JP2006235692A - Information processor and system for supporting security countermeasure - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To support proposition of an appropriate security solution after creating/auditing/diagnosing security countermeasure items. <P>SOLUTION: The information processor 14 is provided with: a product/service information DB 15 which coordinates an introduction cost, satisfaction degree, relation degree of security countermeasure item and product/service; a solution information DB 16 which coordinates a solution for respective product/service; a means for accepting input of significance degree 11 of respective security countermeasure items, an introduced product/service 12 and an allowable cost 13; a means for determining a solution appropriate for the accepted significance degree 11 by using the input significance degree 11, the introduced product/service 12, the allowable cost 13, data stored in the product/service information DB 15 and the solution information DB 16; and a means for presenting countermeasure effect in the case where the determined solution is introduced. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a technology for security measures for an information system, and more particularly to a technology for proposing an appropriate solution for solving a shortage of security measures for an information system.

  In corporate business activities, corporate information systems based on Internet technology have become a very important infrastructure, and awareness of security problems associated with Internet connection is increasing. Along with this, there is an increasing need for security diagnosis services and secure system construction / evaluation services for Internet connection sites. In particular, for secure system construction / evaluation services, not only individual technical measures such as the installation of firewalls and the introduction of anti-virus software are implemented, but also security measures are identified through security threat extraction and risk assessment for the entire information system. And systematic security measures based on this are continuously demanded by conducting regular audits and diagnoses at home and abroad.

  When systematic security measures are taken, the designer needs to take security measures in accordance with the current state of each customer's system. In addition, security measures are required to be cost effective. However, there are a wide variety of products / services (product, service, product and service combination) that can be realized, and they are best suited to customer systems among designers with little knowledge and experience. It is difficult to determine the combination of security countermeasure products / services.

  As a solution to this problem, a method for calculating a product / service combination, which is a means for realizing security measures, has been proposed (Non-Patent Document 1). In the method of Non-Patent Document 1, the importance of security countermeasure items, the satisfaction level of candidate implementation means products / services, and the degree of association between security countermeasure items and candidate products / services as implementation means are set, and based on fuzzy composition calculation. Thus, a cost-effective product / service combination is derived.

Yasuhiko Nagai and three others, “Proposal of Basic Security Information System Design Method Considering Functional Compatibility”, IPSJ Transactions, Vol. 45, no. 4, April 2004, p. 1163 to 1175

  By the way, when actually taking security measures for an information system, it is rare to introduce a product / service for security measures alone. Security designers often propose means for implementing security measures to target departments such as customers as a solution combining multiple products / services. In addition, security measures for information systems are required to be performed continuously by conducting regular audits and diagnoses. In this case, a solution is proposed for an information system that has already been subjected to some security measures.

  However, the non-patent document 1 does not particularly consider the relationship between the solution and the product / service. Therefore, even if the method of Non-Patent Document 1 is used, it is difficult to determine an optimal solution unless the designer of security measures has sufficient experience and knowledge. The method of Non-Patent Document 1 relates to security measures at the basic design stage of an information system, and does not consider security measures for an information system for which security measures have already been taken.

  The present invention has been made in view of the above circumstances, and an object of the present invention is to support the proposal of an appropriate security solution after the formulation, audit, and diagnosis of security countermeasure items.

  In order to solve the above problems, one embodiment of the present invention is applied to an information processing device that presents a solution for a security measure for an information system. Here, the solution refers to a combination of a plurality of types of products, services, combinations of products and services (hereinafter referred to as “products etc.”).

  The information processing apparatus includes: a security countermeasure item storage unit that stores a plurality of security countermeasure items for the information system; a satisfaction level of a user for the product for each product, and the security countermeasure item storage unit Corresponding to each product etc. stored in the product information storage means storing the data that associates the degree of association between the security measure item and the product etc. Solution information storage means storing data associated with the solution, means for receiving input of data indicating the importance of each security countermeasure item stored in the security countermeasure item storage means, and the product information storage means Accept the selection of products already installed in the information system from the stored products, etc. A product information input means for holding the selected product etc. in an identifiable state as a introduced product, and a satisfaction associated with the introduced product etc. in the data stored in the product information storage means The degree of relevance and the degree of relevance are used to calculate the current achievement level of the security countermeasure items for the current information system, and the data stored in the product information storage means is used to introduce the product to the installed product. For each of the obtained combinations, the degree of satisfaction and relevance of the introduced product, and the degree of satisfaction and relevance of the product other than the introduced product, etc. The degree of achievement of improvement in the security countermeasure items for the information system when the combination is implemented using the degree, and the importance of accepting the calculated improvement achievement and the input Security measures for which security measures are insufficient by comparing the means for determining the combination that minimizes the difference to the optimal product combination and the importance of each security measure item and the calculated current achievement level The means for identifying the countermeasure item and the product that measures the security countermeasure item for which the security countermeasure is insufficient are selected from the products other than the installed product in the determined combination, and the solution information storage Means for specifying a solution corresponding to the selected product or the like using data stored in the means and presenting data indicating the specified solution.

  In the present invention, a product for performing security measures and the like are associated with a solution, and a security measure item that is insufficient in a security measure product already installed in the information system, and a new security measure to be performed. In order to find a product or the like for countermeasures, an optimum security solution is presented by using the association between the product and the solution.

  Therefore, according to the present invention, an appropriate security solution can be proposed even with an SE with little experience or know-how.

Embodiments of the present invention will be described below.
<First embodiment>
First, a first embodiment of the present invention will be described.

  FIG. 1 is a diagram for explaining the outline of a security solution proposal support tool according to the first embodiment of the present invention.

  The security solution proposal support tool 14 (hereinafter sometimes simply referred to as “support tool 14”) includes the importance 11 of the security countermeasure items for the information system (hereinafter also simply referred to as “importance 11”) and the target information. Data indicating the products / services 12 already installed in the system (hereinafter also simply referred to as “installed products / services 12”) and allowable cost 13 (hereinafter simply referred to as “cost 13”) applied to security measures. And output data indicating analysis / evaluation result 18 that analyzes / evaluates the effect of the countermeasure when the optimal solution is implemented It is.

  It should be noted that “product / service” used in the description of the present embodiment refers to any of a single product, a single service, or a set of products and services that are specific means for implementing security measures. A single product and a single service each have a security countermeasure effect by introducing itself. Further, a combination of a product and a service has a dependency relationship between the product and the service, and means that there is no security countermeasure effect unless both are provided.

  More specifically, the support tool 14 includes a product / service information DB 15 that stores security measures items for the information system, and data on products / services that are specific implementation means candidates for the security measures items, and products / services. And a solution information DB 16 storing data in which a solution is associated with a combination thereof and data in which a product / service is associated with each phase of a security management cycle (each phase of the security management cycle will be described later); Is provided. The processing performed by the support tool 14 is classified into an input data processing phase 141, an optimum solution determination processing phase 142, and an analysis / evaluation result display processing phase 143.

  In the input data processing phase 141, a process of accepting inputs of the importance level 11, the introduced product / service 12, and the allowable cost 13 is performed. In the optimum solution determination processing phase 142, the data (the importance 11, the installed product / service 12 and the allowable cost 13) received as described above, and the satisfaction of the product / service stored in the product / service information DB 15 Using the data indicating the degree and the degree of association and the data in which the product / service and the solution stored in the solution information DB 16 are associated with each other, the solution most suitable for the importance is determined. In the analysis / evaluation result display processing phase 143, the proposed optimum solution 17 and the analysis / evaluation result 18 obtained by analyzing / evaluating the countermeasure effect when the optimum solution 17 is introduced are output.

  Next, the functional configuration of the support tool 14 of this embodiment will be described with reference to FIG.

  FIG. 2 is a functional block diagram of the security solution proposal support tool 14 of the present embodiment.

  As illustrated, the support tool 14 includes an input data processing unit 241, an additional data registration processing unit 242, a current achievement level calculation processing unit 243, an optimum product / service determination processing unit 244, a security countermeasure deficient item specifying processing unit 245, an optimum It includes a solution determination processing unit 246, a solution execution order determination processing unit 247, an analysis / evaluation result display processing unit 248, a product / service information DB 15, and a solution information DB 16.

The input data processing unit 241 receives input of the importance level 11, the introduced product / service 12, and the allowable cost 13. The additional data registration processing unit 242 receives input of data of products / services already introduced in the target information system that is not registered in the product / service information DB 15 and the solution information DB 16, and uses the received data as product / service information. It is additionally registered in the DB 15 and the solution information DB 16.

  The current achievement level calculation processing unit 243 calculates the current degree of achievement of the installed product / service. The optimum product / service determination processing unit 244 obtains an optimum product / service combination that best matches the importance 11 received by the input data processing unit 241. The security countermeasure deficient item identification processing unit 245 identifies a security countermeasure item for which the security countermeasure is insufficient. The optimum solution determination processing unit 246 identifies a solution corresponding to a product / service that takes measures against the identified security countermeasure item. The solution execution order determination processing unit 247 orders solutions to be executed. The analysis / evaluation result display processing unit 248 performs analysis / evaluation on the identified solution and displays the result.

  The product / service information DB 15 includes a security countermeasure item table 151 (see FIG. 4A) that stores security countermeasure items for the information system, and a product / service that stores information on security countermeasure items and products / services that are implementation means. A service determination table 152 (see FIG. 4B) is stored. The data structures of the security countermeasure item table 151 and the product / service determination table 152 will be described later.

  The solution information DB 16 includes a security management cycle correspondence table in which products / services and security management cycle phases (planning phase (PLAN), execution phase (DO), operation phase (SEE), monitoring phase (CHECK)) are associated with each other. 161 (see FIG. 6A) and a solution correspondence table 162 (see FIG. 6B) in which products / services and solutions to which the products / services are applied are associated with each other. The data structure of the security management cycle correspondence table 161 and the solution correspondence table 162 will be described later.

  Next, the hardware configuration of the security solution proposal support tool 14 according to the present embodiment will be described with reference to FIG.

  FIG. 3 is a hardware configuration diagram of the security solution proposal support tool of the present embodiment.

  As illustrated, the support tool 14 is connected to a display device 25 that displays data output by the support tool 14 and an input device 26 that inputs data to the support tool 14. As the display device 25, for example, a liquid crystal display, a CRT, or the like can be used. For the input device 26, for example, a keyboard, a mouse or the like can be used.

  The support tool 14 includes a CPU (Central Processing Unit) 21 that executes various processes, a terminal input / output I / F 22 that controls input / output of data performed between the display device 15 and the input device 26, and various data. And an external storage device 23 that stores various programs, a main storage device 24 that temporarily stores programs and data executed by the CPU 21, and a network I / F 27 that controls transmission and reception of data with other devices via a network. And a bus 28. The CPU 21, terminal input / output I / F 22, external storage device 23, main storage device 24, and network I / F 27 are connected to each other via a bus 28.

  The external storage device 23 stores a product / service information DB 15, a solution DB 16, an input data processing program 231, an optimum solution determination program 232, and an analysis / evaluation result display processing program 233. The input data processing program 231 is a program for realizing the functions of the input data processing unit 241 and the additional data registration processing unit 242. The optimal solution determination program 232 includes functions of the current achievement level calculation processing unit 243, the optimal product / service determination processing unit 244, the security measure deficient item identification processing unit 245, the optimal solution determination processing unit 246, and the solution execution order determination processing unit 247. It is a program for realizing. The analysis / evaluation result display processing program 233 is a program for realizing the function of the analysis / evaluation result display processing unit 248.

  The functions of the input data processing unit 241 and the additional data registration processing unit 242 are realized by the CPU 21 loading the input data processing program 231 stored in the external storage device 23 to the main storage device 24 and executing it. . The functions of the current achievement level calculation processing unit 243, optimal product / service determination processing unit 244, security countermeasure deficient item identification processing unit 245, optimal solution determination processing unit 246, and solution execution order determination processing unit 247 This is realized by loading the optimal solution determination program 232 stored in the storage device 23 into the main storage device 24 and executing it. The function of the analysis / evaluation result display processing unit 248 is realized by the CPU 21 loading the analysis / evaluation result display processing program 233 stored in the external storage device 23 into the main storage device 24 and executing it.

  Next, the data structures of the product / service information DB 15 and the solution DB 16 of this embodiment will be described.

  First, the security countermeasure item table 151 and the product / service determination table 152 stored in the product / service information DB 15 will be described with reference to FIG.

  FIG. 4 is a diagram schematically showing the data structure of the product / service information DB 15 of the present embodiment. FIG. 4A shows the security countermeasure item table 151, and FIG. 4B shows the product / service determination table 152. Is shown.

  As shown in FIG. 4A, the security countermeasure item table 151 includes a field 310 for registering an item ID (item number) for identifying a security countermeasure item, and a security countermeasure indicated by the item ID registered in the field 310. One record includes a field 311 for registering items. In the illustrated example, four records are registered in the security countermeasure item table 151, but the number and contents of the registered records are merely examples.

  Also, as shown in FIG. 4B, in the product / service determination table 152, the cost / satisfaction level and the degree of association with each security countermeasure item stored in the security countermeasure item table 151 are associated with each product / service. ing.

  Specifically, the product / service determination table 152 registers a field 320 for registering the name of a product / service that is a means for realizing a security countermeasure item, and the introduction cost of the product / service registered in the field 320. Field 321, a field 322 for registering satisfaction with the product / service registered in the field 320, and a field 323 for registering the degree of association between the product / service registered in the field 320 and the security countermeasure item. 1 to 4 constitute one record. The “item ID” in the product / service determination table 152 corresponds to the “item ID” in the security countermeasure table 151.

  Here, the “relevance” and “satisfaction” registered in the product / service determination table 152 will be described. It is difficult to obtain objective data for “satisfaction” and “relevance”. For this reason, in this embodiment, “satisfaction” and “relevance” are set based on the subjective data of the user expressed in five levels. As for “satisfaction”, the level of satisfaction of the product security function or service is 5 levels (for example, not usable at all: 0.0, not very usable: 0.25, moderately usable: 0.5, fair. Useful: 0.75, Fully usable: Set in 5 steps (1.0). As for the “relationship”, the strength of the relationship between the product / service and the security countermeasure item is set in five levels (for example, there is no relationship: 0.0, a little relationship: 0.25, there is a relationship) : 0.5, strong association: 0.75, set in 5 steps of 1.0 corresponding directly).

  In the example shown in the figure, the record 326 (column 326) in which “product A” is registered in the field 320 has a cost of “300,000 yen”, a satisfaction level of “0.5”, and security measures for “product A”. The degree of association with the item O1 is “0.5”, the degree of association with the security countermeasure item O2 is “0.25”, the degree of association with the security countermeasure item O3 is “0”, and the degree of association with the security countermeasure item O4 is “0” is registered.

  In the illustrated example, the cost, satisfaction, and relevance are set for four products / services in addition to the product A. For “product B + service B”, record 327 (column 327), “product” The record 328 (column 328) is set for “C”, the record 329 (column 329) is set for “service C”, and the record 330 (column 330) is set for “service D”. In the example shown in the figure, “product B + service B” corresponds to a set of products and services, and the other products / services all correspond to products or services that are effective alone.

  Next, the correspondence between products / services stored in the solution DB 16 and security management cycles and the correspondence between products / services and solutions will be described with reference to FIG.

  FIG. 5 is a conceptual diagram for explaining the correspondence between products / services, security management cycles, and solutions. 5A shows the correspondence between each phase of the security management cycle and the product / service, and the correspondence between the product / service and the solution. FIG. 5B shows the correspondence between the solution and the security management cycle. Showing the relationship.

  Reference numeral 41 shown in FIG. 5A denotes a security management cycle phase, that is, a planning phase (PLAN), an execution phase (DO), an operation phase (SEE), and a monitoring phase (CHECK). Reference numeral 42 denotes a product / service that is a specific means for realizing security measures. Reference numerals 43 denote solutions each composed of a combination of products / services.

  The security management cycle is an application of the management cycle to security measures, and consists of four phases: a planning phase (PLAN), an execution phase (DO), an operation phase (SEE), and a monitoring phase (CHECK). The greatest feature of the security management cycle is that the results of each phase from planning to audit are linked to the next planning phase to promote continuous business improvement activities.

  In this figure, the lines connecting them mean that there is a correspondence relationship, indicating the correspondence relationship between each phase of the security management cycle and the product / service, and the correspondence relationship between the product / service and the solution. . In these correspondences, the security management cycle 41 and the product / service 42 shown in FIG. 5A are classified according to which phase of the security management cycle each product / service corresponds to. For example, in this figure, “Product A” has a corresponding relationship with the planning phase (PLAN), and “Product C” has a corresponding relationship with the execution phase (DO). In addition, regarding the product / service 42 and the solution 43, since a combination of products / services becomes a solution, a plurality of products / services are associated with each solution. For example, this figure shows that Solution 1 is a combination of “Product A” and “Product B + Service B”. Solution 2 indicates a combination of “service C” and “product C”. Note that a product / service may be a component of multiple solutions. For example, in this figure, “Service D” is a component of a plurality of solutions “Solution 3” and “Solution 4”.

  In FIG. 5B, the lines connecting the solution 44 and the security management cycle 45 mean that there is a correspondence relationship. For example, “planning phase (PLAN)” has a corresponding relationship with “solution 1”, and “execution phase (DO)” has a corresponding relationship with “solution 2”. These correspondences are determined by the phases of the security management cycle to which the products / services constituting the solution correspond.

  For example, “solution 1” is “product A” and “product B + service B” that have a corresponding relationship with “planning phase (PLAN)” based on the corresponding relationship between product / service 42 and solution 43 shown in FIG. It consists of. Therefore, the solution 1 is associated with the planning phase (PLAN).

  Further, when ordering the execution of the solutions associated with each security management cycle, the execution order is determined based on the execution order of the security management cycles corresponding to the solution. In this example, the execution order of the solutions is the order of solutions 1, 2, 3, 4, and 5.

  Next, the data structure of the solution information DB 16 will be described with reference to FIG.

  FIG. 6 is a diagram schematically showing the data structure of the solution information DB 16 of this embodiment. In FIG. 6, the security management cycle correspondence table 161 is shown in FIG. 6A, and the solution correspondence table 162 is shown in FIG.

  As shown in FIG. 6A, the security management cycle correspondence table 161 associates each phase of the security management cycle for each product / service. Specifically, the security management cycle correspondence table 161 has a field 511 for registering the name of the product / service, and a field 512 for registering the phase of the security management cycle corresponding to the product / service registered in the field 511. . In the illustrated example, for example, “Product A” is associated with the “planning phase (PLAN)” of the security management cycle, and “Product C” is associated with the “execution phase (DO)” of the security management cycle. It shows that.

  In addition, as shown in FIG. 6B, the solution correspondence table 162 includes, for each solution, the cost required for the solution and the product / service in addition to the cost of the product / service included in the solution. Are associated with each other. Specifically, the solution correspondence table 162 includes a field 521 for registering the name of the solution, and a field 522 for registering a necessary cost in addition to the cost of the product / service when the solution registered in the field 521 is executed. And a field 523 for registering products / services included in the solution registered in the field 521. In the example shown in the figure, for example, “product A” and “product B + service B” are products that are candidates for the configuration of “solution 1”. Also, in order to introduce “Solution 1” consisting of “Product A” and “Product B + Service B”, in addition to the costs of “Product A” and “Product B + Service B”, the cost is 200,000 yen. Indicates that it is necessary to add. That is, using the data of FIG. 4, the cost for introducing Solution 1 is 20 million yen, which is 300,000 yen, which is the introduction cost of "Product A", and 800,000 yen, which is the introduction cost of "Product B + Service B". It will be 1.3 million yen with 10,000 yen added.

  Next, processing performed by the security solution proposal support tool 14 according to this embodiment will be described.

  As described above, the processing performed by the support tool 14 is classified into the input data processing phase 141, the optimum solution determination processing phase 142, and the analysis / evaluation result display processing phase 143 (see FIG. 1). Hereinafter, the processing performed by the support tool 14 will be described in the order of the input data processing phase 141, the optimum solution determination processing phase 142, and the analysis / evaluation result display processing phase 143. In the following description, it is assumed that the product / service information DB 15 and the solution information DB 16 are set in the support tool 14.

  First, the input data processing phase 141 will be described with reference to FIGS. FIG. 7 is a diagram for explaining the processing flow of the input data processing phase performed by the security solution proposal support tool of this embodiment. 8 to 10 are diagrams exemplifying input screens displayed by the security solution proposal support tool 14 for accepting data input. The input data processing phase 141 is performed by the data input processing unit 241 and the additional data registration processing unit 242 (see FIG. 2).

  First, the input data processing unit 241 receives an input of an allowable cost for security measures (S601). Specifically, the input data processing unit 241 displays the input screen 71 illustrated in FIG. 8 on the display device 25, and displays data indicating the allowable cost input by the user (designer) according to the displayed input screen 71. Accept. As shown in the figure, the input screen 71 is provided with an allowable cost input field 711. The user uses the input device 26 to input the allowable cost (1.3 million yen in the illustrated example) in the allowable cost input field 711 on the input screen.

  Next, the input data processing unit 241 receives the input of the importance of each security countermeasure item (S602). Specifically, the input data processing unit 241 receives data indicating the importance of each security countermeasure item input by the user according to the input screen 71 shown in FIG. 8 described above. The input screen 71 is provided with an importance input table 712 for inputting the importance of each security countermeasure item.

  The importance level input table 712 includes a display field 7121 for displaying the security countermeasure items registered in the field 311 of the security countermeasure item table 151 (FIG. 4), and the importance level for each security countermeasure item displayed in the display field 7121. An importance level input field 7122 is provided. The importance level input field 7122 is configured to be able to selectively receive data indicating the level of importance or data indicating “not applicable”. The data indicating “Not Applicable” refers to security countermeasure items that are not necessary for the target information system.

  The user then displays the data indicating the importance of all the security countermeasure items displayed in the display column 7121 (for example, “not important: 1”, “not so important: 2”, “important: 3”). ”,“ Pretty important: 4 ”,“ very important: 5 ”), or data indicating“ not applicable ”is selected in the importance input field 7122. The user selects data indicating “not applicable” for a security measure item not corresponding to the target information system (that is, a security measure item unnecessary for the target information system).

  The input data processing unit 241 receives input of data selected by the user for each security countermeasure item (data indicating importance or data indicating “not applicable”). When the input data processing unit 241 receives an input of data indicating the importance for each security measure item, the input data processing unit 241 sets the received importance to a five-level value of “0 to 1” (0, 0.25, 0.5, 0.75, 1.0). The reason why the values are converted into the five-level values of “0 to 1” is to use them when calculating the degree of compatibility with the product / service combination. The input data processing unit 241 does not subsequently subject the security measure item for which “not applicable” is selected to “analysis / evaluation”.

  In the illustrated input screen 71, “3” is input as the importance of the security countermeasure item 7121a, “4” is input as the importance of the security countermeasure item 7121c, and “5” is input as the importance of the security countermeasure item 7121d. Has been. The input data processing unit 241 converts the importance of the input “3”, “4”, and “5” into “0.5”, “0.75”, and “1.0”, respectively. . In the input screen 71, “not applicable” is entered in the security measure item 7121b. For this reason, the security measure item 7121b is not subject to future calculations.

  Next, the input data processing unit 241 receives input of data indicating a product / service that has already been introduced to the target information system (S603 to 604). For example, a search button 713 for searching for installed products / services is provided on the input screen 71. When the input data processing unit 241 receives selection (pressing) of the search button 713 by the cursor 72 displayed on the input screen 71, the input data processing unit 241 displays a search screen 81 for searching for installed products / services illustrated in FIG. Display on the device 25.

  The search screen 81 shown in the figure displays a search item input field 811 for receiving an input of a keyword for searching, a search button 812 for receiving a search start, and a product / service name corresponding to the input keyword. A table 813 for accepting selection of the displayed product / service name, a button 814 for accepting registration of a new product / service, and an end button 815 for accepting search end are provided.

  When the keyword in the search item input field 811 is input and the search button is selected (pressed), the input data processing unit 241 selects the product / product corresponding to the keyword from the data stored in the product / service information DB 15. The service name is displayed in the table 813 of the search screen 81. When there are already installed products / services among the products / services displayed on the table 813 of the search screen 81, the user presses all the corresponding product / service selection buttons 8130. In the illustrated example, “service D” is selected as the installed product. The input data processing unit 241 identifies the selected product / service (“service D” in the illustrated example) as an installed product / service.

  Subsequently, the input data processing unit 241 determines whether there is an installed product / service that is not registered in the product / service information DB 15 based on data input by the user. If the input data processing unit 241 determines that there is an installed product / service that is not registered in the product / service information DB 15, the process proceeds to S606. If the input data processing unit 241 determines that there is no installed product / service that is not registered, the input data processing unit 241 proceeds to the process of S607 (S605).

  Specifically, in S605, when the input data processing unit 241 receives selection (pressing) of the new product / service registration button 814 on the search screen 81, the input product / service not registered in the product service DB 15 is received. (See FIG. 9), the process proceeds to S606. On the other hand, when the end button 815 receives selection (press) on the search screen 81, the input data processing unit 241 determines that there is no installed product / service that is not registered in the product service DB 15, and ends the search process. To do. After completing the search processing, the input data processing unit 241 closes the search screen 81 and returns the display on the display device 25 to the input screen 71 (FIG. 8). The input data processing unit 241 displays the product / service identified in S604 in the installed product / service display field 714 of the input screen 71, and proceeds to the process of S607.

  In S <b> 606, the additional data registration processing unit 242 newly performs data reception processing for products / services. Specifically, the additional data registration processing unit 242 displays, for example, a new product / service registration screen 91 shown in FIG. 10 and stores data on products / services input by the user according to the new product / service registration screen 91. Accept input.

  In the new product / service registration screen 91 shown in the figure, a table 911 for accepting input of the satisfaction level and cost of the product / service to be registered and a table for accepting the degree of association between the security measure items of the product / service to be registered. 912 are provided. The table 911 includes an input field 9111 for receiving an input of the name of a product / service to be additionally registered, an input field 9112 for receiving an input of the satisfaction level of the product / service input to the input field 9111, and an input field 9111. And an input field 9113 for accepting input of the product / service introduction cost. The table 912 has an input field 9122 for inputting the degree of relevance between the display field 9121 for displaying the security countermeasure items stored in the product / service information DB 15 and the security countermeasure item for the product / service entered in the table 911. And have.

  The additional data registration processing unit 242 receives input of the satisfaction level and cost of the newly registered product / service from the input fields 9111 to 9113 of the table 911. Further, the additional data registration processing unit 242 receives an input of the degree of association with the security measure item of the product / service input from the input field 9122 of the table 912 to the table 911.

  When the additional data registration processing unit 242 accepts selection (pressing) of the registration button 913 on the new product / service registration screen 91, the satisfaction and cost of the input product / service and the security of the product / service are described. The degree of association with the measure item is registered in the product / service information DB 15. Thereafter, the additional data registration processing unit 242 closes the registration screen 91, causes the input data processing unit 241 to update the input screen 71 shown in FIG. 8, and proceeds to the processing of S607. Specifically, the input data processing unit 241 updates the product / service selected as installed in the installed product / service list 712 on the input screen 71. In this example, “product E” is additionally registered as a new product.

  Although not shown, the additional data registration processing unit 242 also accepts input of data indicating the correspondence between the product / service to be added and the phase of the security management cycle, and data indicating the correspondence between the product / service and the solution. . Then, the additional data registration processing unit 242 additionally registers the received data in the solution information DB 16.

  In S607, the input data processing unit 241 adds identification information indicating that the product / service identified in S604 and the product / service accepted in S606 are installed products / services, and product / service information. Register in the DB 15 (S607).

  Finally, the user looks at the input screen 71 in FIG. 8 and confirms the input allowable cost, the importance in all security countermeasure items, and the installed product / service, and selects (presses) the save button 715 with the cursor 72 ) When the input data processing unit 241 accepts selection of the save button 715 on the input screen 71 by the cursor 72, the input data processing unit 241 closes the user information input screen 71 and ends the processing.

  Next, the second optimum solution determination processing phase 142 will be described with reference to FIGS. FIG. 11 is a diagram for explaining the processing flow of the optimum solution determination processing phase 142 performed by the security solution proposal support tool of the present embodiment. FIG. 12 is a diagram for explaining the flow of processing performed in S102 in the optimum solution determination processing phase 142 shown in FIG. The processing of this flow is performed by the current achievement level calculation processing unit 243, the optimal product / service determination processing unit 244, the security countermeasure deficient item identification processing unit 245, the optimal solution determination processing unit 246, and the solution execution order determination processing unit 247. Do.

  First, the current achievement level calculation processing unit 243 calculates the current achievement level of the security countermeasure items for the target information system (S101). More specifically, the current achievement level calculation processing unit 243 specifies data of installed products / services from data registered in the product / service information DB 15. The current achievement level calculation processing unit 243 uses the fuzzy composition operation based on the degree of satisfaction of the identified installed product / service and the degree of association between the security countermeasure item and the installed product / service to determine the current status of the security countermeasure item for the target information system. Calculate achievement.

  In the calculation of the current achievement level, S is a set of security countermeasure items s, F is a set of products / services f, mR (s, f) is a degree of association between security countermeasure items s and products / services f, The satisfaction degree is mF (f), the current achievement degree of the security countermeasure item s is mI ′ (s), and the current achievement degree is calculated using the following mapping function formula (Equation 1) having the relevance degree as a fuzzy relationship.

Next, the optimum product / service determination processing unit 244 determines the degree of satisfaction of the introduced product / service and the degree of relevance and the degree of satisfaction and relevance of the product / service prepared in advance based on the introduced product / service. Calculate the improvement achievement level of the security countermeasure items for the target information system when the combination of products / services prepared in advance is implemented. A product / service prepared in advance is a product / service registered in the product / service information DB 15 that has not been installed (in S607 of the input data processing phase 141, it is an installed product / service. Other than products / services with identification information indicating that they exist. Then, the optimum product / service determination processing unit 244 determines the product / service combination that minimizes the difference between the calculated improvement achievement level and the importance level as the most suitable product / service combination (S102).

  Here, the process of S102 is demonstrated using the flow shown in FIG.

  First, the optimum product / service determination processing unit 244 selects one combination in which a product / service registered in the product / service information DB 15 is added based on the introduced product / service (S111).

  Next, the optimum product / service determination processing unit 244 calculates the total cost (hereinafter referred to as “total cost”) required to introduce the added product / service. When calculating the total cost, the optimum product / service determination processing unit 244 searches the solution correspondence table 162 (FIG. 6B) of the solution information DB 16 for the added product / service combination. As a result of the search, if there is a product / service combination that is a solution, the optimum product / service determination processing unit 244 calculates the total cost of the solution. Then, the optimum product / service determination processing unit 244 checks whether or not the calculated total cost is equal to or less than the allowable cost accepted in the input data processing phase 141 (S112). The optimal product / service determination processing unit 244 proceeds to step S114 when the calculated total cost does not exceed the allowable cost, and returns to step S111 when the total cost exceeds the allowable cost and performs calculation for different combinations (S113). ).

  In S114, the optimum product / service determination processing unit 244 determines the combination of the product / service added based on the introduced product / service described above from the satisfaction / relevance of the product / service stored in the product / service information DB 15. 11, the achievement level when the selected combination is introduced (hereinafter referred to as “improvement achievement level”) is calculated using (Formula 1) which is the same formula as the calculation of the current achievement level calculated in S101 of FIG. Then, the optimum product / service determination processing unit 244 calculates, for each security measure item, the absolute value of the difference between the importance of the security measure item and the improvement achievement level of the above product / service combination.

  Next, the optimum product / service determination processing unit 244 calculates the degree of excess or deficiency of security measures (S115). The calculation method of excess / deficiency is shown below. First, the optimum product / service determination processing unit 244 sums up the absolute values of the differences for each security measure item calculated in S114. The optimum product / service determination processing unit 244 obtains a value obtained by dividing the total sum by the number of security countermeasure items, and sets the obtained value as the degree of excess or deficiency of the security countermeasure. When this is expressed by a mathematical expression, the degree of importance of the security countermeasure item s is mI (s), and the number of security countermeasure items included in the set S of security countermeasure items s is t. The formula is as follows (Formula 2).

Next, the optimum product / service determination processing unit 244 determines the degree of excess / deficiency of the security measures of the calculated product / service combination and the degree of excess / deficiency of the security measures of the combinations calculated for other product / service combinations. And check whether the degree of excess or deficiency of the security measures of the calculated product / service combination is minimum. The optimum product / service determination processing unit 244 holds the value (excess / deficiency degree) when the excess / deficiency degree of the security measures of the calculated product / service combination is minimum as a result of the check (S116).

  Next, the optimum product / service determination processing unit 244 checks whether or not the security measure excess / deficiency level has been calculated for all product / service combinations (S117). Then, the optimum product / service determination processing unit 244 returns to step S111 if calculation has not been performed for all combinations, starts calculation for different combinations, and proceeds to processing of S118 if calculation has been performed for all combinations.

  In S118, the optimal product / service determination processing unit 244 determines the combination with the minimum excess / deficiency of security measures as the optimal product / service combination (S118), and performs the process of S103 shown in FIG. Proceed to

  Here, an example of calculation for determining the product / service to be the optimum combination described above will be described using the data shown in FIGS. 4, 6, and 8 to 10.

  As shown in FIG. 9, “service D” is selected on the search screen 81, and in FIG. 10, “product E” is registered on the product / service registration screen. In the installed product / service list 712 of the input screen 71 in FIG. 8, “service D” and “product E” are displayed. The optimum product / service determination processing unit 244 performs a process of determining a combination of products / services based on these two products.

  From the product / service displayed in FIG. 8, as a combination of products to be added to “service D” and “product E”, which are installed products / services, from the product / service determination table 152 shown in FIG. “Product A”, “Product B + Service B”, “Product C”, “Service C”, “Product A and Product B + Service B”, “Product A and Product C”, “Product A and Service C”, “Product B +” "Service B and Product C", "Product B + Service B and Service C", "Product C and Service C", "Product A and Product B + Service B and Product C", "Product A and Product B + Service B and Service C" , “Product B + Service B and Product C and Service C”, “Product A and Product B + Service B, Product C, Service C and Service D” can be considered.

  With respect to these combinations, a combination that can be realized with 1,300,000 yen or less input as an allowable cost on the input screen 71 of FIG. 8 is obtained. At this time, for the combination of products / services, the solution correspondence table 162 (FIG. 6B) of the solution information DB 16 is searched, and if there is a combination of products / services as solutions, the cost of the solution is calculated, If the calculated cost is less than or equal to the allowable cost, the candidate is selected. From the cost of introducing each product / service in the product / service determination table 152 of FIG. 4 and the additional cost required for the combination of the solution of FIG. 6B, “Product A”, “Product B + Service B”, “Product C”, “Service C”, “Solution 1 (Product A and Product B + Service B)”, “Product A and Product C”, “Product A and Service C”, “Product B + Service B and Product C”, Ten products / services and solutions “product B + service B and service C” and “solution 2 (product C and service C)” are required as combination candidates.

  Next, the improvement achievement level of each security measure item is calculated for the combination of these products / services, solutions and installed products / services. For example, when calculating the achievement level of the combination of “service D, product E, and solution 1 (product A and product B + service B)”, first, the importance levels of security countermeasure items 7121a to 7172d (see FIG. 8) are respectively set. Corresponding to five levels of “0 to 1.0” (for example, the importance “3” of 7121a becomes “0.5”). Here, the security measure item 7121b is not associated because “not applicable” is selected. Further, the improvement achievement level of the security countermeasure item 7121a is calculated using (Equation 1) based on the satisfaction level and the relevance level of each of “Service D”, “Product E”, and “Product B + Service B”. In this case, the improvement achievement level is “0.5”. The security measure item 7121b is not calculated because “N / A” is selected. The security measure items 7121c and 7121d are also calculated using (Equation 1). In this case, the improvement achievement levels are “0.25” and “1.0”, respectively.

  Next, using (Equation 2), the excess / deficiency level of the combined security measures is calculated from the improvement achievement level and the importance level. When the absolute value of the difference between the importance 0.5 of the security measure item 7121a and the improvement achievement degree “0.5” of the calculated combination is calculated, it becomes “0”. Similarly, when the security countermeasure items 7121c and 7121d are also calculated, the absolute values of the differences are “0.5” and “0”, respectively. The total is divided by “3”, which is the number of security countermeasure items, to be “0.16”. That is, in the combination of “service D, product E, and solution 1 (product A and product B + service B)”, the excess / deficiency of the security measures of the combination is “0.16”.

  The same calculation is performed for other product / service combinations, and the excess / deficiency level of the security measures of the combination is calculated, and “service D, product E, product A”, “service D, product E, product B + service B” are calculated. ", Service D, Product E, Product C", "Service D, Product E, Service C", "Service D, Product E, Product A and Product C", "Service D, Product E, Product A and Service C" "Service D, Product E, Product B + Service B and Service C" and "Service D, Product E, Solution 2 (Product C and Service C)" have an excess or deficiency of "0.58" respectively. ”,“ 0.33 ”,“ 0.41 ”,“ 0.66 ”,“ 0.25 ”,“ 0.41 ”,“ 0.25 ”,“ 0.33 ”.

  Among these, the combination of “service D, product E, solution 1 (product A, product B + service B)” having the excess / deficiency degree of “0.16” is the smallest. Therefore, the combination of “service D, product E, and solution 1 (product A and product B + service B)” is the optimum product / service / solution combination.

  Returning to FIG. 11, the description will be continued. In S103, the security countermeasure deficient item identification processing unit 245 compares the current achievement level and the importance level to determine a security countermeasure item for which the security countermeasure is deficient. Specifically, the security measure deficient item identification processing unit 245 compares the importance level of each security measure item with the current achievement level calculated in S101, and determines whether the security measure item has a lower current achievement level than the importance level. The security measure items that are insufficient and that have a higher degree of achievement than the importance are identified as the security measure items that have excessive security measures.

  Next, for the security measure items for which the optimal solution determination processing unit 246 specifies the security measures that are specified in S103 and the security measure items for which the security measures are excessive, each security measure is determined from the optimal product / service combination determined in S102. Identify the product / service that addresses the item. Then, the optimum solution determination processing unit 246 obtains a product / service combination obtained by removing the installed product / service from the products / services for which the specified security measures are insufficient. The optimum solution determination processing unit 246 searches the solution correspondence table 162 (FIG. 6B) in the solution information DB 16 for the obtained product / service combination, and finds the optimum product / service to take measures against each security countermeasure item. Identify solutions that correspond to. In this case, if there is only one product / service that constitutes the solution, the product / service alone is introduced instead of the solution (S104).

  Finally, the solution implementation order determination processing unit 247 implements a solution (the product / service alone if the solution does not become a solution) that deals with the security measures that lack the security measures specified in S104 in each phase of the security management cycle. After classifying and ordering the execution, the process is terminated (S105). Note that the solution execution order determination processing unit 247 performs processing for classifying the above-described solution (product / service alone if it does not become a solution) into each phase of the security management cycle in the security management cycle table 161 ( This is performed using FIG.

  Finally, the third analysis / evaluation result display processing phase 143 will be described with reference to FIGS. FIG. 13 is a diagram for explaining the processing flow of the analysis / evaluation result display processing phase 143 performed by the security solution proposal support tool of this embodiment. FIG. 14 is a flowchart for explaining a process of updating a list of solutions when the allowable cost is changed. 15 to 17 are diagrams showing examples of display screens output in each processing step of the analysis / evaluation result display processing phase 143. The processing of this flow is performed by the analysis / evaluation result display processing unit 248.

  Now, the analysis / evaluation result display processing unit 248 displays the evaluation result of the security measure item for which the security measure specified in the optimum solution determination processing phase 142 is insufficient on the display device 25 (S121). Specifically, the analysis / evaluation result display processing unit 248 improves the current product achievement level, importance level, and optimal solution for the security measure items for which the specified security measures are insufficient. Evaluation result data represented by a graph indicating the degree of achievement is generated. The analysis / evaluation result display processing unit 248 displays the generated evaluation result data on the display device 25.

  Here, the evaluation result data displayed by the analysis / evaluation result display processing unit 248 in this step (S121) will be described with reference to FIG. As shown in the figure, the evaluation result screen 141 has an improvement achievement level 1411 of each security countermeasure item, an importance level, with the horizontal axis (X axis) as the security countermeasure item and the vertical axis (Y axis) as the achievement degree of the security countermeasure item. 1412 and the current achievement level 1413 are represented by a graph. This graph allows the user to check the difference between the values for each security measure item for which security measures are insufficient.

  Next, the analysis / evaluation result display processing unit 248 generates evaluation result data in which the security countermeasure items are rearranged according to the degree of importance of each security countermeasure item in the graph displayed in S121 (FIG. 15A). To do. The analysis / evaluation result display processing unit 248 displays the generated evaluation result data on the display device 25 (S122).

  Here, the evaluation result data displayed by the analysis / evaluation result display processing unit 248 in this step (S122) will be described with reference to FIG. As shown in the figure, the evaluation result screen 142 displays the improvement achievement levels and the current achievement levels of the respective security countermeasure items in the descending order of importance. From this graph, the user can confirm which security countermeasure item has a high importance.

  Next, the analysis / evaluation result display processing unit 248 optimizes the presenting degree of achievement of the installed product / service for each security countermeasure item with respect to the evaluation result of the security countermeasure item for which the security countermeasure is insufficient. Calculate the difference from the improvement achievement of the solution. The analysis / evaluation result display processing unit 248 sorts the security countermeasure items for each security countermeasure item having the same importance according to the magnitude of the calculated difference, and the current achievement level, importance, and optimum of the introduced product / service. Generate evaluation result data that shows the improvement achievement of the solution in a graph. The analysis / evaluation result display processing unit 248 displays the generated evaluation result data on the display device 25 (S123).

  Here, the evaluation result data displayed by the analysis / evaluation result display processing unit 248 in this step (S123) will be described with reference to FIG. As shown in the drawing, in the graph displayed on the evaluation result screen 1511, among the security countermeasure items having the same importance, the security countermeasure item having the highest countermeasure effect is represented at the left end. From this graph, the user can confirm the security countermeasure items having a high security countermeasure effect for each importance.

  Next, the analysis / evaluation result display processing unit 248 performs security countermeasure items for each security countermeasure item having the same importance in the order of execution of the security management cycle based on the PDSC phases corresponding to the optimum solutions to be presented. Sort by. The analysis / evaluation result display processing unit 248 displays evaluation result data representing the degree of achievement of the current status, importance, and improvement of the optimum solution in a graph for the above-described sorted security countermeasure items. Generate. The analysis / evaluation result display processing unit 248 displays the generated evaluation result data on the display device 25 (S124).

  Here, the evaluation result data displayed by the analysis / evaluation result display processing unit 248 in this step (S124) will be described with reference to FIG. As shown in the figure, in the graph displayed on the evaluation result screen 1511, the execution order of the solutions for countermeasures against the security countermeasure items is P, D, S, C, P, D from the left end. This graph allows the user to confirm the execution order of the solutions in consideration of the security management cycle.

  Finally, the analysis / evaluation result display processing unit 248 displays a line (hereinafter, cost lever) indicating the allowable cost input on the above-described evaluation result screen. Further, the analysis / evaluation result display processing unit 248 creates and displays a list of solution names indicating the execution order of the solutions, the names of products / services included in the solutions, and the total cost of the solutions (S125).

  Here, the evaluation result data displayed by the analysis / evaluation result display processing unit 248 in this step (S125) will be described with reference to FIG. As shown in the figure, on the evaluation result screen 1611, a cost lever is displayed at a position corresponding to the allowable cost. In other words, when the allowable cost is 1.3 million yen, the cost lever 1612 is displayed at the position shown in the figure, and the optimal solution name, solution execution order, product / service name included in the solution, and the total cost of the solution. Is shown in a list (A) 1614. Thereby, the user can confirm the optimum solution within the cost range corresponding to the position indicated by the cost lever.

  The analysis / evaluation result display processing unit 248 is configured to accept the movement of the position of the cost lever 1612 on the evaluation result screen 1611. When the user moves the cost lever on the evaluation result screen 1611 with the cursor 72 or the like, the analysis / evaluation result display processing unit 248 recalculates the optimal solution using the cost corresponding to the position indicated by the cost lever as the allowable cost. , Update the recalculated optimal solution, solution execution order, product / service names included in the solution, the solution list showing the total cost of the solution, and the improvement achievement graph by the optimal solution.

  FIG. 14A shows a flowchart for explaining the procedure of the update process. When the user moves the cost lever, the analysis / evaluation result display processing unit 248 identifies the cost corresponding to the position indicated by the cost lever 1612 moved on the screen (S1311).

  The analysis / evaluation result display processing unit 248 uses the cost specified by the position of the moved cost lever as an allowable cost, and selects an optimal solution within the allowable cost range by the same procedure as the optimal solution determination processing phase 142 described above. Obtained (S1312). Then, the analysis / evaluation result display processing unit 248 updates the obtained improvement achievement graph (S1313), and further updates the obtained solution list (S1314).

  For example, the case where the user moves the cost lever 1612 to the position of the cost lever 1613 in FIG. 17 will be described. As shown in the figure, when the cost lever 1612 is moved to the position of the cost lever 1613, the allowable cost is changed from 1.3 million yen to 2 million yen, and the solution list is recalculated from the list (A) 1614. The list (B) 1615 is updated.

  Further, the analysis / evaluation result display processing unit 248 does not accept the movement of the cost lever on the displayed screen, but provides a means for allowing the user to input the cost to be subjected to the security measures, and allows the user to input the cost. The cost lever is displayed at the position corresponding to the cost, the calculated cost is recalculated using the entered cost as the allowable cost, the improvement achievement graph of the obtained solution is updated, and the list of found solutions is updated. May be. FIG. 14B shows a flowchart for explaining the procedure of the update process in the case of accepting the cost input from the user.

  The analysis / evaluation result display processing unit 248 receives the cost input from the user (S1321). The analysis / evaluation result display processing unit 248 displays the cost lever at a position corresponding to the received input cost (S1322).

  The analysis / evaluation result display processing unit 248 recalculates the optimal solution using the input cost as the allowable cost (S1323), updates the obtained improvement achievement graph of the optimal solution (S1324), and displays a list of solutions. Update (S1325).

  For example, as shown in FIG. 17, an amount input field 1616 and a display button 1617 for accepting a re-evaluation process are provided on the evaluation result display screen 1611. It is assumed that the user inputs an amount of 2 million yen in the amount input field 1616 and presses the display button 1617 after the amount is input. In that case, the analysis / evaluation result display processing unit 248 moves the cost lever 1612 to the position of the cost lever 1613 and displays it. Then, the analysis / evaluation result display processing unit 248 recalculates the optimal solution of 2 million yen or less. Also, the analysis / evaluation result display processing unit 248 updates the obtained improvement achievement graph, and updates the solution list from the list (A) 1614 to the list (B) 1615.

Thereby, the user can change the allowable cost by interactively moving the cost lever or inputting the cost, and can propose solutions according to various allowable costs.
Second Embodiment
A second embodiment of the present invention will be described with reference to FIG.

  FIG. 18 is a schematic configuration diagram of a security solution proposal support tool according to the second embodiment of this invention. In the second embodiment, the functions of the first embodiment described above are realized by dividing them into a client terminal 171 and a server 173. In the description of the second embodiment, the same reference numerals are used for the same components as those in the first embodiment.

  As shown in the figure, the security solution proposal support tool of the second embodiment includes a plurality of client terminals 171 and a server 173 provided with a product / service information DB 15 and a solution information DB 16 having the same configuration as that of the first embodiment. Have. The client terminal 171 and the server 173 are connected via a network 172. Then, the client terminal 171 accesses the server 173 via the network 172, and performs an input data processing phase 141, an optimum solution determination processing phase 142, and an analysis / evaluation result display processing phase 143. The network 172 is not particularly limited. For example, a LAN (Local Area Network) may be used as the network 172. Further, for example, the Internet may be used.

  Specifically, the client terminal 171 includes an input data processing unit 241, an additional data registration processing unit 242, a current achievement level calculation processing unit 243, an optimal product / service determination processing unit 244, a security countermeasure deficient item specifying processing unit 245, an optimal A solution determination processing unit 246, a solution execution order determination processing unit 247, and an analysis / evaluation result display processing unit 248 are included.

  The input data processing unit 241 and the additional data registration processing unit 242 accept data input from the user in the same procedure as in the first embodiment described above, and product / service information provided in the server 173 via the network The accepted data is registered in the DB 15 and the solution information DB 16.

  In addition, the current achievement level calculation processing unit 243, the optimal product / service determination processing unit 244, the security countermeasure deficient item identification processing unit 245, the optimal solution determination processing unit 246, and the solution execution order determination processing unit 247 are connected via the network 172. The optimum solution determination processing phase 142 is performed using the product / service DB 15 and the solution information DB 16 provided in the server 173. That is, in the second embodiment, the client 171 uses the product / service DB 15 and the solution information DB 16 provided in the server 173 via the network 172 to determine the optimum solution.

  The analysis / evaluation result display processing unit 248 uses the product / service information DB 15 and the solution information DB 16 provided in the server 173 via the network, and performs the same analysis / evaluation result display process as in the first embodiment. Phase 143 is performed.

Thus, in the second embodiment, a plurality of clients 171 can share a database stored in the server 173. Further, by storing various case application information in the server 173, information can be shared by a plurality of people.
<Third Embodiment>
A third embodiment of the present invention will be described with reference to FIG.

  The third embodiment is a modification of the data structure of the data (solution correspondence table 162) to which the correspondence of the product / service stored in the solution information DB 16 of the first embodiment and the combination thereof is attached. It is. In the following, only the method for defining the correspondence between products / services stored in the solution information DB 16 and solutions will be described. In the description of the third embodiment, the same reference numerals are used for the same components as those in the first embodiment.

  FIG. 19 is a diagram illustrating an example of a correspondence relationship between a product / service that is a specific implementation means candidate for a security management cycle and a security countermeasure item, and a solution configured by a combination thereof.

  In the correspondence relationship shown in the figure, the product / service 182 is classified into the security function type 183 and the product / service 182 and the solution 184 are associated with each other. In the third embodiment, the data that associates the correspondence between the product / service 182 and the security function type 183 and the data that associates the correspondence between the security function type 183 and the solution 184 are stored in the solution correspondence table 162. Instead, it is stored in the solution information DB 16. When these associations are performed, the product / service 182 and the security function type 183 have a many-to-one correspondence. The security function type 183 and the solution 184 have a many-to-one correspondence. In this example, “product A” and “service A” belong to “function a” in the type of security function, and “function a” is a candidate for “solution 1” together with “function b”. In the third embodiment, the proposed optimal solution determination method, analysis / evaluation result display, and the like are the same as those in the first embodiment.

  As described above, according to the third embodiment, when a product / service is associated with a solution, the security function of the product / service is considered and the product / service is classified into security function types. Therefore, according to the third embodiment, classification is facilitated when associating products / services with solutions.

  The present invention is not limited to the embodiment described above, and various modifications can be made within the scope of the gist of the present invention. For example, in the “process for determining the optimum product / service combination” in FIG. 12 of the first embodiment described above, the improvement achievement level and the excess / deficiency level are set after limiting the product / service to the combination of the allowable cost or less. Although it asked, it does not specifically limit to this. For all the combinations, the improvement achievement degree and the excess / deficiency degree may be obtained, and the optimum product / service combination may be determined from among them.

  For example, in the first embodiment described above, the case where the analysis result is displayed for the security measure item for which the security measure is insufficient in the analysis / evaluation result display processing phase 143 has been described. It is not something. For example, the introduced product / service corresponding to the security countermeasure item for which the security countermeasure is excessive, which is obtained in the optimum solution determination processing phase, may be presented.

  In the second embodiment described above, a case where a plurality of clients 171 and a server 173 are connected has been described as an example. However, at least one server 173 may be provided.

  Further, the data configuration of the solution correspondence table 162 of the third embodiment may be applied to the second embodiment.

It is a figure for demonstrating the outline of the security solution proposal assistance tool of 1st Embodiment of this invention. It is a functional block diagram of the security solution proposal support tool 14 of 1st Embodiment of this invention. It is a hardware block diagram of the security solution proposal support tool of 1st Embodiment of this invention. It is the figure which showed the data structure of product / service information DB15 of 1st Embodiment of this invention in simulation. It is a conceptual diagram for demonstrating the correspondence of a product / service, a security management cycle, and a solution. It is the figure which showed the data structure of solution information DB16 of 1st Embodiment of this invention in simulation. It is a figure for demonstrating the flow of the input data processing phase 141 which the security solution proposal assistance tool of 1st Embodiment of this invention performs. It is the figure which illustrated the input screen which the security solution proposal support tool 14 of 1st Embodiment of this invention displays in order to receive the input of data. It is the figure which illustrated the input screen which the security solution proposal support tool 14 of 1st Embodiment of this invention displays in order to receive the input of data. It is the figure which illustrated the input screen which the security solution proposal support tool 14 of 1st Embodiment of this invention displays in order to receive the input of data. It is a figure for demonstrating the flow of the optimal solution determination process phase 142 which the security solution proposal assistance tool of 1st Embodiment of this invention performs. It is a figure for demonstrating the flow of the process performed by S102 in the optimal solution determination process phase 142 shown in FIG. It is a figure for demonstrating the flow of the analysis / evaluation result display process phase 143 which the security solution proposal assistance tool of 1st Embodiment of this invention performs. It is a figure for demonstrating the flow of the process which updates the list of solutions at the time of changing an allowable cost in the analysis / evaluation result display process phase 143. FIG. It is the figure which showed an example of the evaluation result screen output in the analysis / evaluation result display process phase 143 of 1st Embodiment of this invention. It is the figure which showed an example of the evaluation result screen output in the analysis / evaluation result display process phase 143 of 1st Embodiment of this invention. It is the figure which showed an example of the evaluation result screen output in the analysis / evaluation result display process phase 143 of 1st Embodiment of this invention. It is a schematic block diagram of the security solution proposal assistance tool of 2nd Embodiment of this invention. It is the figure which showed an example of the correspondence of the solution comprised from the product / service used as the concrete implementation means candidate of a security management cycle and a security countermeasure item, and those combination.

Explanation of symbols

DESCRIPTION OF SYMBOLS 14 ... Security solution proposal support tool, 15 ... Product / service information DB, 16 ... Solution information DB, 21 ... CPU, 22 ... Terminal input / output I / F, 23 ... External storage device, 24 ... Main storage device, 25 ... Display device , 26 ... input device, 27 ... network I / F, 28 ... bus, 151 ... security countermeasure item table, 152 ... product / service decision table, 161 ... security management cycle correspondence table, 162 ... solution correspondence table, client 171, network 172, servers 173, 231 ... input data processing program, 232 ... optimal solution determination program, 233 ... analysis / evaluation result display processing program, 241 ... input data processing unit, 242 ... additional data registration processing unit, 243 ... current status achievement calculation Processing unit 244 ... Optimal product / service decision processing unit, 245 ... Security countermeasure deficient item specifying processing unit, 246 ... Optimal solution decision processing unit, 247 ... Solution execution order decision processing unit, 248 ... Analysis / evaluation result display processing unit

Claims (11)

An information processing apparatus presenting a solution for security measures for an information system,
The solution is a combination of any of products, services, combinations of products and services (hereinafter referred to as “products etc.”),
Security measure item storage means for storing a plurality of security measure items for the information system;
For each product, etc., data that associates the degree of user satisfaction with the product and the degree of association between the security measure item stored in the security measure item storage unit and the product is stored. Product information storage means,
Solution information storage means storing data associated with a solution corresponding to each product stored in the product information storage means;
Means for accepting input of data indicating the importance of each security countermeasure item stored in the security countermeasure item storage means;
Accepts the selection of products already installed in the information system from the products stored in the product information storage means, and keeps the products etc. that have received the selection in an identifiable state as installed products Product information input means,
Means for calculating the current achievement level of the security measure item for the current information system using the satisfaction level and the relevance level associated with the introduced product in the data stored in the product information storage means; ,
Using the data stored in the product information storage means, a combination obtained by adding a product other than the introduced product to the introduced product is obtained, and the introduced product is obtained for each obtained combination. Using the satisfaction level and relevance level of products, etc., and the satisfaction level and relevance level of products other than the introduced products, etc., the improvement achievement level of the security countermeasure items for the information system when the combination is implemented is calculated. And a means for determining the combination that minimizes the difference between the calculated improvement achievement level and the importance received the input as an optimal combination of products,
Means for identifying a security measure item that lacks security measures by comparing the importance of each security measure item and the calculated current achievement level;
Select a product, etc., that takes measures against a security measure item for which the security measures are insufficient from products other than the introduced product, etc. in the determined combination, and store the data stored in the solution information storage means An information processing apparatus comprising: means for specifying a solution corresponding to the selected product or the like and presenting data indicating the specified solution. The information processing apparatus according to claim 1,
The solution information storage means is a phase in which security management cycles are classified for each product or the like stored in the product information storage means, and is one of a planning phase, an execution phase, an operation phase, and a monitoring phase. Data associated with phases is stored,
The identified solution is classified into each phase of the security management cycle by using the correspondence between the product etc. and the solution and the correspondence between the product etc. and the phase of the security management cycle stored in the solution information storage means. An information processing apparatus comprising means for presenting data in which an execution order is assigned to the solution. The information processing apparatus according to claim 1,
The product information input means includes
If there is no data indicating the product already installed in the information system in the product data stored in the product information storage means, the user of the product etc. for each new product etc. Accepting satisfaction, data indicating the degree of association between the security measure item stored in the security measure item storage means and the product, and data indicating the correspondence between the product and the solution,
Hold the product that accepted the input in a state that can be identified as an installed product, etc.
Storing the satisfaction level for each received product, etc., and data indicating the degree of association between the security measure item and the product, etc. in the product information storage means;
An information processing apparatus, wherein data indicating correspondence between the received product and the like and a solution is stored in the solution information storage means. The information processing apparatus according to any one of claims 1 to 3,
Data associating products and solutions stored in the solution information storage means with
An information processing apparatus characterized in that each product or the like is classified into a security function type, and the security function type is associated with the solution. An information processing apparatus according to any one of claims 1 to 4,
Means for identifying security measure items that have excessive security measures by comparing the degree of importance of each accepted security measure item and the current achievement level of the calculated installed product, etc .;
The degree of relevance between the installed product or the like and the specified security measure is excessive from the data stored in the product information storage means, and the specified security measure is an excessive security measure item. An information processing apparatus having means for specifying an installed product corresponding to An information processing apparatus according to any one of claims 1 to 5,
Sort the security measure items for which the specified security measures are insufficient according to the level of importance of each security measure item, the importance of each security measure item, the current achievement level of the installed product, etc., and the specification An information processing apparatus having means for generating a graph representing the improvement achievement degree of the solution and displaying the generated graph. The information processing apparatus according to claim 6,
The means for displaying the graph further includes:
Calculate the difference between the current achievement level of the installed product etc. in each security countermeasure item and the improvement achievement degree of the specified solution, and depending on the size of the calculated difference, the security countermeasure for each security countermeasure item that has the same importance Sorting items, generating a graph representing the importance of each security countermeasure item, the current achievement level of the installed product, etc., and the improvement achievement level of the identified solution, and displaying the generated graph Information processing apparatus. The information processing apparatus according to claim 7,
The means for displaying the graph further includes:
Based on the phases of the security management cycle to which the solutions presented correspond, the security countermeasure items are rearranged in the order of execution of the security management cycle for each security countermeasure item that has the same importance, and the importance of each security countermeasure item An information processing apparatus that generates a graph representing a current achievement level of an installed product or the like and an improvement achievement level of the identified solution, and displays the generated graph. The information processing apparatus according to claim 8,
It has a means to accept the input of allowable cost that is the budget for security measures,
The means for displaying the graph includes:
A line indicating the accepted allowable cost (hereinafter, cost lever) is displayed,
Means for calculating an optimal solution within an allowable cost range corresponding to the position indicated by the cost lever;
An information processing apparatus comprising: means for creating and displaying a list of calculated solutions. The information processing apparatus according to claim 9,
The means for displaying the graph includes:
A means of accepting cost changes for security measures;
Means for displaying a cost lever at a position corresponding to the changed cost;
An information processing apparatus comprising: A system that supports at least one information processing apparatus that presents a solution for security countermeasures and a server connected to the information processing apparatus via a network, and that supports security countermeasures of the information system,
The solution is a combination of any of products, services, combinations of products and services (hereinafter referred to as “products etc.”),
The server
Security measure item storage means for storing a plurality of types of security measure items for the information system;
Product information storage means for storing, for each product, the degree of satisfaction of the user with the product and the data indicating the degree of association between the security measure item stored in the security measure item storage means and the product etc. When,
Solution information storage means storing data associated with a solution corresponding to each product stored in the product information storage means, and
The information processing apparatus includes:
Means for accepting input of data indicating importance for each security countermeasure item stored in the security countermeasure item storage means;
The data stored in the product information storage means of the server is acquired via the network, the product already received in the information system is received from the acquired data, and the product that has received the selection Etc. in a state that can be identified as an installed product etc.,
Means for calculating the current achievement level of the security measure item for the current information system using the satisfaction level and the relevance level associated with the installed product in the data stored in the acquired product information storage means When,
Using the data stored in the acquired product information storage means, a combination obtained by adding a product other than the introduced product to the introduced product, etc. is obtained, and for each obtained combination, the installed Using the satisfaction level and relevance level of products, etc. and the satisfaction level and relevance level of products other than the introduced products, etc., the degree of achievement of improvement in security countermeasure items for the information system when the combination is implemented Means for calculating and determining the combination that minimizes the difference between the calculated improvement achievement level and the importance received the input as an optimal combination of products,
Means for identifying a security measure item for which security measures are lacking by comparing the importance of each security measure item with the calculated current achievement level;
Means for identifying a security measure item that lacks security measures by comparing the importance of each security measure item and the calculated current achievement level;
Means for selecting a product or the like that takes measures against a security measure item for which the security measure is insufficient from a product other than the already installed product in the determined combination;
The data stored in the solution information storage unit of the server is acquired via the network, the solution corresponding to the selected product is identified using the acquired data, and the identified solution is And a means for presenting data to be displayed.

Images