæ¥ã«é åžãããŸããã SSSCIPïŒãŠã¯ã©ã€ãã®åœå®¶ç¹å¥éä¿¡æ å ±ä¿è·å±ïŒ ITã®è¿ä»£åãšæ¬¡äžä»£æ¿åºé»åãµãŒãã¹ãäž»å°ããããžã¿ã«è»¢æç æ¿åºç³»ãšãã«ã®ãŒäŒæ¥ãšçºé»æ ãŠã¯ã©ã€ãã®ã.uaããã¡ã€ã³ç®¡çäŒæ¥ã§ããHostmaster.UA ç§ã¯è€æ°ã®çµç¹ã®ä»£è¡šè ãšãããªé話ãè¡ãã圌ããçŽé¢ããŠããITã»ãã¥ãªãã£ã®èª²é¡ãããµã€ããŒã»ãã¥ãªãã£ã«é¢ããå ±åã®åãçµã¿ãå ¬éããããšãéèŠã§ããçç±ã«ã€ããŠã詳ããæããŠããã ããŸããã 以äžã¯ãç§ãã¡ã亀ãããäŒè©±ã®èŠçŽã§ãã ãã·ã¢ã«ãã䟵æ»åŸã貎瀟ããŠã¯ã©ã€ãã®èªèšŒäŒç€Ÿãããµã€ããŒã»ãã¥ãªãã£ãæ¯æŽããäŒæ¥ã«è»¢èº«ããçµç·¯ã«ã€ããŠã詳ããæããŠãã ããã ïŒOleg NaumenkoãHideez CEOïŒã2æ24æ¥ãç§ãã¡ã¯ç©ºããéã£ãŠããç匟ã®é³ã§ç®ãèŠãŸããŸããã çªç¶ãç§ãã¡ã®äžçã¯åŽ©å£ããå®¶æãå人ãååãããŒãããŒã¯çãããããèªåããšãã¹ãè¡åãèŠæ¥µããããšããŠããŸããã ç¿é±ãã»ãšãã©ã®äººã¯å°äžå£ãå°äžé§è»å Žãå°äžéã®é§ ã§å¯æ³ãŸããããšããéé ·ãªçŸå®ãäœéšããŸããã 人ã ã¯åãããããªå¯ãã®äžãç匟ãé匟ã®é³ãèããªãããå·ããåºã§å¯ãŸãããããã®ç¶æ³ã¯ä»ãç¶ããŠããŸãã ç§ãã¡ã®çŸããç¥åœã¯ãä»ãæ»æãåããŠããŸãã éœåžã«ç匟ãèœãšãã ãã§ãªãããã·ã¢ã®ããã«ãŒéå£ã¯éèŠã€ã³ãã©ãæ¿åºçµç¹ãäŒæ¥ã«å¯ŸããŠåäŸã®ãªããµã€ããŒæŠäºãå§ããææ¿ã黿°ãæ°Žéãå°æ¹è°äŒãè»äºåžä»€éšãç©æµæ¥è ãªã©ãæ©èœäžå šã«é¥ããããšããŸããã ããã«ç§ãã¡ã¯ããŠã¯ã©ã€ãã®ã§ããã ãå€ãã®æ¿åºæ©é¢ãçµç¹ãšååããå¢å ããæ»æããè¿ éã«å®å šã確ä¿ããããã«ãåŒç€Ÿã®ãããããªãœãŒã¹ã掻çšããããšã決æããŸããã äœããµã€ããŒã»ãã¥ãªãã£äžã®æå€§ã®è åšãšèª²é¡ã§ãããïŒ ïŒYuriy AckermannãHideezè»äºæŽ»åVPïŒãæ»æã®å€§åã¯ãéèŠãªã€ã³ãã©ã®å€ãã®ã¢ã«ãŠã³ãã«ã¢ã¯ã»ã¹ã§ããå人ãšã·ã¹ãã ãæšçã«ããŠããŸããã ãŠã¯ã©ã€ãã®å€ãã®æ¿åºæ©é¢ã§ã¯ãåœå®¶ã«å¯Ÿããé«åºŠãªæ»æãé²åŸ¡ã§ãã匷åãªå€èŠçŽ èªèšŒã䜿çšããŠããŸããã Yubicoãšã¯éå»ã«äžç·ã«ä»äºãããçµéšããããHideezã¯æ¢ã«ã¹ããŒãã«ãŒããFIDOèªèšŒãYubiKeyã®ãµããŒããHideezèªèšŒãµãŒããŒã«çµ±åããŠããŸããã ããã§ãç§ãã¡ã¯ãã®ããã·ã§ã³ãæ¯æŽããããã«ãååããé¡ãããããšã«æ±ºããã®ã§ãã ç§ãã¡ã¯YubiKey 5ã·ãªãŒãºã®2äžå°ã®ããã€ã¹ãšãå±éãæ¯æŽããããã®æè¡ãµããŒããæäŸããŠããã ããããšã«æè¬ããŠããŸãã YubiKeyãåãåã£ãåŸãæ¿åºç³»ãšãã«ã®ãŒäŒæ¥ãå«ãè€æ°ã®æ¿åºæ©é¢ãéèŠã€ã³ãã©æ©é¢ã«é åžããŸããã ãŸããYubiKeyãæŽã«åºç¯ãªãã€ã»ãã¥ãªãã£ãè»äºçšéã«äœ¿çšããããããŠã¯ã©ã€ãåœå®¶ç¹å¥éä¿¡æ å ±ä¿è·å±ïŒSSSCIPïŒãšååããŠãYubiKey 5ã·ãªãŒãºã®èªèšŒååŸã«åãçµã¿ãŸãããã ã©ãããŠæ°ãããµã€ããŒã»ãã¥ãªãã£ããŒã«ãå°å ¥ããããšèããã®ã§ããïŒ ïŒOleksandr PotiiãSSSCIPå¯é·å®ïŒãç§ãã¡ã¯ãæ¿åºãéèŠã€ã³ãã©ãããã€ããŒã«å¯ŸããåäŸã®ãªãæ»æãç®ã®åœããã«ãããµã€ããŒã¹ããŒã¹ã«ããããã·ã¢ã®äŸµç¥ããåœãå®ãããã«24æé365æ¥äœå¶ã§åããŠããŸãã éåžžãªã6ã«æä»¥äžãããèªèšŒããã»ã¹ããããæ°é±éã§å®äºãããŠã¯ã©ã€ãã®ãã¹ãŠã®æ¿åºæ©é¢ãè»ãããã³ãã®è·å¡ãYubiKey 5ã·ãªãŒãºã䜿çšã§ããããã«èªèšŒãååŸããã®ã§ãã ãŸããSSSCIPã®ã¹ã¿ãããé»åææžç®¡çã·ã¹ãã ã§äœ¿çšããããã3,000åã®YubiKeyãé åããŠãããšããã§ãã Hideez瀟ãYubico瀟ãšã®ããŒãããŒã·ããã«ããããã£ãã·ã³ã°å¯Ÿçããã¹ã¯ãŒãã¬ã¹èªèšŒã®ãœãªã¥ãŒã·ã§ã³ãã§ããã ãå€ãã®æ¿åºæ©é¢ã«å°å ¥ããŠããŸãã ããã«ã¯èšãç¥ããªãã»ã©ã®åŽåãããããYubicoãšHideezããŒã ããã®ãµããŒãããã£ãŠåããŠå¯èœãšãªããŸãã YubiKeyã®å°å ¥ãšå±éãå§ãŸã£ãŠãããã©ããªå¹æããããŸãããïŒ ïŒå¿ååžæããŠã¯ã©ã€ãçºé»æãµã€ããŒã»ãã¥ãªãã£æ åœåœ¹å¡ïŒãæŠäºãå§ãŸã£ãŠãããæã ã¯å€§éã®ãã£ãã·ã³ã°æ»æãåããŠããŸãã ãã®ãªã¹ã¯ã軜æžããããã«æã ã®çµç¹ã¯æ¯æ¥ãã¹ã¯ãŒãã倿ŽããããšãèŠæ±ããŠããŸããããããã§ã¯ååãªã»ãã¥ãªãã£ã確ä¿ã§ãããæéããããã ãã§ãªããæŠéå°åã§åãåŸæ¥å¡ã«æŽã«ã¹ãã¬ã¹ãäžããŠããŸããã å®å šæ§ãé«ãã ãã§ãªããæ§ã ãªã·ã¹ãã ãããã€ã¹ã§ã·ãŒã ã¬ã¹ã«åäœãããœãªã¥ãŒã·ã§ã³ãå¿ èŠã§ããã ãŸããã€ã³ã¿ãŒããããæºåž¯é»è©±ã®æ¥ç¶ãäžå®å®ãªå Žæã§ã䜿ããããŒã«ãå¿ èŠã§ããã ããã«ããã£ãã·ã³ã°ãäžéè æ»æãªã©ã®æå£ãå·§åŠåããŠãããããã¬ã¬ã·ãŒèªèšŒãã¢ãã€ã«ããŒã¹ã®èªèšŒã«ã¯é Œããªãç¶æ³ã§ããã YubiKeyã®å©ç¹ã¯ãæ±çšãã«ããããã³ã«ã®ããã€ã¹ãšããŠæ§ç¯ãããŠãããããPCãã°ã€ã³ãVPNã¢ã¯ã»ã¹ãã¯ã©ãŠãããŒã¹ã®çç£æ§ã®åäžãã¡ãŒã«ã·ã¹ãã ãERPã·ã¹ãã ãã¢ãã€ã«ã¢ããªã±ãŒã·ã§ã³ã«åãèªèšŒåšã䜿çšã§ããããšã§ãã å±éã®æ¡å€§ã«äŒŽããYubiKeyã®ãŠãŒã¹ã±ãŒã¹ãå¢ããŠããã§ãããã YubiKeyã«ããã»ãã¥ãªãã£ãå€§å¹ ã«åŒ·åãããå€ãã®ITã·ã¹ãã ã«è¿ éãã€ç°¡åã«ã¢ã¯ã»ã¹ã§ããããã«ãªããŸãããããã¯åŸæ¥å¡ã«å€§ããªå®å¿æãäžããŠãããŸãã YubiKeyã¯ãå°äžæŠã®æåç·ã§æŽ»èºããå µå£«ãå®ãé²åŒŸãã§ãããšåããããããµã€ããŒé²è¡ã«ãããŠéèŠãªãã®ã ãšèããŠããŸãã ïŒOleg LevchenkoãHostmaster CEOïŒãHostmaster.UAã¯ãHideezãšYubicoããã®ãµããŒãã«å¿ããæè¬ããŠããŸãã …

Jul 25, 2022
å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ã§ã¬ã¬ã·ãŒèªèšŒãæ©èœããŠããªãæ¬åœã®çç±
å€ãã®äŒæ¥ã§ã¯ãã»ãã¥ãªãã£ãªã¹ã¯ãé«é¡ã®ITã³ã¹ãããŠãŒã¶ãŒã®äžæºã®åå ãšãªã£ãŠãããã¹ã¯ãŒããã¢ãã€ã«ããŒã¹ã®ãœãªã¥ãŒã·ã§ã³ã§ããã¬ã¬ã·ãŒèªèšŒã«æ©ãŸãããŠããŸãã å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ãå ±æããã€ã¹ç°å¢ãæã€çµç¹ã§ã¯ããããã®åé¡ã¯æŽã«æ·±å»ã§ãã ãã«ã¹ã±ã¢ã補é ãå°å£²ããµãŒãã¹ãéèããšãã«ã®ãŒãå ¬å ±äºæ¥ãç³æ²¹ã»ã¬ã¹ãæè²ãªã©ã®æ¥çã§äžè¬çã«äœ¿ãããŠããå ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ã§ã¯ãå®éã«ã¯æããªã¹ã¯ã®é«ãæ £è¡ãé©çšãããŠããã®ã§ãã å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ç°å¢ã§ããŠãŒã¶ãŒã®å±éºãªè¡åãå©é·ãããåå ãšåé¡ãžã®å¯Ÿå¿ç ãŸãããã«ã¹ã±ã¢æ¥çããèŠãŠãããŸãããã ç±³åœåœç«å»åŠå³æžé€šã«ããæè¿ã®èª¿æ»ã§ã¯ãå»çåŸäºè ã®73.6%ãé»åå¥åº·èšé²ïŒEHRïŒãžã®ã¢ã¯ã»ã¹ã«ä»ã®ã¹ã¿ããã®èªèšŒæ å ±ã䜿çšããŠãããšå ±åããŠããŸãã ç ä¿®å»ã®å Žåã¯ããã®å²åã100ïŒ ãŸã§è·³ãäžãããŸããã€ã³ã¿ãŒã³ãåŸèšºå»ãè³æ Œãæã£ãŠããªãå Žåãæš©éãäžååãªå ŽåããããŸãããå¿ ããããããåå ãšã¯éããŸããã HIPAAã®å³æ ŒãªèŠä»¶ã 髿°Žæºã®ITã»ãã¥ãªãã£æè²ã«ããããããããã«ã¹ã±ã¢æ¥çã®ITã»ãã¥ãªãã£å°éå®¶ã¯ãæªã ã«ãããããªã¹ã¯ã®é«ãè¡çºã«çŽé¢ããŠããŸãã ãã®çç±ã¯ã å»çåŸäºè ã«ãšã£ãŠãå»çã®äœ¿åœã¯ã»ãã¥ãªãã£ã®äœ¿åœã«åãããããããããã©ããªæ¹éãæè¡çãªå®å šçããã®çš®ã®è¡åãé²ãããšã¯ã§ããªãããã§ãã éèŠãªã·ã¹ãã ãžã®ã¢ã¯ã»ã¹ã«æéãããããããªæé ã¯ãæ£è ã®æ²»çã®åŠšãã«ãªãå¯èœæ§ããããŸãã ããããä»ã®å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ãå ±æããã€ã¹ã«ã€ããŠã¯ã©ãã§ããããïŒ ä»ã®æ¥çã§ã¯ãæ£è ã®å®å šæ§ã«ã€ããŠå¿é ããå¿ èŠã¯ãªãã§ãããããå®å šã§ã¯ãªãèªèšŒæ¹æ³ã«å ±éããŠããããšã¯ããç·æ¥æ§ããšããããŒãã§ãã å°å£²æ¥çã¯ã«ã¹ã¿ããŒãšã¯ã¹ããªãšã³ã¹æ¹é©ã®çã£åªäžã«ãããŸãã 販売å¡ã¯ã·ãŒã ã¬ã¹ã§åççãªã·ã§ããã³ã°äœéšãæäŸããªããã°ãªããªããšãããã¬ãã·ã£ãŒãæããŠããããã端æ«ãmPOSããã€ã¹ã«ãã°ã€ã³ãããŸãŸã§ãããªã©äžçšå¿ãªç¿æ £ãä»ãå¯èœæ§ãé«ããªããŸãã å®éãæè¿ã®èª¿æ»ã§ã¯38%ã®åŸæ¥å¡ãããã¹ã¯ãŒãå ±æã¯äŒç€Ÿã®æ¹éã§ãããšåçããŠããŸãïŒè€æ°ã®æ¥çã察象ãšããããŒã¿ïŒã ã»ãã¥ãªãã£ããã¹ã¯ãŒãã®ãã¹ããã©ã¯ãã£ã¹ã«ã€ããŠé«ãç¥èãæã£ãŠããçµç¹ã§ãããã¹ã¯ãŒãã®å ±æã¯äŸç¶ãšããŠåé¡ã«ãªã£ãŠããŸãã Yubicoã®æè¿ã®èª¿æ»ã®çµæã§ã¯å šåŸæ¥å¡ã®51%ãããžãã¹ã¢ã«ãŠã³ãã«ã¢ã¯ã»ã¹ããããã«ååãšãã¹ã¯ãŒããå ±æããŠããŠããã®äžã«ã¯ITã»ãã¥ãªãã£æ¥çã®åçè ã®49%ãå«ãŸããŠããŸãã 補è¬ã補é ãå ¬å ±äºæ¥ãç³æ²¹ã»ã¬ã¹æ¥çã§ã¯ã補é 端æ«ã äŒæ¥ã·ã¹ãã ã®èªèšŒãè¡ãéã«ããŠãŒã¶ãŒã®æè¢ãéªéã«ãªãããšããããŸãã ãã®ãããªæ¥çã§ã¯ããã¹ã¯ãŒãã®å ¥åã2èŠçŽ èªèšŒïŒããã·ã¥åã¢ããªãSMS OTPïŒãåä¿¡ããããã«æè¢ãå€ãæéã¯ãããããããŸããã ã¢ãã€ã«ãå¶éãããç°å¢ã§ã¯ãããããã§ããªãå ŽåããããŸãã ä»ã®æ¥çã§ããã¬ã¬ã·ãŒã·ã¹ãã ã§ã¯å®å šæ§ãé«ãå€èŠçŽ èªèšŒã§ã¯ãªãæªã ã«ãŠãŒã¶ãŒåãšãã¹ã¯ãŒãã䜿ã£ãæ¹æ³ã«äŸåããŠããŸãã äžèšã®æ¥çãšåæ§ã«ããŠãŒã¶ãŒã®äžæºãä»äºãçµããããå¿ èŠæ§ãããèªèšŒã®åé¿ãä¿ããããªç¶æ³ãçãŸããŠããŸãã åæ§ã«ãåŸæ¥å¡ã®41%ã¯ãã¹ã¯ãŒããä»ç®ã«æžãçããŠããŸãã å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ãå ±æããã€ã¹ç°å¢ã§ã¯ãããã¯åçŽã«ãªã¹ã¯ãé«ããŸãã æªæã®ããå éšé¢ä¿è ããµã€ããŒæ»æã«ãã£ãŠèªèšŒæ å ±ãæŒæŽ©ãããªã¹ã¯ã æŸçœ®ãããããã€ã¹ãæªçšãããããæã¡å»ãããããããªã¹ã¯ã ãã¹ã¯ãŒãã®å ±æãç¹æš©ããŒã¿ãŸãã¯ä¿è·ãããããŒã¿ãžã®ã¢ã¯ã»ã¹ã«ã€ããŠãã³ã³ãã©ã€ã¢ã³ã¹éåãç¯ããªã¹ã¯ã æŽã«ã¯å ±æãããèªèšŒæ å ±ã«ã¢ã¯ã»ã¹ããããã®ãã£ãã·ã³ã°ã®è©Šã¿ã«äžä¿¡ãæ±ããã«ä¿¡ããŠããŸããªã¹ã¯ãå¢ããããšã«ã€ãªãããŸãã éãããã®ã¯ãŠãŒã¶ãŒã§ã¯ãªãã¬ã¬ã·ãŒèªèšŒ ãã®ãããªè·å Žç°å¢ã§ã¯ãæªæãé倱ãã«ããããããã€ã³ãµã€ããŒã®è åšãå¢å¹ ããã ãã§ãã ããããåé¡ãããã®ã¯ãŠãŒã¶ãŒãäŒæ¥æåãITããªã·ãŒã§ã¯ãããŸããã 責ããããã¹ãã¯ã¬ã¬ã·ãŒèªèšŒã§ãããªãã£ã¹ã®å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ç°å¢ã«ãããŠããŠãŒã¶ãŒåãšãã¹ã¯ãŒãããŸãã¯ãŠãŒã¶ãŒåããã¹ã¯ãŒããã¢ãã€ã«èªèšŒæ©èœã®çµã¿åããã§ã¯ãè¿ éãã€ã·ãŒã ã¬ã¹ãªèªèšŒãšããéèŠãªããŒãºã«å¿ããããšã¯ã§ããŸããã å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ã«ãããèªèšŒã®èª²é¡ã«å¯ŸåŠããããã«ã¯ããããç¬èªã®ç°å¢ã«ãããã»ãã¥ãªãã£ãå¹çæ§ãä¿¡é Œæ§ãã³ã¹ãé¢ã§ã®åé¡ãšãã·ã³ãã«ã§çç£æ§ãé«ããããŒã¿ãã«ãªæå 端ãœãªã¥ãŒã·ã§ã³ã®ããŒãºãååã«çè§£ããå¿ èŠããããŸãã âââ å ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ã«é¢ãã詳现ãªåæã«ã€ããŠã¯ãåŒç€Ÿãã¯ã€ãããŒããŒãæè¿ã®ãµã€ããŒè åšããå ±æã¯ãŒã¯ã¹ããŒã·ã§ã³ãä¿è·ããããã«ããã芧ãã ããã