Tag: YubiKey


Feb 3, 2022
Salesforceã®äœ¿çšã«ã¯MFAãå¿ èŠã§ãïŒå¿ èŠãªçç±ãšã§ããããš
å·§åŠãªãµã€ããŒæ»æãäžå°äŒæ¥ãå€§äŒæ¥ã察象ã«å·æã«æ»æãç¶ããäžã§ãäŒæ¥ã¯é¡§å®¢ãåŸæ¥å¡ãããŒãããŒã®ã»ãã¥ãªãã£ãããå®å šã«å®ãããã«ããµã€ããŒã»ãã¥ãªãã£ã€ã³ãã©ã®æ¹åãåªå ãããå¿ èŠããããŸãã ãŠãŒã¶ãŒåãšãã¹ã¯ãŒãã¯ãé²åãç¶ãããµã€ããŒæ»æã«å¯ŸããŠããã¯ãååãªã»ãã¥ãªãã£ãæäŸãããã®ã§ã¯ãããŸããã æšå¹Žæ«ãSalesforceã¯2022幎2æ1æ¥ä»¥éãå瀟ã®è£œåããœãªã¥ãŒã·ã§ã³ããã©ãããã©ãŒã ã«ã¢ã¯ã»ã¹ããéã«å€èŠçŽ èªèšŒïŒMFAïŒãæå¹ã«ããããšã顧客ã«çŸ©åä»ãããšçºè¡šããããã«å¯ŸããåŒ·ãæ±ºæã衚æããŸããã ãã®èŠä»¶ã¯ãGoogleãTwitterãšãã£ãä»ã®å€§æãã¯ãããžäŒæ¥ããæè¿ã§ã¯ç±³åœæ¿åºãçºä»€ãã ã倧統é 什14028ã (2024幎ãŸã§ã«ãã¯ã³ã¿ã€ã ãã¹ã³ãŒããå©çšããSMSããŒã¯ã³ãããã·ã¥éç¥èªèšŒã¢ããªã¯ç±³åœæ¿åºã®èŠä»¶ã«æºæ ããªããªã) ã«ããåæ§ã®åãçµã¿ãè£å®ãããã®ã§ãã Yubicoã¯ãSalesforceã®MFAãšãã£ãã·ã³ã°ã«åŒ·ãFIDOããŒã¹ã®ã»ãã¥ãªãã£ããŒèªèšŒã®ãµããŒãã匷åããææ°ã®æŽ»åãç§°è³ããŠããŸãã MFAãå°å ¥ããããšã§ãSalesforceã®ãããªäŒæ¥ã¯ãããè¯ããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãæäŸããªããã顧客ããã©ãããã©ãŒã ã®ã»ãã¥ãªãã£ãå€§å¹ ã«åŒ·åããŠããŸãã Salesforceãæ±ããããšã¯ãäžçäžã§åŒ·åãã€ææ°ã®ããŒããŠã§ã¢èªèšŒã®å°å ¥ãå€§å¹ ã«å éãããäœåäžãã®é¡§å®¢ãäŒæ¥ããäºæ¥ã麻çºãããå¯èœæ§ã®ãããµã€ããŒè åšããããå®å šã«å®ãããšã§ãã Salesforceã®ã¢ã€ãã³ãã£ãã£ã»ãããã¯ãã»ãããžã¡ã³ãæ åœäžçŽå¯ç€Ÿé·ã§ããã€ã¢ã³ã»ã°ã¬ã€ã¶ãŒïŒIan GlazerïŒæ°ã¯æ¬¡ã®ããã«è¿°ã¹ãŠããŸãããã»ãŒã«ã¹ãã©ãŒã¹ã§ã¯ãä¿¡é Œã第äžã®äŸ¡å€ãšããŠããã顧客ããŒã¿ãå®ãããšã¯æãéèŠãªããšã§ãã 匷åãªMFAã®å°å ¥ãæšé²ããããã«ã¯ããŠãŒã¶ãŒã¢ã«ãŠã³ããšããŒã¿ãä¿è·ããããã«ãŠãŒã¶ãŒãšçµç¹ãå®è¡ã§ããå¯äžã®æåçã§ãããããŒããŠã§ã¢ããŒãªã©ã®å¹ åºãMFAãªãã·ã§ã³ãå¿ èŠã§ãã ã客æ§ãšã®ããŒãããŒã·ããã«ããMFAãæ®åãããããšã§ããã£ãã·ã³ã°ãã¯ã¬ãã³ã·ã£ã«ã¹ã¿ããã£ã³ã°ãšãã£ãäžè¬çãªè åšã®æåãå°é£ãªãã®ã«ããŸããã MFAãå®è£ ããæºåãã§ããŠããå Žåãã©ããéžæããã°ããã§ããããïŒ SMSãã¯ã³ã¿ã€ã ãã¹ã³ãŒããã¢ãã€ã«èªèšŒã¢ããªãªã©ã®åŸæ¥ã®ïŒãŸãã¯å€ãããã®ïŒMFAæ¹åŒã®ã»ãšãã©ã¯ããµã€ããŒæ»æã®é²æ¢ã«åœ¹ç«ãŠãããšã¯ã§ããŸããããã¹ãŠã®MFAãªãã·ã§ã³ãåãä»çµã¿ã§äœãããŠããããã§ã¯ãªãããšã«æ³šæããŠãã ããã äŸãã°ãSMSããŒã¹ã®èªèšŒã¯ãäŒæ¥ã®ã»ãã¥ãªãã£ã確ä¿ããã«ã¯ååãªå¹æããªãããšãäœåºŠã蚌æãããŠããŸãã ãŸããSalesforceã§ã¯ã¡ãŒã«ãSMSããŒã¹ã®ã¯ã³ã¿ã€ã ãã¹ã¯ãŒãã¯èš±å¯ãããŠãããã匷åãªMFAææ³ã®äœ¿çšã矩åä»ããããŠããããšãéèŠãªç¹ã§ãã ææ°ã®FIDOããŒã¹ïŒU2F/FIDO 2/WebAuthnïŒèªèšŒã«ç§»è¡ããããšã§ãçµç¹ãšãã®ãŠãŒã¶ãŒã¯ãã£ãã·ã³ã°ã«åŒ·ãMFAãå®çŸã§ããŸãã YubiKeyã®ãããªç©ççãªã»ãã¥ãªãã£ããŒã¯ãçµç¹ã«æ±ãããããµã€ããŒã»ãã¥ãªãã£ã®æãå³ããèªèšŒèŠä»¶ãæºãããªãããéåžžã«äœ¿ãããããYubiKeyã«è§Šããã ãã§æ¬äººèªèšŒãšå®å šãªã¢ã¯ã»ã¹ãæäŸããããšãã§ããŸãã ãããã®ããŒããŠã§ã¢ããŒã¹ã®ã»ãã¥ãªãã£ããŒã¯éåžžã«å®å šæ§ãé«ããSalesforceã®MFAèŠä»¶ãå®å šã«æºãããŠããŸãã ããããããã€ã¹ããªãã¬ãŒãã£ã³ã°ã·ã¹ãã ã«å¯Ÿå¿ããïŒãããã¯ãŒã¯ãµãŒãã¹ãããããªãå¿ èŠãšããã«ïŒæ°çŸãã®ãªã³ã©ã€ã³ãµãŒãã¹ãã¢ããªã±ãŒã·ã§ã³ãžã®å®å šãªãã°ã€ã³ãå¯èœã«ããããšã§ãã¢ã«ãŠã³ãä¹ã£åãã®ãªã¹ã¯ãã»ãŒãã¹ãŠæé€ããããšãã§ããŸãã ã客æ§ã®ããžãã¹ã«é©ããYubiKeyã®éžæ è€éãªãã€ããªããITç°å¢ãæã€äŒæ¥ã§ãããã¯ã©ãŠããã€ãã£ããªäžå°äŒæ¥ã§ãããYubicoã«ã¯ã客æ§ã®ã€ã³ãã©ãšåŸæ¥å¡ãå®ãããã®é©åãªããŒããããŸãã YubiKey 5ã·ãªãŒãºã¯ããã«ããããã³ã«ã®ã»ãã¥ãªãã£ããŒããããããã©ãŒã ãã¡ã¯ã¿ã§æäŸããŠããŸãããŸããYubiKey 5 FIPSã·ãªãŒãºã¯ããã¹ãŠã®ã³ã³ãã©ã€ã¢ã³ã¹ãšèŠå¶èŠä»¶ãæºããããã«èšèšãããŠããŸãã å€§èŠæš¡ãªçµç¹ãžã®ãµããŒãããèãã§ããã°ãYubiEnterpriseSubscriptionãæè»ãªè³Œå ¥ãªãã·ã§ã³ãæäŸãã仿¥ã®ãªã¢ãŒãã¯ãŒã¯ããã€ããªããã¯ãŒã¯ã®ç°å¢ããèãã§ããã°ãYubiEnterpriseDeliveryãå ŽæãåããYubiKeyãåŸæ¥å¡ãŸã§ãå±ãããŸãã çµç¹ã«æé©ãªYubiKeyããæ¢ãã®æ¹ã¯ãhttps://www.yubico.com/quiz/ãžã¢ã¯ã»ã¹ããŠãã ããã ç§ãã¡ã¯ãäžè¬ã®æ¶è²»è ããäžå°äŒæ¥ãå€§äŒæ¥ã«è³ããŸã§ããã¹ãŠã®äººã«ãšã£ãŠã€ã³ã¿ãŒããããããå®å šãªå Žæã«ããããã«ãã¯ã©ã¹æé«ã®ãœãªã¥ãŒã·ã§ã³ãæäŸããããšãç¶ç¶ããŠåãçµãã§ãŸãããŸãã â—– YubiKeyã§Salesforceã®ã¢ã«ãŠã³ããä¿è·ããMFAã远å ããæ¹æ³ã«ã€ããŠã¯ããã¡ããåç §ããŠãã ããã

Jan 13, 2022
2021幎以éãèªèšŒèŠæ Œã¯ã©ã®ããã«é²åããŠããã®ã§ãããã?
èªèšŒèŠæ Œã®éçºã¯ããã£ãããšæµããæ²ããããã£ãå·ã®ãããªãã®ã§ãã æ°ãããã€ã«ã¹ããŒã³ã«å°éããããã«ã¯ããã°ãã°äœå¹Žãã®ç®èº«çãªäœæ¥ãå¿ èŠãšãªããŸããããããã»ãã¥ãªãã£ãšã³ã·ã¹ãã å šäœã®ç³§ãšãªããäŒæ¥å šäœã®ããžã¿ã«ã¯ãŒã¯ãããŒã®å®å šæ§ãæ¯ããŠããã®ã§ãã ãã®å·ã®æ©æµã¯ãšã³ããŠãŒã¶ãŒã«ã¯èŠããªãããšãå€ãã®ã§ãããCISOãéçºè ã¯æ¯æ¥ã®ããã«å·ã®å¥å šæ§ã«ã€ããŠèããŠããŸãã Yubicoã¯åœŒãã®ãã°ã«ããŠãå·ãç£èŠããWebèªèšŒAPIïŒWebAuthnïŒãšClient to Authenticator ProtocolïŒã¯ã©ã€ã¢ã³ãã»ãã¥ã»ãªãŒã»ã³ãã£ã±ãŒã¿ãŒã»ãããã³ã«ïŒïŒCTAP2ïŒã®äž¡æ¹ãå å«ããïŒCTAP2ïŒã®äž¡æ¹ãå å«ããFIDO2ã®ãããªè¿ä»£çãªèªèšŒèŠæ Œã®éçºã«ãããŠãäž»å°çãªåœ¹å²ãæãããŠããŸãã å·ã®ã»ãšãã«ç«ã£ãŠããCISOã¯ããã æ°ŽãæµããŠããã®ãèŠãŠããã ãã®ã€ããã¯ãããŸããã çæ³çãªã®ã¯ãæ°å¹Žå ã®ã¹ã¿ã³ããŒãã®æ¹åæ§ãäºæž¬ããªããããã®å ãèŠæ®ããŠããããšã§ãã 仿¥ã¯ãYubicoã®2人ã®ãšãã¹ããŒããã·ãã¢ã¢ãŒããã¯ãã®ãžã§ã³ã»ãã©ãããªãŒïŒJBïŒãšã¹ã¿ã³ããŒãæ åœããã°ã©ã ãããŒãžã£ãŒã®ãžã§ã³ã»ãã©ã³ã¿ãïŒJFïŒãšäžç·ã«ã2021幎以éã®ã¹ã¿ã³ããŒãã®æ¹åæ§ã«ã€ããŠè°è«ããŸãã 圌ãã¯å·å²žã«åžžé§ããæ°ããåºæºã®éçºãã€ã³ã¿ãŒãããã®å®å šãå®ãããã«ãæªæ¥ã«åãã£ãŠåããã®ã§ãã QïŒ2021幎以éã®èªèšŒèŠæ Œã®æ³šç®ç¹ã¯äœã§ããïŒ JF:Webããªã³ã©ã€ã³ã»ã³ã³ãã¥ãŒãã£ã³ã°ã®é²åããµããŒãããããã«ãæçµçã«çµ±äžããããããããªãèŠæ Œã次ã ãšç»å ŽããŠããŸãã ãããã®é²åã«ããã䜿ãããããšåŒ·åºãªã»ãã¥ãªãã£ã®äž¡ç«ãããããå®çŸããŸãã WebAuthnãFIDOãOpenIDã¯ããããç°ãªãèŠæ Œã§ããããã®åã®äžã«éãŸãããšã§ãããæŽç·ŽãããäŒæ¥ã·ã¹ãã ãæ°ããªã€ãããŒã·ã§ã³ãæäŸããããšãã§ããŸããææ¥ã«ã¯èµ·ãããªããããããªããããããã¯ããã«åãã£ãŠããã®ã§ãã ããã§ã¯WebAuthnãçŸåšã®ç®çã§ãã 第2匟ã®ä»æ§ã¯ã仿åãã®4æ8æ¥ã«æ±ºå®ãããŸããã ã¯ãŒãã³ã°ã°ã«ãŒãã¯ãæ°ããã¯ã¬ãã³ã·ã£ã«ã¿ã€ããèšŒææžã«é¢é£ããããŒã¿ãä¿åããæ©èœãiframeã®äœ¿çšå¶éãªã©ãããã€ãã®æ©èœã远å ããŸãããW3Cã®WebAuthn仿§ã®FIDO察å¿çã§ããCTAPïŒClient to Authenticator ProtocolïŒïŒã¯ã©ã€ã¢ã³ãã»ãã¥ã»ãªãŒã»ã³ãã£ã±ãŒã¿ãŒã»ãããã³ã«ïŒ2.1ã¯ãä»å¹Žã®å€ã®çµããã«äºå®ãããŠãããFIDO2ã«å¯Ÿå¿ãããã©ãŠã¶ããªãã¬ãŒãã£ã³ã°ã·ã¹ãã ã䜿çšããããã¹ã¯ãŒãã¬ã¹ãäºèŠçŽ ããŸãã¯å€èŠçŽ èªèšŒãå®çŸ©ãããã®ã§ãã JB:æšæºãéçºãããŠåãå ¥ããããŠãããå®éã«åžå Žã§æ¡çšããããŸã§ã«ã¯ã¿ã€ã ã©ã°ãããã®ã§ãæåŸ ãæããªããã°ãªããŸããã 倧æãã€ãã¯äŒæ¥ã¯ãæšæºèŠæ Œãæ¿èªãããåŸã远ãã€ãã®ã«1幎ãããã®ãåžžã§ãããç§ãã¡ã¯ãæšæºèŠæ Œãã©ã®ãããªãã®ã«ãªããã圢äœãããã«ãããªãåããè²¢ç®ããããšèããŠããŸãã çŸåšãç§ãã¡ã®èªèšŒåºæºã®ä»äºã圢æããŠããæå€§ã®ãã¬ã³ãã®äžã€ã¯ããªã¢ãŒãã¯ãŒã¯ãšãã€ããªããã¯ãŒã¯ã ãšæããŸãã å ·äœçã«ã¯ãçŸå Žã«ããªã人ãå®å šã«ãªã³ããŒãã£ã³ã°ããŠã¯ã¬ãã³ã·ã£ã«ãååŸãããšãã£ãããšãã©ã®ããã«è§£æ±ºãããããã©ã®ããã«ããŠå€§èŠæš¡ã«å®çŸããããšããããšã§ãã ãããäŒæ¥ããã®ããã«ã人ã«äŒããã«äººãä¹ããããšãã§ãããããå®å šã«è¡ãããšãã§ããã°ããªã¢ãŒãã¯ãŒã¯ãççºçã«å¢å ããŠããçŸåšãå€§äŒæ¥ã®ã³ã¹ããå€§å¹ ã«åæžããããšãã§ããã§ãããã èŠæ Œæ¡çšãä¿é²ãããã¬ã³ãã¯ä»ã«ããããŸãã ã€ãå æ¥ãAppleãWebAuthnãæ¡çšããMacOS 11ãšiOS 14.3ã§ãµããŒãããããšã§ãäŒæ¥ãæ¶è²»è åãã®ã¢ããªã±ãŒã·ã§ã³ã§ã®æ¡çšã®å¯èœæ§ãåºãããŸããã QïŒãã®èŠæ Œã®å°æ¥ã®å¿çšäŸã«ã¯ã©ããªãã®ããããŸããïŒ JF:決æžã®åéã§ã¯ãå€ãã®æšæºåäœæ¥ãè¡ãããŠããŸãããªããªããéèæ©é¢ã¯ã決æžããã»ã¹ãäžæããããããªãªãã€ã¬ã¯ãã®ãªããWebãã©ãŠã¶å ã®çµ±åããããããŒãæ±ããŠããããã§ãã 2021幎åŸåã«ã¯æ¬æ Œçãªå°å ¥ãå§ãŸããããããŸããã 3Dã»ãã¥ã¢ã®èŠæ ŒïŒãªãŒãã³ã¹ã¿ã³ããŒãã§ã¯ãªããVerified by Visaã(Visaã§èªèšŒ)ããŒã«ãæãåºããŠãã ããïŒãé²åããŠããããã®ãããŒãäžè¬çãªWebãã©ãŠã¶ããã©ãããã©ãŒã ã«ç°¡åã«çµ±åã§ããããã«ãªã£ãŠããŸãã JB:ãã€ãªã¡ããªã¯ã¹ïŒçäœèªèšŒïŒãæ€èšããŠããŸãã CTAP 2.1èŠæ Œã¯ãçäœèªèšŒã®æµããããè¯ãããããäžè²«ãããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãæäŸãããã®ã§ãããã¯Yubicoã«ãšã£ãŠãéèŠãªéçºåéã®äžã€ã§ãã ãããã¯ã第äžäžä»£ã®FIDO2ãã©ãããã©ãŒã ãããã€ã¹ã§ã¯ååã«èããããŠããªãã£ãããšã§ãã Q: å ¬å ±éšéã®ãããªæŽå²çã«é ããŠããæ¥çš®ã«ã€ããŠã¯ã©ãã§ããããïŒ ä»å¹Žãæ¿åºæ©é¢ã¯PIVãCACãè¶ ããŠãFIDOãWebAuthnã®ãããªææ°ã®èªèšŒèŠæ Œã«ç§»è¡ããããšããŠãããšæããŸããïŒ JF:èŠæ Œã«é¢ããŠã¯ãç§ãã¡ã¯åžžã«ãæªæ¥ã«åãã£ãŠä»äºãããŠãããã®ã§ãèªåãã¡ãç¥ã£ãŠããããšããããã¯ç¥ã£ãŠãããšæãããããšããããŠæ¥å¹Žãåæ¥å¹Žã«ãã£ãŠããããšãæ³å®ããŠéçºããŠããŸãã ç±³åœã®æ¿åºæ©é¢ã¯å°å ¥ãé ããŠããŠãããŸã ã«PIVãCACã®èŠæ Œãç©ççãªãªãŒããŒãã¹ããŒãã«ãŒãã«é Œã£ãŠãããããããŸãããããã³ãããã¯ããªã¢ãŒãã¯ãŒã¯ãžã®ç§»è¡ã«ãããå€ãã®æ¿åºæ©é¢ã§å±æ©æãé«ãŸã£ãŠããŸãã çŸåšã®ããŒã«ïŒPIV/CACïŒã«å ããŠãããè¯ãããŒã«ãç¹ã«ä»£æ¿åã§ã¯ãªããããææ°ã®ã¢ãŒããã¯ãã£ãšæ©èœãåããããŒã«ãå¿ èŠã§ãã ç±³åœã®æ©é¢ãäœã¶æã忢ããŠããéã«ããšãŒãããã®æ©é¢ããªã¢ãŒãããã»ã¹ãããæ©ããããå°ãªãåŽåã§çšŒåãããã®ãç±³åœãèŠãã®ã§ãã ãšãŒãããã®ã·ã¹ãã ã¯ãID蚌æã®ãããªãªã¢ãŒããµãŒãã¹ã«å¯Ÿå¿ããŠããŸããã ç±³åœã®æ¿åºæ©é¢ã¯ãç¹å®ã®å Žæãã¯ãŒã¯ã¹ããŒã·ã§ã³ã«äŸåããªãã匷åãªãªã¢ãŒããªãã·ã§ã³ã®å¿ èŠæ§ãæç¢ºã«èªèããŠããŸãã NISTãä»ã®æ©é¢ã¯ãPIVãCACãæŸæ£ããŠããããã§ã¯ãããŸããããããæ°ããæè¡ãããžã¿ã«ã»ã¢ã€ãã³ãã£ãã£ã»ã¬ã€ãã©ã€ã³ã«çµã¿èŸŒãäœæ¥ãè¡ã£ãŠããŸãã JB:ç±³åœç€ŸäŒä¿éåºãIRS(ç±³åœåœçšåº)ã®ãããªå€§ããªæ©é¢ããããã¯å·ã®å€±æ¥çµŠä»æ©é¢ãªã©ã¯ãè¿ãå°æ¥ãåžæ°ã«å€§èŠæš¡ã«å±éã§ããå€èŠçŽ èªèšŒïŒMFAïŒãªãã·ã§ã³ãæ±ããŠããŸãã ããã«ãããå€ãã®æ¿åºç³»éèŠãçºçããŸãã 圌ãã¯ãå ã«è¿°ã¹ããããªãç°¡åãªãªã¢ãŒãã»ãªã³ããŒãã£ã³ã°ã»ããã»ã¹ãªã©ãã·ã¹ãã ãæ©èœããããã«äžå¯æ¬ ãªæ©èœã®ãã¹ãŠãæ±ããã§ãããã èªèšŒèŠæ Œã®ã¢ãžã§ã³ãã远ã£ãŠãã人ã¯ã2021幎ã«ã¯å€ãã®ããšãèŠãããšãã§ããã§ãããã ãœãŒã©ãŒãŠã€ã³ãºç€Ÿã®äºä»¶ãã¯ãããšããææ°ã®æ å ±æŒæŽ©äºä»¶ãããªã¢ãŒãã¯ãŒã¯ã®å¢å ã«äŒŽããæšæºåãå éãããªã¢ãŒãã§ã®èº«å 蚌æãè¿ éãªãªã³ããŒãã£ã³ã°ããã»ã¹ãåçåãããæ¯æããããŒãžã®éãéãããããšã«ãªãã§ãããã ããã¯ããªã¢ãŒãã¯ãŒã¯ã®æä»£ã«åããŠãããå®å šãªèªèšŒææ®µãæ±ããŠããå€ãã®CISOã«ãšã£ãŠãåã°ãããã¥ãŒã¹ã§ãããã …

Jan 13, 2022
ãã€ãã³æ°ã®ãµã€ããŒã»ãã¥ãªãã£ã«é¢é£ãã倧統é 什ãèªãã§ãäœããã¹ãããŸã è¿·ã£ãŠãã人ã®ããã®7ã€ã®ãã³ã
Yubicoã¯ãå€ãã®é£éŠæ¿åºæ©é¢ãè«è² æ¥è ãèŠå¶å¯Ÿè±¡ç£æ¥ã®ã客æ§ãšé£æºããŠãããæ°ããã³ã³ãã©ã€ã¢ã³ã¹èŠå¶ããããã課é¡ã«ã€ããŠçè§£ããŠããŸãã 5æ12æ¥ã«çºè¡šããã倧統é 什ã¯ãPIVïŒå人èå¥ç¢ºèªïŒã«ãŒããCACïŒå ±éã¢ã¯ã»ã¹ã«ãŒãïŒã䜿çšããèªèšŒãã§ããªãäºäŸåãã®ãå€èŠçŽ èªèšŒïŒMFAïŒãžã®ç§»è¡ãé£éŠæ¿åºãå šé¢çã«åãå ¥ããããšã瀺ããŠããŸãã ãã®åœä»€ã¯ãæ¿åºè·å¡ã ãã§ãªããåçåºããµããŒãããäœåãã®è«è² æ¥è ã«ã圱é¿ãäžããããšãäºæ³ãããå€ãã®å ŽåãPIVãCACã®è³æ Œå¯Ÿè±¡ã«ãªããªãããšããããŸãã Yubicoã®Quick Takeãšããèšäºã§ã¯ããã®æä»€ãé£éŠæ¿åºæ©é¢ãã²ããŠã¯é£éŠæ¿åºæ©é¢ãšé£æºããäŒæ¥ã«èŠæ±ããŠããåºæ¬çäºé ã説æããŠããŸãã ãµã€ããŒã»ãã¥ãªãã£å€§çµ±é 什ã§ã¯ãMFAãšZero Trust Architect(ãŒããã©ã¹ãã¢ãŒããã¯ã)ããé£éŠæ¿åºæ©é¢ã®è¿ä»£åãšå®å šæ§ã確ä¿ããããã®æ°ããæšæºã«ãªãããšãæç¢ºã«ç€ºããŠããŸãã ãµã€ããŒã»ãã¥ãªãã£ãšãã©ã€ãã·ãŒãå°éãšããæ³åŸäºåæVenable LLPã®ãµã€ããŒã»ãã¥ãªãã£ãµãŒãã¹æ åœã·ãã¢ãã£ã¬ã¯ã¿ãŒã§ãããã¹ã»ãããŒããæ°ã¯ããæ¿åºã¯ãææ°ã®èªèšŒåºæºãšæè¡ã掻çšããŠãæ¿åºæ©é¢ããŒããã©ã¹ãã¢ãŒããã¯ãã£ãïŒãŒããã©ã¹ãã®ïŒç°å¢ã«ç§»è¡ããéã®ãªã¹ã¯ãå€§å¹ ã«è»œæžããæ©äŒãåŸãŸããããšèšã£ãŠããŸãã ããããçåºãšå¥çŽããŠãããããããã¯çåºãšã®å¥çŽãæšé²ããŠããäŒæ¥ã§ããã°ãå¿ ç¶çã«ãããŠä»åã¯äœãããã°è¯ãã®ãïŒããšããçåãçããŸãã Venable LLPã®ãã¯ãããžãŒéšéã®ãããŒãžã³ã°ãã£ã¬ã¯ã¿ãŒã§ãããNSTICïŒãµã€ããŒã¹ããŒã¹ã«ãããä¿¡é Œã§ããã¢ã€ãã³ãã£ãã£ã«åããåœå®¶æŠç¥ïŒããã°ã©ã ã®ã¢ãŒããã¯ãã§ããããžã§ã¬ããŒã»ã°ã©ã³ãæ°ã¯ããã³ã³ãã©ã¯ã¿ãŒããã³ããŒã®ã³ãã¥ããã£ã¯ããã®å€§çµ±é ä»€ã®æœè¡ãæ³šææ·±ãèŠå®ãå¿ èŠããããŸãããšè¿°ã¹ãŠããŸãã ãæ¿åºã«è£œåããµãŒãã¹ãæäŸããŠããäŒæ¥ã®ãµã€ããŒã»ãã¥ãªãã£å¯Ÿçã®åŒ·åãªã©ããµãã©ã€ãã§ãŒã³ã®å®å šç¢ºä¿ã«éç¹ã眮ãããŠããããããã®æ¥çã«ãæ°ããªã³ã³ãã©ã€ã¢ã³ã¹èŠä»¶ãçºçããå¯èœæ§ããããŸãã MFAã¯ãã®äžå¿çãªåœ¹å²ãæ ãããšã«ãªããŸããã å°å ¥ã¬ã€ãã³ã¹ãåºããŸã§ã¯ãäŒæ¥ã¯æªç¥ã®éšåãå€ããããèšç»ãããŠãããšãã§ããªãããã«æãããããããŸããã å瀟ã¯ã©ã®ãããã®ã¹ããŒãæã§åœä»€ã«åŸãã®ãïŒ ãã®åœä»€ã¯ãç¹å®ã®ã¿ã€ãã®äŒæ¥ã«ä»ã®äŒæ¥ããã倧ããªåœ±é¿ãäžããã ããã? ãã®åœä»€ãåããŠãåçåºã¯è«è² æ¥è ã«ã©ã®ãããªèšŒææžãèŠæ±ããã®ãïŒ æ°ããèŠä»¶ã®å®è£ æ¹æ³ã詳现ã«èª¬æããã¬ã€ãã³ã¹ãçºè¡šããããŸã§ããããã®è³ªåãžã®åçã¯åŸãããŸããã 以äžã«ãæ¿åºæ©é¢ããµã€ããŒã»ãã¥ãªãã£å€§çµ±é 什ã«èšèŒãããŠãã察çãåãå ¥ããããã«ã仿¥ããã§ããããšãèšèŒããŸãã ãŸãã¯æ·±åŒåžã ããã¯23ããŒãžã«ãããã¶åœä»€ã§ãå€ãã®å Žåãæ å ±åéã®ãã¥ãŒããªãžã§ã³ã¹ïŒé©æ£è©äŸ¡ïŒãè¡ãåã«å³åº§ã«å¯Ÿå¿ããããšã¯ãããã£ãŠé广ã«ãªãå¯èœæ§ããããŸãã ãã®åœä»€ã¯ãããªãã®çµç¹ããã§ã«å®æœããŠããã¯ãã®ç¢ºç«ããããµã€ããŒã»ãã¥ãªãã£ã®ãã¹ããã©ã¯ãã£ã¹æ¬¡ç¬¬ãšãªããŸãã èªç€Ÿã®ããŒã¿ããœãããŠã§ã¢ã管çã»çµ±å¶ã確èªã è«è² æ¥è ãé¢é£ãµãŒãã¹ãããã€ããŒïŒè©³çްã¯åœåå®å šä¿éçããçºè¡šãããäºå®ïŒã«å¯ŸããèŠä»¶ã®å€ãã¯ããã°ã®ä¿æãã€ã³ã·ãã³ãã®å ±åããµãã©ã€ãã§ãŒã³ã®ç£èŠãäžå¿ãšãªãã¯ãã§ãã ãã®ããã瀟å ã§ã»ãã¥ãªãã£ç®¡çãšå ±åããã¹ãã»ãã©ã¯ãã£ã¹ã«åŸã£ãŠãããã©ããã確èªããåãçµã¿ãå§ããããšã«äŸ¡å€ããããŸãã æ©å¯ããŒã¿ããªã³ãã¬ãã¹ãã¯ã©ãŠãã®ã©ãã«ãããããããŠèª°ãããŒã¿ã«ã¢ã¯ã»ã¹ã§ããã®ããæ£ç¢ºã«ææ¡ããŠããŸããïŒ ãµãã©ã€ãã§ãŒã³ã«ã¯èª°ãé¢ãã£ãŠãããã匷åãªèªèšŒæ¹æ³ã¯å°å ¥ãããŠããŸããïŒ ãã°ããŒã¿ãä¿æããŠãããããã°ããŒã¿ãä¿æããŠãããããã€ããŒãšé£æºããŠããŸããïŒ ãããã®è³ªåã«å¯Ÿããæç¢ºãªçããäºåã«çšæããŠããã°ãæ¿åºæ©é¢ã®ã¬ã€ãã©ã€ã³ãæºããããã«æå©ãªç«å Žã«ç«ã€ããšãã§ããŸãã ãŸãã倧統é 什ã®ã»ã¯ã·ã§ã³4ã§ã¯ããéèŠãªãœãããŠã§ã¢ãã®å®çŸ©ãšãç¹ã«å€éšãã³ããŒããè³Œå ¥ãããœãããŠã§ã¢ã«å¯Ÿããé©åãªã»ãã¥ãªãã£å¯Ÿçã®ç¢ºä¿ã«ã€ããŠèšåããŠããŸãã ããšã¯ããã»ã¹ã§ãã ä»åŸæ°ã¶æã®éã«ã倧統é 什ãé²ããããã®æšå¥šæ¹æ³ã«ã€ããŠãã¯ã€ãããŠã¹ã«å ±åæžãæåºãããŸãããæçµçã«ã©ã®ãããªçµæã«ãªãã®ãã¯äºæž¬ã§ããŸããã èŠå¶æ¡ã®ææ°æ å ±ãå ¥æããæ åœæ©é¢ãšç·å¯ã«é£æºããããšãéèŠã§ãã æçµçãªã¢ãããŒããã©ã®ãããªãã®ã«ãªããã¯æ£ç¢ºã«ã¯ããããŸãããããµã€ããŒã»ãã¥ãªãã£ã®ãã¹ããã©ã¯ãã£ã¹ã«åŸã£ãŠããã°ãæ°ããèŠå¶ã«å¯Ÿå¿ã§ããç¶æ ã«ãªãã¯ãã§ãã çåºã®ã«ãŠã³ã¿ãŒããŒããšã®é£æºã çåºã圌ãã®ããŒãããŒãšåæ§ã«äžå®ãªæ¥ã ãéã£ãŠããŸãã é£çµ¡å ã«æ¥è§ŠããŠã倧統é ä»€ã®æå³ãããšããã話ããã£ãŠã¿ãŸãããïŒ ãã®åé¡ã«é¢ããŠåœŒãã®ãè£æ¹ããšãªãã圌ããå¿ èŠãšããå¯èœæ§ã®ããç®é²ããã®ä»ã®å ±åæžã®ãã¹ãŠãããªãããåŸãŠæã£ãŠããããšã確èªããŸãã ããªãã¯é·ãéã圌ããšèŠåŽããšãã«ããŠããã®ã§ãã ãç§ãã¡ã¯ãé£éŠæ¿åºæ©é¢ãšãã®è«è² æ¥è ããµãã©ã€ã€ãŒã®äž¡æ¹ãšå¯æ¥ã«ä»äºãããŠããŸãããšã°ã©ã³ãæ°ã¯èšã£ãŠããŸãã ãæ¿åºæ©é¢ã®ååãåžžã èšã£ãŠããã®ã¯ãæé«ã®ããŒãããŒã·ãããšã¯ãæ°ããæ¿çãäŒæ¥ã«èª²ããšæãããèŠæ±äºé ãäºæž¬ããåµé çãªè§£æ±ºçãèããŠãããäŒæ¥ãšã®ããŒãããŒã·ããã ãšããããšã§ããã ãããã»ãã¥ãªãã£ã»ãã³ããŒã«ãšã£ãŠæã£åãæ©ãåå©ãšããŠæ±ããªãã ç®å ã®ãã£ã³ã¹ã«ã€ããŠã§ã¯ãªããåœãããå®å šã«ããããã®é·æ ã§ãã ãããè³æ¬æå ¥ã®æ°ããªæ£ãŒããšããŠèŠãããªããŸãããå®éã«ã¯åœå®¶ã®å®å šä¿éãæ¹åããæ¬åœã®ãã£ã³ã¹ãªã®ã§ãã ãã åã«ãã€ã³ããœãªã¥ãŒã·ã§ã³ãå°å ¥ããã®ã§ã¯ãªããã»ãã¥ãªãã£ãªã¹ã¯ã«ã©ã察åŠããã®ããã¹ãããçè§£ãããŸã§ã®æéãè²»ããããšã¯ãç§ãã¡å šå¡ã«ãšã£ãŠã¯ããã«è¯ãããšã§ãã ãŒããã©ã¹ãã®ã³ã³ã»ãããã¢ãŒããã¯ãã£ã®å°å ¥ã¯ãæåäœã§ã¯ãªããæ°å¹Žãæ°å幎åäœã§è©äŸ¡ãããç¶ç¶çãªããã»ã¹ã§ãã MFAã«ã¯æ§ã ãªéžæè¢ã䞊ãã§ããŸãã ããã¹ãŠã®MFAãåã¬ãã«ã«äœãããŠããããã§ã¯ãããŸããã è匱ãªMFAãªãã·ã§ã³ã¯ãããçšåºŠã®ä¿è·æ©èœãåããŠãããã®ã®ããã€ãã¹ããããšãã§ããŸãã é·ãç®ã§èŠãŠãçŸåšããå°æ¥ã«ãããŠã®ã»ãã¥ãªãã£æè³ã«åããŠãæåŒ·ã¬ãã«ã®MFAãæ€èšããŠã¿ãŠã¯ãããã§ããããã ä»åŸã®äºç®ãµã€ã¯ã«ã®äžã«ãè³éèŠæ±ãçµã¿èŸŒãã çŸåšã®æœåšçãªè³éæäŸæ©é¢ã¯ããµã€ããŒã»ãã¥ãªãã£ãè¿ä»£åãã¢ã€ãã³ãã£ãã£ã®èŠä»¶ãæºããããã«ããã®åœä»€ã掻çšããããšãã§ããŸãã ãããã®æ©é¢ã«ã¯ãæè¡è¿ä»£ååºéïŒTMFïŒãã¢ã¡ãªã«ã³ã»ã¬ã¹ãã¥ãŒã»ãã©ã³ïŒARPïŒåºéãªã©ãå«ãŸããŸãã ããããå€ãã®äžå°äŒæ¥ã«ãšã£ãŠããµã€ããŒã»ãã¥ãªãã£ã®è¿œå ãããžã§ã¯ãã«äºç®ã䜿ããããã«ãªããŸã§ã«ã¯ããã°ããæéããããå¯èœæ§ããããåçåºã®äºç®å¢é¡ãå°æ¥ã®äºç®ã«æåŸ ããå¿ èŠããããŸãã ããã¯ãä»ååææ«ãŸã§ã«èšç»ãåºããå¿ èŠããªããããåŸ ã€å¿ èŠããããšããæå³ã§ã¯ãããŸããã ã§ããè¥å¹²ã®ç¶äºæéã¯ãããŸãã …

Oct 29, 2021
ææ°ã®FIDOããŒã¹ã®èªèšŒãå®çŸããUSB-CãšNFCãåãããYubicoã®ãSecurity Key C NFCãã®ã玹ä»
ããå€ãã®ããã€ã¹ã§USB-Cã®å©çšãåºããã«ã€ããŠãåœç€Ÿã®ãSecurity Key Seriesãã®å¯Ÿè±¡ç¯å²ãããå€ãã®ææ°ããã€ã¹ã«æ¡åŒµãããŠããããšãå¬ããæããŸãã ã客æ§ã«æãããããã«ãªã£ãYubico瀟ã®ãã¬ãŒãããŒã¯ã§ããã»ãã¥ãªãã£ãšåè³ªã§æ§ç¯ããããã«ãŒã®ãSecurity Key C NFCãã¯ãSecurity Key Seriesã«å ããææ°ã®ããŒã§ãã. çŸåš$29ã§è³Œå ¥å¯èœãªãã®ãæé äŸ¡æ Œã®ã»ãã¥ãªãã£ããŒã¯ãNFCæ©èœãåããUSB-Cãã©ãŒã ãã¡ã¯ã¿ã§ãFIDOã®ã¿ã«å¯Ÿå¿ããŠããŸãã ãã¹ã¯ãããèªèšŒãšã¢ãã€ã«èªèšŒã®äž¡æ¹ã§ãã¢ããªã±ãŒã·ã§ã³ããµãŒãã¹ãããã³ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«å¯ŸããŠã匷åãããææ°ã®ã»ãã¥ãªãã£ãæäŸããŸãã USB-Aãã©ãŒã ãã¡ã¯ã¿ããæ¢ãã®ã客æ§ã¯ããã²ãSecurity Key NFCããæ€èšãã ããïŒ ãã¡ããã$25ã§ãè³Œå ¥ããã ããŸãã ãSecurity Key C NFCãã¯ã次ã®ãããªãŠãŒã¶ãŒã«æé©ã§ãïŒ éå°åŸããã«ææ°ã®ç©ççèªèšŒæ©èœã䜿çšã§ããã·ã³ãã«ãªã»ãã¥ãªãã£ããŒããããæé ãªäŸ¡æ Œã§äœ¿çšãããæ¹ FIDO U2FãŸãã¯FIDO2/WebAuthn èªèšŒãããã³ã«ããµããŒãããã¢ã«ãŠã³ããä¿è·ããŠããæ¹ã ãSecurity Key C NFCãã¯ã次ã®ãããªæ¥åžžçã«äœ¿çšããæ°çŸã«ããã¶äžè¬çãªWebãµã€ãããã³ã¢ããªã±ãŒã·ã§ã³ã§åäœããŸãïŒ GmailãYouTubeãDropboxãTwitterãCoinbaseãMicrosoft ã¢ã«ãŠã³ãïŒOffice 365ãXbox Live ãªã©ïŒããã®ä»å€æ° ãã¹ã¯ãŒããããŒãžã£ãŒããœãŒã·ã£ã«ã¡ãã£ã¢ãããã¯ãŒã¯ãçç£æ§åäžããã³ããžãã¹ã®ããã®ã¢ããªã±ãŒã·ã§ã³ãæå·é貚ååŒæãªã©ã察å¿ãªã¹ãã¯å¢ãç¶ããŠããŸã ãããã¯NFCãå©çšããŠã察å¿ããã¢ã«ãŠã³ããžã®ã¿ããã¢ã³ããŽãŒèªèšŒãè¡ã£ãŠããŸã ãã¹ã¯ãããããã³ã¢ãã€ã«åæ¹ã§ããŒããŠã§ã¢ããŒã¹ã®èªèšŒãå¿ èŠãªå Žå èæ°Žæ§ãšèè¡ææ§ãå ŒãåããããŒãã§ãŒã³åã»ãã¥ãªãã£ããŒãåžæãããå Žå Security Key Seriesã¯ãã©ã¡ãã®æ©åšãFIDO U2FãšFIDO2/WebAuthnã«å¯Ÿå¿ããŠããŸãããããã¯Yubico瀟ã 1 ã€ã®èªèšŒæ©èœãããŸããŸãªã¢ããªã±ãŒã·ã§ã³ã§å©çšã§ããããã«ãšããçºæ³ã«åºã¥ããŠããŸããMFAã«ã¯ããŸããŸãªåœ¢åŒããããŸããããã¹ãŠãåãäœãã§ã¯ãããŸããã FIDOããŒã¹èªèšŒã¯ããã£ãã·ã³ã°ããã³äžéè æ»æããã®ä¿è·ã蚌æãããŠããå¯äžã®æ¹æ³ã§ãã YubiKeyãå€§èŠæš¡ãã€åŒ·åãªèªèšŒãããŸããŸãªããžãã¹ã·ããªãªãè€æ°ã®èªèšŒãããã³ã«ãYubico Authenticatorã®ãµããŒããããŸããŸãªãã©ãŒã ãã¡ã¯ã¿ã管çããããã«æ€èšãããŠããã客æ§ã«ã¯ãYubiKey 5 Seriesããå§ãã§ãã ã客æ§ã«ã©ã®ããŒãé©åãã確èªããããã«ãã¯ã€ãºã«ãçããã ããã. æ©èœãšä»æ§ã®è©³çްã«ã€ããŠã¯ããã¡ããåç §ããŠãã ããã Security Key Series key ã¯ã ãã¡ããããè³Œå ¥ããã ããŸã.

Oct 5, 2021
YubiKey Bioã·ãªãŒãºã®æ°ããæçŽèªèšŒããã€ã¹ã«æã§è§ŠããŠã¿ãŸããã
æ¬æ¥ãç§ãã¡ã¯YubiKey Bioã·ãªãŒãºãçºè¡šããããŸããããã¯Yubicoå²äžã§åã®çäœèªèšŒããµããŒãããYubiKeyã§ãã YubiKey Bioã¯Microsoft Ignite 2019ã§æåã«äºåãããŸããããããã§ã¯Microsoft Azure Active Directoryã¢ã«ãŠã³ãã«å¯Ÿãããã¹ã¯ãŒãã¬ã¹ãµã€ã³ã€ã³ã®ã©ã€ããã¢ã宿ŒãããŸããã ç§ãã¡ã¯æéããããŠãé«åºŠã«ã»ãã¥ã¢ã§ãŠãŒã¶ãŒãã¬ã³ããªãŒãªè£œåã®çºå£²ãŸã§ã«è³ããŸããã YubiKey Bioã·ãªãŒãºã¯ãæçŽãããã€ã¹èªèšŒã«äœ¿çšããæ°ãããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãå ŒãåãããYubicoãèªä¿¡ãæã£ãŠæäŸããããŒããŠã§ã¢ã»ãã¥ãªãã£ã§ãã æ¬æ¥ããYubiKey Bioã·ãªãŒãºã¯USB-Aããã³USB-Cã®äž¡æ¹ã®ãã©ãŒã ãã¡ã¯ã¿ã§äžè¬æäŸå¯èœã«ãªãããã¹ã¯ãããããŒã¹ã®FIDOèªèšŒããµããŒãããããã€ã¹ãšã¢ããªã±ãŒã·ã§ã³ã«å¯Ÿããã»ãã¥ã¢ãªäºèŠçŽ èªèšŒãšãã¹ã¯ãŒãã¬ã¹ãã°ã€ã³ãæäŸããŸãã YubiKey Bioã·ãªãŒãºã¯yubico.comã§è³Œå ¥ããããšãã§ããå°å£²äŸ¡æ Œã¯USB-Aãã©ãŒã ãã¡ã¯ã¿ã$80ãUSB-Cãã©ãŒã ãã¡ã¯ã¿ã$85ã§ãã YubiKey Bioã·ãªãŒãºã®éçºæãç§ãã¡ã¯ã»ãã¥ãªãã£ããŒäžã®çäœèªèšŒã®ã¢ãŒããã¯ãã£ã®åèã«ææŠããŸããã ãããäžé£ã®ããŒã«ã¯3ã€ã®ããããã¶ã€ã³ãæ¡çšãããŠãããçäœæçŽæ å ±ãåå¥ã®ã»ãã¥ã¢ãšã¬ã¡ã³ãã«æ ŒçŽããããšã«ããç©ççæ»æããã®é²åŸ¡ã匷åããŠããŸãã æçµçã«ãç§ãã¡ã¯ã¢ãã³ã§åççãªãã¹ã¯ãŒãã¬ã¹èªèšŒãå¯èœã§ãæãéèŠãªããšãšããŠã»ãã¥ãªãã£ãç ç²ã«ããªãããã€ã¹ã補é ããŸããã YubiKey Bioã¯ããŒã¿ãã«ãªããŒããŠã§ã¢åRoT(Root of Trust)ãšããŠåäœãããŠãŒã¶ãŒã¯ç°ãªããã¹ã¯ãããããã€ã¹ããªãã¬ãŒãã£ã³ã°ã·ã¹ãã ãããã³ã¢ããªã±ãŒã·ã§ã³éã§åãããŒã䜿çšããŠèªèšŒããããšãã§ããŸãã 以äžã®å 容ã¯YubiKey Bioã·ãªãŒãºã®ç¹åŸŽã®äžéšã§ãã äžè²«æ§ã®ããä¿¡é Œæ§èšèš – YubiKey Bioã·ãªãŒãºã¯ãä»ã®YubiKeyãšåæ§ã«ãªãããã§ã·ã³ãã«ãªããŒãã§ãŒã³ãã¶ã€ã³ãæ¡çšããŠãããèä¹ æ§ãšèæ°Žæ§ãåããŠããŸãã ä»ã®YubiKeyã§ãŠãŒã¶ãŒãã¬ãŒã³ã¹ã確ç«ããããã«äœ¿çšãããåŸæ¥ã®éè²ã®æ¥ç¹ã®ä»£ããã«ãYubiKey Bioã®æçŽã»ã³ãµãŒã§ã¯æçŽèªèã§ãŠãŒã¶ãŒãèªèšŒããŸãã ãã¹ã¯ãŒãã¬ã¹ã®èŠæã«å¿ããŸã – äŒæ¥ã¯è€æ°ã®ãã¹ã¯ãŒãã管çããèŠçãããŠãŒã¶ãŒãè§£æŸãããããšãæ¬¡ç¬¬ã«æãããã«ãªãããã¹ã¯ãŒãã¬ã¹ãšã¯ã¹ããªãšã³ã¹ãå¯èœã«ãããœãªã¥ãŒã·ã§ã³ãæ±ããŠããŸãã YubiKeyã§ã¯åäžPINã§ãããå®çŸããŠããŸãããFIDO2/WebAuthnããã³U2FããµããŒãããYubiKey Bioã·ãªãŒãºã§ã¯PINã®ä»£ããã«æçŽèªèšŒã䜿çšããããšãã§ããŸãã ãã ãããŠãŒã¶ãŒã®æçŽããã°ã€ã³è©Šè¡äžã«ããã€ã¹äžã«ç»é²ãããŠããªãå ŽåããŠãŒã¶ãŒã¯åæèšå®äžã«è¿œå ãããããŒãœãã«PINã§YubiKey Bioã®ããã¯ãè§£é€ããããšãã§ããŸãã ããŒããŠã§ã¢ã»ãã¥ãªã㣠– YubiKey Bioã¯ãã€ãã£ããªçäœèªèšŒç»é²ããææ°ã®ãã©ãããã©ãŒã ããã³ãªãã¬ãŒãã£ã³ã°ã·ã¹ãã ã§ãµããŒããããç®¡çæ©èœãšçµ±åããŸãã ãŸããWindowsãmacOSããã³Linuxäžã® ãã¹ã¯ãããçšYubicoèªèšŒã¢ããªã䜿çšããŠæçŽãç»é²ã远å ãããã³åé€ããããšãã§ããŸãã æçŽã®ãã³ãã¬ãŒãã¯ããŒã«ç»é²ãããæçŽã«çŽã¥ãããããããæçŽãã³ãã¬ãŒãã¯ç¬ç«ããã»ãã¥ã¢ãšã¬ã¡ã³ãäžã«æ ŒçŽããã³ç §åãããã®ã§ãç©ççæ»æããã®ä¿è·ã«åœ¹ç«ã¡ãŸãã æçŽæ å ±ã¯YubiKey Bioã·ãªãŒãºã®å€ãžåºãããšã¯ãããŸããã æ°ãããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ãããŒã¿ããªãã£ãããã³FIDOãããã³ã«ãµããŒãã䜿çšããæ¡åŒµã¯ãŒã¯ãã㌠– çäœèªèšŒãããŒã¹ã«ããã»ãã¥ã¢ãªäºèŠçŽ èªèšŒããã³ãã¹ã¯ãŒãã¬ã¹ãã°ã€ã³ãšã¯ã¹ããªãšã³ã¹ã«ããããŠãŒã¶ãŒãšã¯ã¹ããªãšã³ã¹ã匷åãããŸãã FIDOããµããŒããããµãŒãã¹ããã³ã¢ããªã±ãŒã·ã§ã³ã§ã¯ãã¢ããªã±ãŒã·ã§ã³ããä¿¡é Œæžã¿ãã«ããããšãã§ãããµãŒãã¹ã«ãã°ã€ã³ããéã®ååã®èªèšŒã«ã®ã¿YubiKey Bioã䜿ãããšãã§ããŸãã ã»ãã¥ãªãã£ã®ããã«äœæãããããŒã¿ãã«ãŠãŒã¶ãŒèªèšŒã®ç®ç – …

Mar 12, 2020
YubiKeyããªã¢ãŒãã¯ãŒã«ãŒããã£ãã·ã³ã°ããã®ä»ã®æ»æããå®ã5ã€ã®ä»çµã¿
ããžã¿ã«ãã©ã³ã¹ãã©ãŒã¡ãŒã·ã§ã³ãžãšåãã仿¥ã®äŒæ¥ã®åãçµã¿ã®äžã§ããªã¢ãŒãã¯ãŒã¯ã泚ç®ãéãå§ããŠããŸãã ãã¯ãããžãŒã®é²æ©ã«ãããåŸæ¥å¡ã¯ã©ãããã§ãä»äºãããããšãå¯èœã«ãªããŸãããåæã«ITéšéã«ã¯æ°ããªèª²é¡ãããã€ãæµ®ãã³äžãã£ãŠããŸãã ã»ãã¥ãªãã£å¯Ÿçã®ãªãWi-Fiãããã¯ãŒã¯ãæ£ãã管çãããŠããªãå人çšã®ã¢ãã€ã«ããã€ã¹ããã£ãã·ã³ã°è©æ¬ºãªã©ã«ãã£ãŠããŠãŒã¶ãŒã®èªèšŒæ å ±ãçãããšã容æã«ãªããéã«å°ççã«åæ£ããããŒã ãå®å šã«ç®¡çããããšãé£ãããªããŸãã ãªã¢ãŒãã¯ãŒã¯ãšããæŠå¿µèªäœã¯æ°ãããã®ã§ã¯ãããŸããããçŸä»£ã®ããžãã¹ã«ãããŠãã£ããæ®åãé²ãã§ããŸãã è¿å¹Žã®äžççãªåºæ¥äºã«ããããã®å°å ¥ä»¶æ°ã¯å¢å ãç¶ããŠããŸãããã®ãããäŒæ¥ãçµç¹ã«ãšã£ãŠã¯ããã ãªã¢ãŒãã¯ãŒã«ãŒã®ã»ãã¥ãªãã£ãå®ãã ãã§ãªããçç£æ§ã劚ããããšãªããã®å¯Ÿçãè¬ããããã®ããã»ã¹ãã·ã¹ãã ãæŽããããšãå«ç·ã®èª²é¡ãšãªã£ãŠããŸãã æ¢ã«ããã«ãŒãã¯æšçåãã£ãã·ã³ã°æ»æã«ãã£ãŠçŸåšã®ããžãã¹ã®äžå®å®ãªç¶æ³ã«ã€ã蟌ãã§ããããªã¢ãŒãã§å€åããåŸæ¥å¡ã®ä¿è·ãå«ããååŸçãäœæããããšã極ããŠéèŠã§ãã äŒæ¥ã®çæ§ã¯ããåŸæ¥å¡ã¯æ°ããªãªã¹ã¯ãè匱æ§ãæã¡èŸŒãããšãªããªã¢ãŒãã§ã·ã¹ãã ã«ã¢ã¯ã»ã¹ã§ãããïŒããšèããå¿ èŠããããŸãã åšå® å€åã®æ¹éãç«ãŠãäžã§æéèŠãªèŠä»¶ã®ã²ãšã€ããå€èŠçŽ èªèšŒïŒMFAïŒãåãå ¥ããããšã§ãã YubiKey 5ã·ãªãŒãºãšFIPSèªå®ã®YubiKeyã·ãªãŒãºã¯ãããã€ã¹ã®çš®é¡ããªãã¬ãŒãã£ã³ã°ã·ã¹ãã ãå€åå°ãåããã䜿ããããèä¹ æ§ã®é«ã倿©èœãªãœãªã¥ãŒã·ã§ã³ãå šãŠã®åŸæ¥å¡ã«æäŸããŸãã çæ§ã®çµç¹ã§æ¢ã«YubiKeyããå©çšäžããŸãã¯ãæ€èšäžã®å Žåã¯ãåŸæ¥å¡ã®ä¿è·ä»¥å€ã«ããããŸããŸãªé¢ã§ããŒããŠã§ã¢ããŒã¹ã®åŒ·åãªèªèšŒã®ã¡ãªãããåŸãããšãå¯èœã§ãã ãªã¢ãŒãã¯ãŒã«ãŒã忣åã¯ãŒã«ãŒãšããèãæ¹ãæ®åãã€ã€ããäžãYubiKeyãçšããŠçæ§ã®åŸæ¥å¡ããã£ãã·ã³ã°ãã®ä»ã®è åšãã確å®ã«ä¿è·ããããã®ãã³ãã5ã€ãããŸãã IDã¢ã¯ã»ã¹ç®¡çïŒIAMïŒã·ã¹ãã ãšIDãããã€ããŒïŒIdPïŒåãã«MFAãæå¹å â æé«æ°Žæºã®ã¯ã©ãŠãããã³ãã€ããªããç°å¢ã§IAMãœãªã¥ãŒã·ã§ã³ã掻çšããããšã«ãããåŸæ¥å¡ã倧å€ãªæããããŠè€æ°ã®ãŠãŒã¶ãŒåãšãã¹ã¯ãŒãã䜿ãåããªããŠãäœæ¥ã§ããããã«ãªããŸãã IAMãã³ããŒå€§æã®å€ãã¯ãAxiadãDuoãGoogle CloudãMicrosoft Azure Active DirectoryãOkta Workforce IdentityãPingIDãRSA SecurIDâ Suiteãªã©ãYubiKeyããã€ãã£ããµããŒããããµãŒãã¹ãæäŸããŠããŸãã æ¢ã«ãããã®ãµãŒãã¹ããå©çšã®çµç¹ã¯ãYubiKeyã§MFAãæå¹ã«ããã ãã§ãçµç¹å šäœã®ã»ãã¥ãªãã£ã¬ãã«ãéããã«åäžãããããšãã§ããŸãã ãŸããIAMãã³ããŒãIdPãæŽ»çšããŠãMicrosoft TeamsãGoogle HangoutsãZoomãšãã£ãããžãã¹ã¯ãªãã£ã«ã«ãªã¡ãã»ãŒãžéä¿¡ããã³ãããªäŒè°ã¢ããªã«Single Sign OnïŒSSOïŒãå°å ¥ããããšãå¯èœã§ãã MFAã«ããå®å šãªVPNã¢ã¯ã»ã¹ â ãªã¢ãŒãã¯ãŒã«ãŒã®å¢å ã«äŒŽããVPNãå©çšããŠäŒç€Ÿã®ãããã¯ãŒã¯ã«ã¢ã¯ã»ã¹ãã人ãå¢ããŠããŸãã YubiKeyã«Pulse SecureãšCisco AnyConnectãçµã¿åãããããšã§ããªã¢ãŒãã¢ã¯ã»ã¹çšã®ã¹ããŒãã«ãŒãïŒPIVïŒãšããŠäœ¿ãããšã§ããŸãã YubiKeyããã€ãã£ããµããŒãããä»ã®VPNã¢ããªã±ãŒã·ã§ã³ã§ã¯ãã¯ã³ã¿ã€ã ãã¹ã¯ãŒãïŒOTPïŒæ©èœã䜿çšããŸãã ã³ã³ãã¥ãŒã¿ãŒãã°ã€ã³çšã®MFAâ ã䜿ãã®ããœã³ã³ãMacã§ãWindowsã§ããYubiKeyãªãè€æ°ã®ãªãã·ã§ã³ã§ã³ã³ãã¥ãŒã¿ãŒã®ãã°ã€ã³ãä¿è·ã§ããŸãã å¹ççãªæ¹æ³ã®ã²ãšã€ã¯ãYubiKeyã®ã¹ããŒãã«ãŒãæ©èœã掻çšããPINãšããŒã䜵çšããŠã³ã³ãã¥ãŒã¿ãŒã®ã¢ã¯ã»ã¹ãããã¯ããŠã³ããããšã§ãã æè¿ã§ã¯ãYubicoãšMicrosoftãšã®é£æºã«ãããMicrosoft Azure Active Directoryã«ãããŠYubiKeyããã€ãã£ããµããŒãããFIDOããŒã¹ã®ãã¹ã¯ãŒãã¬ã¹ãã°ã€ã³ãå¯èœã«ãªããŸããã ãã®æ©èœã¯çŸåšããã€ããªããç°å¢ã«åãããããªãã¯ãã¬ãã¥ãŒã®ããã«å ¬éãããŠããŸãã -ãã¹ã¯ãŒããããŒãžã£ãŒã®ããã®ã¹ãããã¢ããèªèšŒâ æè¿ã®Ponemon Instituteã®å ±åæžã«ããã倧åã®åçãšåæèŠã§ãä»ã§ãä»ç®ãèšæ¶ã«é Œã£ãŠãã¹ã¯ãŒãã管çãããŠããçµç¹ã¯ãä»ãããã®æ £ç¿ãæšãŠå»ããšãã§ãã ãªã¢ãŒãã¯ãŒã«ãŒã§ãã£ãŠããªããŠããåŸæ¥å¡ã«ã¯ãã¹ã¯ãŒããã·ã³ãã«ãã€å®å šã«äœæãä¿ç®¡ã管çããæ¹æ³ãå¿ èŠã§ãã YubiKeyã¯ã1PasswordãDashlaneãKeeper SecurityãLastPassãªã©æ°å€ãã®ãšã³ã¿ãŒãã©ã€ãºåããã¹ã¯ãŒããããŒãžã£ãŒãšçµ±åããŸãã YubiKeyã«ããã¯ã³ã¿ã€ã ãã¹ã¯ãŒãããŒã¹ã®ãã¹ã³ãŒãçæâ çæ§ã®æ¥åã§äœ¿çšããŠãããµãŒãã¹ãã¢ããªã±ãŒã·ã§ã³ã®å€ãã¯ãGoogle AuthenticatorãAuthyãªã©ãäºèŠçŽ èªèšŒæ¹åŒã§ããæéããŒã¹ã®ã¯ã³ã¿ã€ã ãã¹ã³ãŒãïŒOTPïŒããµããŒãããŠããã¯ãã§ãã Yubico …