JP2008009819A - Security diagnostic system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To solve obscurity and complicatedness resulting from versatility and expertness of security measures. <P>SOLUTION: The security diagnostic system comprises an image display means for displaying, with the whole body or each section of a facility, a question object that is an object of question in security diagnosis of the facility as an image; a question display means for displaying a question corresponding to the display question object and choices; a choice input receiving means for receiving input of selection for the displayed choices; a security level extraction means for extracting a security level corresponding to a choice related to the received input of selection, and a security level calculation means for consolidating the extracted security levels for each predetermined category, and calculating, based on the consolidated security levels, a security level of the facility for each category. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a security diagnostic system.

  As a technology for diagnosing the status of security measures, by answering questions, self-diagnosis of security measures that displays on a radar chart what level the company is in comparison with other companies in the same industry and how much gap is desired There is a system (see Non-Patent Document 1).

As a technology for diagnosing information system security, a security management system having an interface that automatically executes network management and auditing based on a security policy and allows the user to select appropriate setting contents (see Patent Document 1). ) Etc.
Japanese Patent Laid-Open No. 2002-247033 JP 2002-56176 A JP 2002-185456 A JP 2004-258777 A JP-A-2005-250803 JP 2002-149508 A Information processing promotion mechanism, Information processing promotion mechanism: Security Center: Self-diagnosis test Information security measure benchmark, in-house security measure self-diagnosis test, [online], [Search June 9, 2006], Internet <URL: http: //www.ipa.go.jp/security/benchmark/>

  In recent years, interest in security issues has increased socially, and companies have taken various countermeasures against various security threats such as unauthorized intrusion, information leakage due to taking out, information leakage due to bringing in devices, disasters, etc. It is carried out. However, security measures are diverse such as electronic data, documents such as documents, human factors, physical access to facilities, etc., and high expertise is also required in each field. For this reason, there are companies that are interested in security issues but feel that there is a high threshold for security measures, such as not knowing what to do specifically.

  On the other hand, there have been methods and systems for performing security diagnosis of companies and facilities. However, in the conventional method or system, security is evaluated for each security countermeasure item, and the evaluation for each security countermeasure item is difficult and complicated. It wasn't a solution that would eliminate the height of this threshold for the companies they felt.

  In view of the problems described above, an object of the present invention is to eliminate the difficulty and complexity caused by the diversity and expertise of security measures.

  In order to solve the above-described problems, the present invention displays a bird's-eye view of a facility and determines the security level by answering the questions displayed in accordance with the image. This makes it possible to eliminate the difficulty and complexity caused by expertise.

Specifically, the present invention stores, for each question target that is a question target in the security diagnosis of a facility, question information including the question, an option corresponding to the question, and a security level corresponding to the option as data. Of the question information stored by the question information storage means, the image display means for displaying the question object in the facility as an image together with the whole or each area of the facility, and the image display means among the question information stored by the question information storage means Extracting question information corresponding to the question target displayed by the above, and displaying a question and options included as data in the question information; and an option input receiving unit for receiving an input of selection of the displayed option; Corresponding to the selection related to the selection input received by the option input receiving means from the extracted question information. Security level extraction means for extracting a security level; and the security levels extracted by the security level extraction means are aggregated for each predetermined category, and the security level of the facility is classified for each category based on the aggregated security level. A security diagnosis system comprising: a security level calculation means for calculating.

  By displaying, as an image, the question target that is the target of the question in the security diagnosis of the facility, together with the entire facility or each area, it becomes possible to evoke the user's image regarding the question target displayed in the image .

  In addition, by displaying the question related to the question object displayed as an image and selecting an option, security is diagnosed interactively in a state in which the user is prompted with the image of the question object, and the security evaluation is difficult and complicated. It becomes possible to eliminate this.

  In addition, by providing means for classifying the facility into a predetermined category and calculating the security level of the facility, the user can easily grasp the security status without having to perform difficult and complicated security evaluations. .

  The present invention provides icon display means for displaying an icon indicating that there is a question relating to the question object at the position of the question object displayed by the image display means, and icon selection input acceptance means for accepting input of selection of the icon And the question display means relates to the selected icon among the question information stored by the question information storage means triggered by the selection input received by the icon selection input reception means. Question information corresponding to the question target may be extracted, and questions and options included as data in the question information may be displayed.

  By displaying an icon indicating that there is a question regarding the position at the position of the question target in the image displayed by the image display means, the user intuitively grasps the position of the question target related to the security diagnosis, and the facility It is possible to grasp which question is related to which element.

  In the present invention, the security level calculation unit aggregates the security levels extracted by the security level extraction unit for each question target, and selects the highest security level among the security levels aggregated for each question target. The security level of each question target is determined, and the security level of each question target is aggregated for each security measure item classified according to a predetermined standard, and the security level is aggregated for each security measure item The lowest security level is determined as the security level of each security countermeasure item, the security level of each security countermeasure item is aggregated for each category, and the category of the security level aggregated for each category every By calculating the arithmetic mean, calculating the security level of the facility for each of the categories, it may be characterized.

Of the security levels aggregated for each question target, the highest security level is determined as the security level for each question target, and the lowest security level of the security levels aggregated for each security measure item is determined for each security measure item. By determining the security level, it is possible to determine the security level for each security measure item by paying attention to the low security level of the facility, that is, the security problem.

  Also, by calculating the arithmetic average of the security levels aggregated for each category for each category, it is possible to easily grasp the outline of the security level of the facility.

  The present invention provides, for each category, security level related facility information that is information affecting the security level required for the facility among information related to the facility, and level security that is a security level corresponding to the security level related facility information. Security level information storage means for storing security level information including a level as data, facility information input means for receiving input of information regarding the facility, and information regarding the facility for which input has been received are the security level related facility information And the level security level extraction means for extracting the level security level corresponding to the security level related facility information, and the level security level extracted by the level security level extraction means as the category Aggregate, based on the level security level aggregated, the recommended security level calculation means for calculating a security level recommended in the facility for each said category may be further comprising a.

  By calculating the recommended security level required for the facility, it is possible to compare the security level calculated by the security diagnosis with the recommended security level and grasp the unreachable security countermeasure items.

  The present invention generates a radar chart representing the security level for each category calculated by the security level calculation means and the recommended security level for each category calculated by the recommended security level calculation means on each axis. Further, radar chart display means for displaying may be further provided.

  By displaying a radar chart showing the security level for each category and the recommended security level for each category on each axis, it is possible to easily grasp the security state by visual observation and quickly recognize the problem.

  In this case, the radar chart may be one in which the security level for each category and the recommended security level for each category are displayed on different radar charts, or may be displayed on the same radar chart. Further, a plurality of category attributes such as security countermeasure categories and security target categories may be prepared, and a radar chart may be displayed for each attribute. As a result, it is possible to easily grasp the status and problems related to security measures and the status and problems related to security targets.

The present invention provides, for each category, a security measure information storage unit that stores security measure information including data as a method for realizing the security level of the facility to reach a predetermined security level, and the security level calculation unit. A category that does not satisfy the recommended security level is extracted by comparing the calculated security level for each category with the recommended security level for each category calculated by the recommended security level calculating unit. Security measure information corresponding to the category extracted by the unreached category extraction means is extracted from the security measure information accumulated by the unreached category extraction means and the security measure information accumulation means, And Security information display means for displaying realizing method included as data in the policy information may also be characterized by further comprising a.

  By displaying security countermeasure information related to security countermeasure items that do not meet the recommended security level, it is possible to quickly identify specific countermeasures for security to reach the recommended security level after recognizing security issues. It becomes.

  According to the present invention, it is possible to eliminate the difficulty and complexity caused by the diversification and specialization of security measures.

  An embodiment of a security diagnosis system according to the present invention will be described with reference to the drawings.

FIG. 1 is a diagram showing an outline of the configuration of the security diagnosis system according to the present embodiment. The security diagnosis system includes a CPU (Central Processing Unit) 11, a RAM (Random Access Memory) 12, an HDD (Hard).
A disk drive (NIC) 13, a network interface card (NIC) 14, an input device 15 such as a keyboard, a mouse, and a touch pad, and an output device such as a display 17 are connected via a bus 16.

  The CPU 11 is a central processing unit, and controls the RAM 12, HDD 13, NIC 14, and the like connected to the bus 16 by processing instructions and data expanded in the RAM 12 and the like. The RAM 12 is a main storage device and is controlled by the CPU 11 to write and read various commands and data. The HDD 13 is an auxiliary storage device, and information to be retained is written and read mainly even when the server 10 is powered off. The NIC 14 is a network interface, receives a signal from the network, and transmits the signal to the network.

  The HDD 13 is installed with an OS (Operating System) and a security diagnosis program that constitute a security diagnosis system. The OS performs management of various resources of the security diagnosis system, input / output management, and control of applications including a security diagnosis program. The security diagnosis program is composed of various program modules for security diagnosis, various databases for diagnosis, and the like, and is appropriately loaded onto the RAM 12 and processed by the CPU 11.

  Here, an example of a usage scene of the security diagnosis system according to the present embodiment will be described. An operator of a security diagnostic system such as a security planner brings the security diagnostic system to a facility to be diagnosed and performs a diagnosis using the security diagnostic system while hearing the person in charge of the facility. When the diagnosis is completed, the diagnosis result is displayed on the display 17 of the security diagnosis system. Further, a diagnostic report may be printed out based on the diagnostic result information.

  Next, the outline of the data structure of the present embodiment will be described with reference to FIGS. Data described below is stored on the HDD 13 or the RAM 12, and is appropriately read and processed by the CPU 11.

FIG. 2 is a diagram illustrating an outline of the data structure of the security countermeasure matrix 20 in the present embodiment. The security countermeasure matrix 20 includes a security countermeasure item ID 21, a status summary 22 and a status detail 23 for each security level, an implementation means summary 24 and an implementation means detail 25 for each security level, a target-specific diagnosis classification 26, a countermeasure-specific diagnosis classification 27, and the like. Contains information. The security countermeasure matrix 20 is stored in the database on the HDD 13 as a security countermeasure table, and is appropriately read on the RAM 12 and processed.

  Of the information included in the security countermeasure matrix 20, the security countermeasure item ID 21 is information for identifying the security countermeasure items obtained by classifying the objects to be diagnosed by the security diagnostic system according to a predetermined standard. (Information Security Management System) Items are selected in accordance with the detailed management measures of the appendix detailed control standard (Ver. 2.0). The security level is an index indicating the security level required for the facility to be diagnosed or the security level of the security of the facility, and conforms to the COBIT (Control Objective for Information and Related Technology) maturity model. Security level is defined. However, it is not always necessary to comply with these standards, and it is preferable that the security countermeasure items and the security level are appropriately set according to the embodiment.

  The definition of the security level in this embodiment is that the security level “0” is “not present”, the security level “1” is “primary”, the security level “2” is “repeatable”, The security level “3” is “defined”, the security level “4” is “managed”, and the security level “5” is “optimized”. However, this definition is defined based on the COBIT maturity model as described above, and is preferably set as appropriate according to the embodiment.

  The status summary 22 and the status details 23 for each security level are records of the current status output in the diagnosis result or diagnosis report in advance, and the implementation means summary 24 and the implementation means details 25 for each security level are the diagnosis results. Or the countermeasure output by a diagnostic report is recorded beforehand. The output of the diagnosis result or diagnosis report will be described later.

  The object-specific diagnosis classification 26 and the countermeasure-specific diagnosis classification 27 are information indicating on which axis of the radar chart described later the corresponding security countermeasure items are displayed. Each security countermeasure item has attributes of both a subject-specific diagnosis classification 26 and a countermeasure-specific diagnosis classification 27. The object-specific diagnosis classification 26 is a diagnosis classification that indicates a countermeasure for “where (object)” in the facility, and indicates which axis of the object-specific radar chart corresponds to. The countermeasure-specific diagnosis classification 27 is a diagnosis classification indicating “what type” of countermeasures and indicates which axis of the countermeasure-specific radar chart corresponds.

  FIG. 3 is a diagram for explaining the outline of the data structure of the security countermeasure level information 30 in this embodiment. The security countermeasure level information 30 includes, for each security countermeasure item, a security countermeasure item ID 31, a reference security level 32, a variable element input value 33, and a level security level 34 corresponding to the input value. The security countermeasure level information 30 is stored in the database on the HDD 13 as a security countermeasure level information table, and is appropriately read on the RAM 12 and processed.

The reference security level 32 is information indicating the security level to the extent required for a facility under general conditions for each security measure item. The input value 33 of the variable element is information indicating an element in which the required security level varies depending on the individual circumstances or situation of the facility. For each security measure item, the type of industry, the target department, the use of the facility The situation, target number, non-employee ratio, liquidity, etc. are defined. Furthermore, a level security level 34, which is a security level corresponding to the input value 33 of each variable element, is defined.

  FIG. 4 is a diagram for explaining the outline of the data structure of the question information 40 in this embodiment. The question information 40 includes a question element 41, a corresponding question area 42, a corresponding security measure item ID 43, a question ID 44, a question 45, an essential flag 46, an option 47, a security level 48 corresponding to the option, a next action 49, and the like. The question information 40 is stored in the database on the HDD 13 as a question information table, and is appropriately read on the RAM 12 and processed.

  The mandatory flag 46 is information indicating a premise question that is a premise for determining whether or not a question is necessary for the detailed contents of each question area 42 from among one or more questions for each question area 42. is there. That is, the question 45 whose essential flag 46 is TRUE (true) is a prerequisite question, and the question 45 whose essential flag 46 is FALSE (false) is not a prerequisite question.

  The next action 49 is information for determining subsequent processing contents of the inquiry process according to the selected option 47 when the option 47 is selected for each question 45 in the inquiry process described later. In this embodiment, a “close” action for ending a question related to the corresponding question element 41 and an action for displaying the next question 45 and option 47 for the same question element 41 are defined. The next question 45 and option 47 are specified by the question ID 44.

  Depending on the security measure item, there is a security measure item that needs to satisfy the prerequisite security level in order to satisfy the higher security level. For the question elements 41 belonging to these security countermeasure items, a question 45 for asking about the presence or absence of countermeasures at a higher security level, on the condition that an option 47 indicating that a countermeasure at a lower security level is taken is selected. The order of questions is configured so that options 47 are displayed.

  Next, the flow of security diagnosis processing will be described with reference to FIGS. The processing shown in FIGS. 5, 8, and 13 is performed by the CPU 11 interpreting and executing a program developed in the RAM 12 or the like in the security diagnostic system. The CPU 11 sequentially executes the processes shown in FIGS. 5, 8, and 13 based on a predetermined timing or an instruction input from the terminal. Further, the processing unit and processing order of the following processes are not limited to the processing unit and processing order shown in the present embodiment, and may be changed as appropriate.

  FIG. 5 is a flowchart showing the flow of recommended security level calculation processing in the present embodiment. The processing shown in this flowchart is executed by the operator starting the security diagnostic system.

  In S101, a company information input form is displayed. The CPU 11 reads input form information of company information defined in advance from the RAM 12 and outputs it to the display 17. FIG. 6 is a diagram showing a company information input form output by this processing. The input form includes an input field 50 for inputting a company name and a business type, and a button 51 for confirming the input value. Thereafter, the process proceeds to S102.

  In S102, input of company information is accepted. When the operator inputs the company name and the business type in the input field 50 displayed in S101 and clicks the button 51, the CPU 11 stores the input value in the RAM 12. Thereafter, the process proceeds to S103.

In S103, a facility information input form is displayed. The CPU 11 reads facility information input form information defined in advance from the RAM 12 and outputs it to the display 17. FIG. 7 is a diagram showing a facility information input form output by this processing. The input form determines an input field 55 for inputting a target use department, a target area, a target number of persons, a non-employee number, a liquidity rate (the ratio of entering / exiting and transferring personnel), and a facility usage state, and an input value. A button 56 is provided. Thereafter, the process proceeds to S104.

  In S104, input of facility information is accepted. When the operator inputs the target usage department, the target area, the target number of persons, the number of non-employees, the ratio of entering / leaving / transferring personnel, and the facility usage status in the input field 55 displayed in S103, and clicking the button 56. The CPU 11 stores the input value in the RAM 12. Thereafter, the process proceeds to S105.

  In S105, an input value corresponding to a variation factor of security measure item recommended security level calculation is calculated from the input value. The CPU 11 calculates an input value corresponding to the variable element defined in the variable element input value 33 of the security countermeasure level information 30 from the input values input in S102 and S104, and stores the calculated value in the RAM 12. In other words, in this embodiment, the type of business, the usage target department, the facility usage status, the target number of people, the non-employee ratio, the liquidity rate, and the like are calculated. Thereafter, the process proceeds to S106.

  In S <b> 106, it is determined whether or not a value that becomes a variation factor is included. The CPU 11 searches the security countermeasure level information table for each security countermeasure item based on the variable element input value 33 calculated in S105, and determines whether or not there is an input value 33 of the corresponding variable element. Here, there may be a plurality of input values 33 of the corresponding variable elements. If there is an input value 33 of the corresponding variation element, the process proceeds to S107. If there is no input value 33 of the corresponding variation element, the process proceeds to S108.

  In S107, the highest security level among the defined security levels 34 of the variable elements is applied as the recommended security level. The CPU 11 stores the highest security level among the level security levels 34 corresponding to the input value 33 of the variable element that matches the search in S106 as the recommended security level of the corresponding security measure item. For example, the industry of the facility to be diagnosed is the manufacturing industry, the target number is 300 or more, the standard security level 32 of the security measure item “use of personal computer” is the security level “2”, and the input value of the variable element When the level security level corresponding to “Manufacturing” is the security level “3”, and the level security level corresponding to the input value “target number of 300 or more” of the variable element is the security level “5”, the security measure item “individual” The recommended security level for “use of business computer” is the security level “5”. Thereafter, the process proceeds to S109.

  In S108, the reference security level 32 is applied as the recommended security level. In the security countermeasure level information 30, the CPU 11 stores a security level preset as the reference security level 32 of the corresponding security countermeasure item as the recommended security level of the corresponding security countermeasure item. Thereafter, the process proceeds to S109.

In S109, it is determined whether or not a recommended security level has been set for all security countermeasure items. The CPU 11 determines whether or not a recommended security level has been set for all security countermeasure items defined in the security countermeasure matrix 20. If it is determined that the recommended security level is not set for all the security countermeasure items, the process proceeds to S106, and the processes of S106 to S109 are repeated until the recommended security level is set for all the security countermeasure items. If it is determined that the recommended security level has been set for all the security countermeasure items, the processing shown in this flowchart ends.

  When the recommended security level calculation process is performed, the recommended or required security measure level is set for each facility, and it can be compared with the security level diagnosis result derived in the subsequent inquiry process. It becomes possible.

  FIG. 8 is a flowchart showing the flow of the inquiry process in the present embodiment. The processing shown in this flowchart is executed after the recommended security level calculation processing (see FIG. 5) ends.

  In S201, the entire perspective image is displayed. The CPU 11 reads the entire perspective image information from the HDD 13 or the RAM 12 and outputs it to the display 17. FIG. 9 is a diagram showing a screen image of the entire perspective image. The whole perspective image is an image overlooking the security diagnosis target, and a “?” Icon 61 is displayed in each question area 42 to be questioned. In addition, the entire perspective image may be always displayed, and is a security diagnosis target based on the company information and facility information stored in S102 and S104 of the recommended security level calculation process. The entire perspective image close to the facility may be selected and displayed. By displaying an entire perspective image close to the facility to be diagnosed, it is possible to make a diagnosis more in line with the actual situation of the facility. Thereafter, the process proceeds to S202.

  In S202, the question areas 42 are determined in the order defined by the system. The CPU 11 refers to a question area information file (not shown) read from the HDD 13, determines a question area 42 to be questioned in subsequent processing, and stores it in the RAM 12. The question area information file is a file that defines a question area 42 such as a room to be subjected to security diagnosis in the facility, and the order of the question areas 42 to be questioned is also defined here. The order of the question areas 42 is preferably defined in order from the facility entrance to the back. Further, when the question area 42 is determined, it is possible to display a state in which an image representing a person walks toward the corresponding question area 42 on the entire perspective image displayed in S201. This makes it possible to recall a usage scene when the corresponding question area 42 is actually used. Thereafter, the process proceeds to S203.

  In S203, a premise question and options 47, which are preconditions for determining whether or not a question is necessary for the detailed contents of each question area 42, are extracted from the question information table. The CPU 11 searches the question information table, extracts the question information 40 in which the question area 42 determined in S202 matches and the mandatory flag 46 is TRUE (true), and stores it in the RAM 12. Thereafter, the process proceeds to S204.

  In S <b> 204, the question 45 and the option 47 are displayed on the question panel 65. The CPU 11 causes the question panel 65 to be displayed over the entire perspective image, and displays the question 45 and the options 47 of the question information 40 extracted in S203 on the question panel 65. FIG. 10 is a diagram showing a screen image of the question panel 65 displayed on the entire perspective image. The question panel 65 includes a question display section 66, an option display section 67, radio buttons 68 corresponding to the options 47, and a button 69 for confirming the selected option 47. In this embodiment, the question panel 65 is displayed so as to be superimposed on the entire perspective image, but the display of the question 45 and the option 47 is not limited to this method. For example, a method of overwriting the entire perspective image, a method of displaying in another window, or the like may be employed. Thereafter, the process proceeds to S205.

In S205, an input of option 47 is accepted. When one of the options 47 displayed in S204 is selected by the operator and the button 69 is clicked, the CPU 11
The input value is stored in the RAM 12. Thereafter, the process proceeds to S206.

  In S206, the security level of the input option 47 is stored. The CPU 11 searches the question information table based on the input value (option 47) stored in the RAM 12 in S205, extracts the security level of the matching option 47, and stores it in the RAM 12. At this time, if the selected option 47 is the option 47 indicating that the target question area 42 does not exist in the facility to be diagnosed, the security level is not set and the corresponding question area 42 exists. A value (for example, “unexist”) indicating not to be set is set. Thereafter, the process proceeds to S207.

  In S207, the next action 49 corresponding to the input option 47 is extracted. The CPU 11 searches the question information table based on the input value (option 47) stored in the RAM 12 in S205, extracts the next action 49 of the matching option 47, and stores it in the RAM 12. Thereafter, the process proceeds to S208.

  In S208, the content of the next action 49 is determined. The CPU 11 determines whether the next action 49 extracted in S207 is “Close” or display of the next question. If the next action 49 is “close”, the process proceeds to S209. In particular, “close” is set as the next action 49 in the option 47 indicating that the target question area 42 does not exist in the facility to be diagnosed. If the next action 49 is a display of the next question, the process proceeds to S210.

  In S209, the question panel 65 displaying the question 45 and the option 47 is closed. The CPU 11 closes the question panel 65 displayed in S204, and displays the entire perspective image again in the area where the question panel 65 was displayed. At this time, the display of the “?” Icon 61 in which the question has already been displayed is changed to a check mark icon 62 indicating that the inquiry has ended. Thereafter, the process proceeds to S221.

  In S210, a question area image is displayed. The CPU 11 reads the corresponding question area image information from the HDD 13 or the RAM 12 and outputs it to the display 17. FIG. 11 is a diagram showing a screen image of the question area image. The question area image is a screen for inquiring about details of each question area 42, and different images are prepared in advance for each question area 42. Each question area image includes one or more “?” Icons 61 linked to the question 45. Thereafter, the process proceeds to S211.

  In S211, a click on the “?” Icon 61 is accepted. When any one of the “?” Icons 61 displayed in S210 is clicked by the operator, the CPU 11 stores the link information defined in the clicked “?” Icon 61 in the RAM 12. Thereafter, the process proceeds to S212.

  In S212, the question information 40 corresponding to the clicked “?” Icon 61 is extracted. The CPU 11 searches the question information table based on the link information input in S211, extracts the corresponding question information 40, and stores it in the RAM 12. Thereafter, the process proceeds to S213.

In S213, the question 45 and the option 47 are displayed on the question panel 70. The CPU 11 displays the question panel 70 so as to overlap the question area image, and displays the question 45 and the options 47 of the question information 40 extracted in S212 or S219 on the question panel 70. FIG. 12 is a diagram showing a screen image of the question panel 70 displayed so as to be superimposed on the question area image. The question panel 70 includes a question display unit 71, an option display unit 72, radio buttons 73 corresponding to the respective options 47, and a button 74 for confirming the selected option 47. In the present embodiment, the question panel 70 is displayed over the question area image, but the display of the question 45 and the option 47 is not limited to this method. For example, a method of overwriting the question area image, a method of displaying in a separate window, or the like may be employed. Thereafter, the process proceeds to S214.

  In S214, an input of option 47 is accepted. When one of the options 47 displayed in S204 is selected by the operator and the button 74 is clicked, the CPU 11 stores the input value in the RAM 12. Thereafter, the process proceeds to S215.

  In S215, the security level of the input option 47 is stored. The CPU 11 searches the question information table based on the input value (option 47) stored in the RAM 12 in S214, extracts the security level of the matching option 47, and stores it in the RAM 12. Thereafter, the process proceeds to S216.

  In S216, the next action 49 corresponding to the input option 47 is extracted. The CPU 11 searches the question information table based on the input value (option 47) stored in the RAM 12 in S214, extracts the next action 49 of the matching option 47, and stores it in the RAM 12. Thereafter, the process proceeds to S217.

  In S217, the content of the next action 49 is determined. The CPU 11 determines whether the next action 49 extracted in S216 is “Close” or display of the next question. If the next action 49 is “close”, the process proceeds to S218. If the next action 49 is a display of the next question, the process proceeds to S219.

  In S218, the question panel 70 displaying the question 45 and the option 47 is closed. The CPU 11 closes the question panel 70 displayed in S204, and displays the question area image again in the area where the question panel 70 was displayed. At this time, the display of the “?” Icon 61 in which the question is already displayed is changed to the check mark icon 62. Thereafter, the process proceeds to S220.

  In S219, the next question 45 and option 47 are extracted. The CPU 11 extracts the corresponding question information 40 from the question information table based on the question ID 44 indicated in the next action 49 determined in S217, and stores it in the RAM 12. Thereafter, the process proceeds to S213.

  In S220, it is determined whether or not all “?” Icons 61 displayed in the corresponding question area image have been clicked. The CPU 11 determines whether or not all the “?” Icons 61 displayed in the currently displayed question area image are clicked, and the inquiry is completed. If it is determined that the process has been completed, the process proceeds to S201. If it is determined that the process has not been completed, the process proceeds to S211 where all the “?” Icons 61 displayed in the question area image are clicked, and the processes from S211 to S220 are repeated until the inquiry is completed.

  In S221, it is determined whether or not the inquiry process has been completed for all the question areas 42. The CPU 11 determines whether or not the inquiry process has been completed for all the question areas 42 defined in the question area information file. If it is determined that it has not been completed, the process proceeds to S202, and the processes from S202 to S221 are repeated until the inquiry process is completed for all the question areas 42. If it is determined that the processing has been completed, the processing shown in this flowchart is completed.

FIG. 13 is a flowchart showing a flow of radar chart creation processing in the present embodiment. The process shown in this flowchart is executed after the inquiry process (see FIG. 8) ends.

  In S301, the security level of each question stored in the inquiry process is collected. The CPU 11 aggregates the security levels of the questions 45 stored in the RAM 12 in S206 and S215 of the inquiry process for each question element 41 into which each question 45 is classified, and stores it in the RAM 12. Thereafter, the process proceeds to S302.

  In S302, the highest security level among the aggregated security levels is adopted as the security level of the corresponding question element 41 (see FIG. 14). The CPU 11 compares the security levels aggregated in S301 for each question element 41, adopts the highest security level among the corresponding question elements 41 as the security level of the corresponding question element 41, and stores it in the RAM 12. . Thereafter, the process proceeds to S303.

  In S303, the security levels of the question elements 41 are collected. The CPU 11 aggregates the security levels of the question elements 41 stored in the RAM 12 in S302 for each security measure item into which each question element 41 is classified, and stores the security levels in the RAM 12. Thereafter, the process proceeds to S304.

  In S304, the lowest security level among the aggregated security levels is adopted as the security level of the corresponding security measure item (see FIG. 14). The CPU 11 compares the security levels collected in S303 for each security countermeasure item, adopts the lowest security level among the corresponding security countermeasure items as the security level of the corresponding security countermeasure item, and stores it in the RAM 12. . Thereafter, the process proceeds to S305.

  In S305, the security level of each security countermeasure item is collected. The CPU 11 extracts the target diagnosis category 26 and the countermeasure diagnosis category 27 to which each security countermeasure item corresponds from the security countermeasure table, and sets the security level of each security countermeasure item stored in the RAM 12 in S304 for each extracted diagnosis category. Are stored in the RAM 12. Thereafter, the process proceeds to S306.

  In S306, the arithmetic average of the security levels for each collected diagnosis category is calculated as the security level of the corresponding diagnosis category. For each diagnosis category, the CPU 11 calculates an arithmetic average of security levels of each security measure item belonging to the corresponding diagnosis category, which is aggregated in S 305, and stores it in the RAM 12. At this time, since the calculated security level may not be an integer, in this embodiment, the arithmetic average is calculated with the number of significant digits up to the first decimal place. Thereafter, the process proceeds to S307.

  In S307, the recommended security level of each security measure item is collected. The CPU 11 aggregates the recommended security levels of the security countermeasure items stored in the RAM 12 in the recommended security level calculation process for each diagnostic classification of the radar chart into which the respective security countermeasure items are classified, and stores them in the RAM 12. Which diagnosis category each security measure item belongs to is determined by the CPU 11 searching the security measure table based on the security measure item and extracting the corresponding diagnosis category. Thereafter, the process proceeds to S308.

In S308, the arithmetic average of the recommended security levels for each aggregated diagnosis category is calculated as the recommended security level of the corresponding diagnosis category. For each diagnosis category, the CPU 11 calculates an arithmetic average of recommended security levels of each security measure item belonging to the corresponding diagnosis category, which is aggregated in S307, and stores it in the RAM 12. At this time, since the calculated recommended security level may not be an integer, in this embodiment, the arithmetic mean is calculated by setting the number of significant digits to the first decimal place. Thereafter, the process proceeds to S309.

  In S309, the diagnosis result is displayed. FIG. 15 is a diagram showing a screen image of the displayed diagnosis result. The diagnosis result includes a radar chart 81 indicating the security level and recommended security level for each calculated diagnosis classification, a list 82 of security countermeasure items whose security level does not reach the recommended security level, and a display switching button 83. The CPU 11 generates a radar chart 81 in which the security level for each diagnosis category calculated in S306 and the recommended security level for each diagnosis category calculated in S308 are represented on respective axes corresponding to each diagnosis category, and the display 17 Output to. Here, in the radar chart 81, a star indicating a security level is displayed in order to improve visibility. Thereafter, the processing shown in this flowchart ends.

  Note that the radar chart 81 shown in FIG. 15 is a target-specific radar chart 81 in which the diagnostic classifications belonging to the target-specific diagnostic classifications 26 are represented on respective axes. When the display switching button 83 is clicked, the countermeasure-specific radar chart 81 is displayed. A countermeasure-specific radar chart 81 showing the diagnostic classifications belonging to the diagnostic classification 27 on the respective axes is displayed (not shown). This makes it possible to easily grasp the state of the facility and the recommended security level for each target and for each measure. In addition, when the title of each security countermeasure item shown in the list 82 of security countermeasure items whose security level has not reached the recommended security level is clicked, a countermeasure panel 85 is displayed over the diagnosis result ( See FIG. The countermeasure panel 85 displays countermeasures to be taken to reach the recommended security level. The CPU 11 searches the security countermeasure table, extracts the security means realization outline 24 of the security countermeasure items that have not reached the recommended security level, and outputs them to the countermeasure panel 85 as countermeasures to be taken. As a result, it is possible to easily grasp what measures should be adopted to achieve the recommended security level. In the present embodiment, the implementation means summary 24 is extracted from the security countermeasure table and output, but the status summary 22 may be further extracted and output. In this embodiment, the countermeasure panel 85 is displayed over the diagnosis result, but the display of the countermeasure to be taken to reach the recommended security level is not limited to this method. For example, a method of overwriting the diagnosis result, a method of displaying in a separate window, or the like may be employed.

  In addition to the diagnosis result, a diagnosis report may be output by means such as a printout. Similar to the diagnosis result, the diagnosis report includes a radar chart, a list of security measures items that have not reached the recommended security level, and measures to be taken to reach the recommended security level. At this time, as measures to be taken to reach the recommended security level, the state details 23 and the realization means details 25 of each security level of the security measure items that have not reached the recommended security level are extracted and output as measures to be taken. . By outputting detailed countermeasures, it is possible to more specifically understand what countermeasures should be adopted in order to achieve the recommended security level. The printout includes a method of outputting by connecting a printer to the security diagnosis system, a method of uploading diagnosis result information to the server, and outputting from the printer connected to the server, but is not limited to a specific method. . Also, methods for uploading diagnosis result information to the server include a method for uploading from the NIC 14 via a network, a method using a removable medium, and the like, but are not limited to a specific method.

  According to the present embodiment, it is possible to eliminate the difficulty and complexity caused by the diversification and expertise of security measures.

It is the figure which showed the outline of the structure of the security diagnostic system which concerns on an Example. It is the figure explaining the outline of the data structure of the security countermeasure matrix in an Example. It is the figure explaining the outline of the data structure of the security countermeasure level information in an Example. It is the figure explaining the outline of the data structure of the question information in an Example. It is the flowchart which showed the flow of the recommended security level calculation process in an Example. It is a figure which shows the company information input form output by the company information input form display process. It is a figure which shows the facility information input form output by the facility information input form display process. It is the flowchart which showed the flow of the inquiry process in an Example. It is the figure which showed the screen image of the whole perspective image. It is the figure which showed the screen image of the question panel displayed on a whole perspective image. It is the figure which showed the screen image of a question area image. It is the figure which showed the screen image of the question panel displayed on a question area image. It is the flowchart which showed the flow of the radar chart preparation process in an Example. It is the figure which showed the outline | summary of the process which determines the security level of a question element and a security countermeasure item. It is the figure which showed the screen image of a diagnostic result. It is the figure which showed the screen image of the countermeasure panel displayed by overlapping on the screen image of a diagnostic result.

Explanation of symbols

11 CPU
12 RAM
13 HDD
DESCRIPTION OF SYMBOLS 15 Input device 17 Display 20 Security measure matrix 30 Security measure level information 40 Question information 50 Input field 55 Input field 61 "?" Icon 62 Check mark icon 65 Question panel 66 Question display part 67 Choice display part 70 Question panel 71 Question display part 72 Option display area 81 Radar chart 85 Countermeasure panel

Claims (6)

Question information storage means for storing question information including, as data, the question, an option corresponding to the question, and a security level corresponding to the option for each question target to be questioned in the security diagnosis of the facility;
Image display means for displaying the question target in the facility as an image together with the whole facility or each area;
A question display that extracts question information corresponding to the question object displayed by the image display means from the question information stored by the question information storage means, and displays a question and options included as data in the question information. Means,
An option input receiving means for receiving an input of selection of the displayed option;
Security level extraction means for extracting a security level corresponding to an option related to an input of selection received by the option input receiving means from the extracted question information;
Security level calculation means for aggregating security levels extracted by the security level extraction means for each predetermined category, and for calculating security levels of the facilities for each category based on the aggregated security levels;
A security diagnostic system comprising: Icon display means for displaying an icon indicating that there is a question related to the question target at the position of the question target displayed by the image display means;
Icon selection input receiving means for receiving an input of selection of the icon;
Further comprising
The question display unit corresponds to the question target related to the selected icon among the question information stored by the question information storage unit, triggered by the selection input received by the icon selection input receiving unit. Extracting question information and displaying questions and options included as data in the question information;
The security diagnostic system according to claim 1. The security level calculation means includes
Aggregating security levels extracted by the security level extraction means for each question target;
Of the security levels aggregated for each question target, the highest security level is determined as the security level for each question target,
The security level of each question target is aggregated for each security measure item classified according to a predetermined standard for the target to be diagnosed,
Of the security levels aggregated for each security countermeasure item, the lowest security level is determined as the security level of each security countermeasure item,
Aggregating the security level of each security measure item for each category,
By calculating the arithmetic average for each category of the security level aggregated for each category,
Calculating a security level of the facility for each category;
The security diagnostic system according to claim 1 or 2, characterized by the above. For each category, data on security level related facility information that is information affecting the security level required for the facility, and a level security level that is a security level corresponding to the security level related facility information, Security level information storage means for storing security level information included as:
Facility information input means for receiving input of information about the facility;
A level security level extracting means for extracting a level security level corresponding to the security level related facility information when the information about the facility for which the input is received corresponds to the security level related facility information;
Recommended security level calculation for aggregating the level security levels extracted by the level security level extraction means for each category, and calculating a security level recommended for the facility for each category based on the aggregated level security level Means,
The security diagnostic system according to any one of claims 1 to 3, further comprising:   Radar that generates and displays a radar chart representing the security level for each category calculated by the security level calculation means and the recommended security level for each category calculated by the recommended security level calculation means for each axis. The security diagnosis system according to claim 4, further comprising a chart display unit. Security measure information storage means for storing security measure information including, as data, an implementation method for the security level of the facility to reach a predetermined security level for each category,
By comparing the security level for each category calculated by the security level calculation unit with the recommended security level for each category calculated by the recommended security level calculation unit, the recommended security level is satisfied. Unreachable category extraction means for extracting categories that have not been
The security measure information corresponding to the category extracted by the unreached category extracting unit is extracted from the security measure information stored by the security measure information storing unit, and the realization method included as data in the security measure information is displayed. Security measure information display means to
The security diagnostic system according to claim 4 or 5, further comprising:

Images