CSA-JC \u30e2\u30d0\u30a4\u30eb\u30e6\u30fc\u30b6\u30fc\u30ef\u30fc\u30ad\u30f3\u30b0\u30b0\u30eb\u30fc\u30d7\u306f\u3001CSA\u30b0\u30ed\u30fc\u30d0\u30eb\u306eMobile Working Group\u306e\u6d3b\u52d5\u306b\u6e96\u3058\u3066\u3001\u30af\u30e9\u30a6\u30c9\u4e2d\u5fc3\u306e\u8996\u70b9\u304b\u3089\u3001\u30a8\u30f3\u30c9\u30e6\u30fc\u30b6\u30fc\u5411\u3051\u306b\u30bb\u30ad\u30e5\u30a2\u306a\u30e2\u30d0\u30a4\u30eb\u30c7\u30d0\u30a4\u30b9\u30b3\u30f3\u30d4\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u3092\u652f\u63f4\u3059\u308b\u305f\u3081\u306e\u57fa\u672c\u7684\u306a\u8abf\u67fb\u7814\u7a76\u3092\u63d0\u4f9b\u3057\u3001\u30e2\u30d0\u30a4\u30eb\u74b0\u5883\u306e\u30af\u30e9\u30a6\u30c9\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u95a2\u3059\u308b\u5553\u767a\u6d3b\u52d5\u3092\u63a8\u9032\u3059\u308b\u3053\u3068\u3092\u76ee\u7684\u3068\u3057\u307e\u3059\u3002<\/p>\n
CSA-JC \u30e2\u30d0\u30a4\u30eb\u30e6\u30fc\u30b6\u30fc\u30ef\u30fc\u30ad\u30f3\u30b0\u30b0\u30eb\u30fc\u30d7\u306e\u8a2d\u7f6e\u4f01\u753b\u66f8\u306f\u3001\u3053\u3061\u3089\u3092\u53c2\u7167<\/a>\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/strong><\/p>\n [2019\u5e7412\u6708]<\/p>\n IoT in the News<\/p>\n CSA UL Collab – Update<\/p>\n CSA IoT Controls Matrix v2<\/p>\n IDAM for IoT v2<\/p>\n Other<\/li>\n [2019\u5e7411\u6708]<\/p>\n [2019\u5e7410\u6708]<\/p>\n [2019\u5e749\u6708]<\/p>\n [2019\u5e748\u6708]<\/p>\n [2019\u5e747\u6708]<\/p>\n [2019\u5e746\u6708]<\/p>\n [2019\u5e745\u6708]<\/p>\n [2019\u5e744\u6708]<\/p>\n [2019\u5e743\u6708]<\/p>\n [2019\u5e742\u6708]<\/p>\n \u65e5\u6642\uff1a2019\u5e742\u670827\u65e5\uff08\u6728\uff09\u5348\u5f8c7\u6642\uff5e9\u6642<\/p>\n \u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e<\/p>\n <\/p>\n 2-1.\u00a0 CSA Mobile Working Group<\/u><\/p>\n 2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/p>\n 2-2.\u00a0\u00a0 CSA Mobile Application Security Testing(MAST) Working Group<\/u><\/p>\n 2019\u5e742\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/p>\n 2-3.\u00a0\u00a0 CSA IoT Working Group<\/u><\/p>\n 2-3-2. IoT Working Group Call<\/u><\/p>\n \u65e5\u6642\uff1a2019\u5e742\u670822\u65e5\uff08\u91d1\uff09\u300003:00am \u2013 04:00am<\/p>\n \u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)<\/p>\n \u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aJohn Yeoh (CSA)<\/p>\n \u6982\u8981\uff1a<\/p>\n \u201cAn Examination of the Evolution of IoT Attacks\u201d<\/p>\n Speaker: Alon Levin, VP Product Management, VDOO.<\/p>\n Alon is the VP Product Management at VDOO. Prior to his current role, Alon led product management and technical field operations at Cyvera, until it was acquired by Palo Alto Networks. After the acquisition, he recruited and technically led the sales engineer specialists team in Palo Alto Networks\u2019 endpoint business.<\/p>\n The year 2018 saw increased IoT adoption and a leap in regulation. IoT products were faced with multiple IoT attack variants: Wicked, OMG Mirai, ADB.Miner, DoubleDoor, Hide ‘N Seek and even a Mirai-Variant IoT Botnet used to target the Financial Sector. The major attack in 2018 was VPNFilter, infecting over a half a million devices from a wide range of known vendors. In 2016 the same size attack, by the infamous Mirai, was major news and caused havoc on the Internet. Today, while such an attack is relatively big, it is not uncommon or unexpected.<\/p>\n Alon will examine why the 2018 attacks are more advanced that what we’ve seen in the past. He will explore today’s new emerging attack types and their impacts on the future of IoT. Finally, Alon will talk about different types of security solutions that could have easily mitigated most of the attacks in 2018 and will make it difficult for attackers to successfully target embedded devices in the future.<\/p>\n [2019\u5e741\u6708]<\/p>\n 1. \u56fd\u5185\u6d3b\u52d5<\/p>\n 1-1. Facebook Developer Circle Tokyo Launch Event\uff08\u7d42\u4e86\uff09 2. \u30b0\u30ed\u30fc\u30d0\u30eb\u6d3b\u52d5<\/p>\n 2-1. CSA Mobile Working Group 2-2. CSA Mobile Application Security Testing(MAST) Working Group 2-3. CSA IoT Working Group [2018\u5e7412\u6708]<\/p>\n 1. \u56fd\u5185\u6d3b\u52d5<\/p>\n 1-1. Japan Azure User Group \u300c\u7b2c15\u56de Tokyo Jazug Night\u300d\uff08\u7d42\u4e86\uff09 2. \u30b0\u30ed\u30fc\u30d0\u30eb\u6d3b\u52d5<\/p>\n 2-1. CSA Mobile Working Group 2-2. CSA Mobile Application Security Testing(MAST) Working Group 2-3. CSA IoT Working Group 2018\u5e7411\u6708<\/p>\n 1. \u56fd\u5185\u6d3b\u52d5<\/p>\n 1-1. Japan Azure User Group \u300cAzure DevOps Tokyo\u300d\uff08\u7d42\u4e86\uff09 1-2. Japan Azure User Group \u300c\u7b2c15\u56de Tokyo Jazug Night\u300d\uff08\u4e88\u5b9a\uff09 2. \u30b0\u30ed\u30fc\u30d0\u30eb\u6d3b\u52d5<\/p>\n 2-1. CSA Mobile Working Group 2-2. CSA Mobile Application Security Testing(MAST) Working Group 2-3. CSA IoT Working Group<\/p>\n \u30fbReview collaborative survey with UL<\/li>\n <\/p>\n","protected":false},"excerpt":{"rendered":"\u516c\u958b\u60c5\u5831<\/h3>\n
\u6d3b\u52d5\u5185\u5bb9<\/strong><\/h3>\n
<\/h3>\n
\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e7412\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n
\n2-1. IoT Working WG Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e7412\u670813\u65e5\uff08\u91d1\uff09\u300003:00am \u2013 04:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a<\/p>\n\n
\n
\n
\n
\n
\n
\n
\n
\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e7411\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n
\n<\/u>2-1. IoT Working WG Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e7411\u67081\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n[UL Collab]
\n-Pfizer\/Cheryl working with UL to figure out what the POC will look like. Make some adjustments
\n[V2 IoT Security Controls – Update]
\n-Looking at vendor architecture and comparing that to the shared responsibility model (application and device plane) – Mark, Umesh, and Michael
\n-Discussed the adjustments to shared responsibilities model for IoT
\n[NIST IR Comments]
\n-Comment period ends tomorrow
\n-Add any comments here and CSA will submit them together
\n[Other]
\n-Aaron\/OWASP will be releasing a document on IoT Firmware Security Testing Methodology tomorrow – Nov 1st
\n-Aaron\/OWASP will also be releasing a sandbox to find, test, and fix IoT vulnerabilities – will announce when it is released.<\/p>\n\n
\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e7410\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong>
\n<\/u><\/li>\n
\n<\/u>\u00a0 \u00a0 \u00a02019<\/strong>\u5e7410\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n<\/ul>\n\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e749\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong>
\n<\/u><\/li>\n
\n<\/u>2-1. IoT Working WG Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e749\u67086\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n[Action Items]
\n-Continue work on the IoT Matrix. Contact leadership to sign-up for a set of controls
\n[Discussions]
\n-IoT Matrix: Discussion of what\u2019s been worked on and the references that are being pulled from.
\n-Defining an IoT Shared Responsibility Model for Version 2 of the IoT Controls Matrix
\n[Other]
\n-If anyone is interested in presenting on the IoT Framework at an upcoming conference, please reach out to the leadership team. We can provide a slide deck, abstract, and additional support for your effort.<\/li>\n<\/ul>\n\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e748\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong>
\n<\/u><\/li>\n
\n<\/u>2-1. IoT Working WG Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e748\u670823\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n[CSA Announcements]
\n-New website! – cloudsecurityalliance.org\/
\n-Current open peer reviews – https:\/\/cloudsecurityalliance.org\/research\/contribute\/
\n-Recent releases – cloudsecurityalliance.org\/research\/artifacts\/
\n-Upcoming events – https:\/\/csacongress.org\/
\n[Update on CSA\/UL – volunteers needed for each of the below Tasks]
\n-List of Controls- Compile comprehensive list of manufacturer-scope security, privacy and safety controls
\n-Graphic – High level graphic to depict the relationship between manufacturer-scoped controls and IoT controls matrix
\n-Mapping – Map IoT Framework with manufacturer controls
\nProof of concept – employ as proof of concept in their organization
\n[Review Azure’s IoT Security Services – complied by Umesh]
\n[IoT Control Matrix Updates: (touching base with Michael Roza – discussion revolving issues\/control methodologies)]
\n-Secure Connections
\n-Vulnerability Management
\n-Volunteers go to domain assignments tab and add your name to your domain they’d like to cover
\n[Action Items]
\n-Brian – Intro meeting with UL\/Cheryl for proof of concept portion
\n-Michael – Post list of manufacturer scope controls when ready
\n-Brian\/Umesh – post Umesh’s document with azure iot security services<\/li>\n<\/ul>\n\n
\n<\/strong>\u00a0 \u00a0 \u00a02019<\/strong>\u5e747\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong>
\n<\/u><\/li>\n
\n<\/u>2-1. IoT Working WG Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e747\u670826\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n[Welcome new co-chair: Aaron Guzman]
\n-Aaron has been a member of the IoT Working Group since its inception and we’re excited to have him join the IoT Leadership Team.
\n[IoT Security Controls Framework]
\n-Adding indicators of compromise (IOC) section
\n-Need volunteers for reviewing sections of controls
\n[Collaboration with UL]
\n-Hillary to send leadership team information about the CFP for the upcoming U.S. Chapter Summits.
\n[Other]
\n-Eric presented on the IoT Controls Framework recently at a conference in VA<\/li>\n<\/ul>\n\n
\n<\/strong>2019<\/strong>\u5e746\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n<\/ul>\n\n
\n<\/strong>2019<\/strong>\u5e745\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n
\n<\/u>2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/li>\n
\n<\/u>\u00a02019\u5e745\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/li>\n
\n\u65e5\u6642\uff1a2019\u5e745\u670817\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\nAction Items:
\nGathering volunteers for the Identity Management\/ Identity Access Management for IoT Devices v2 document.
\nReviewing of the Version 2 of the CSA IoT Controls Matrix.\u00a0 Comments only for now.Meeting Minutes:
\n1.CSA Announcements
\n-Upcoming Events
\n-Share IoT Survey
\n-Open peer review
\nReviewed and discussed initial UL\/CSA Survey Results
\n2.Call for participation: Identity and Access Management for the IoT
\nTaking a lead on certain sections within the paper.
\n3.Next Steps: Version 2 of the CSA IoT Controls Matrix –
\n-Beginning to review and update current version for second release
\n-Participants wanted to work on sections of the document, more formal announcements regarding the strategy\/work will be coming soon.
\n-Currently looking for comments only<\/li>\n<\/ul>\n\n
\n<\/strong>2019<\/strong>\u5e743\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/li>\n
\n<\/u>2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/li>\n
\n<\/u>\u00a02019\u5e744\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/li>\n
\n<\/u>\u65e5\u6642\uff1a2019\u5e745\u67083\u65e5\uff08\u91d1\uff09\u300002:00am \u2013 03:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\nAGENDA: Guest Speaker
\nThe Sweetness of Low Hanging Fruit: GDPR, Brute-Forcing, & Default and Weak Credentials.
\nCyber is putting billions of dollars into research and defense but we’ve failed to detect and fix the basics. Learn new methods of brute-force detection scanning that overcomes the traditional limitations.<\/li>\n<\/ul>\n\n
\n<\/strong>2019<\/strong>\u5e743\u6708\u306f\u7279\u306b\u6d3b\u52d5\u306a\u3057<\/strong><\/strong><\/li>\n
\n<\/u>2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/li>\n
\n<\/u>\u00a02019\u5e743\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/li>\n
\n<\/u>\u65e5\u6642\uff1a2019\u5e743\u670827\u65e5\uff08\u91d1\uff09\u300001:00am \u2013 02:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aJohn Yeoh (CSA)
\n\u6982\u8981\uff1a
\n” OpenCPE: Giving back control of your certifications, continuing education and identity” ; presented by our very own Mr.Kurt.Seifried , who serves as Director of IT\u00a0 at the CSA, Edmonton, Canada.Kurt will present the CSA\u2019s OpenCPE (Open Continuing Professional Education) Service, a blockchain based solution using new and innovative techniques to allow for the secure and controlled sharing of PII (Personally Identifiable Information) data, by the data owners. OpenCPE runs on top of an Open Cybersecurity Ledger (a public blockchain) which allows for the secure sharing and validation of identity, certification, continuing education credits, and project participation claims without having to store any PII within a public blockchain.We will cover how the CSA Labs has implemented Open Cybersecurity Ledgers to manage PII and other forms of sensitive data in ways that are secure, private, GDPR compliant and quantum crypto safe. Learn how Zero Knowledge Proofs and Merkle trees can be used to prove claims about identities, such as possessing a valid certification, without having to store or control the data itself.<\/li>\n<\/ul>\n\n
\n
\n
\n\u65e5\u6642\uff1a2019\u5e741\u670827\u65e5\uff08\u65e5\uff09\u5348\u5f8c2\u664230\u5206\uff5e6\u6642
\n\u4f1a\u5834\uff1a\u4f4f\u53cb\u4e0d\u52d5\u7523\u5927\u5d0e\u30ac\u30fc\u30c7\u30f3\u30bf\u30ef\u30fc
\n* Facebook Developer Circle Osaka\u3068\u30af\u30e9\u30a6\u30c9\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u304a\u3051\u308b\u9023\u643a\u3092\u9032\u3081\u308b\u4e88\u5b9a
\n1-2. Alibaba Cloud InternetChap Japan Kick-off Meeting\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e741\u670829\u65e5\uff08\u706b\uff09\u5348\u5f8c2\u6642\uff5e5\u6642
\n\u4f1a\u5834\uff1a\u30df\u30c3\u30c9\u30bf\u30a6\u30f3\u65e5\u6bd4\u8c37
\n\u30c6\u30fc\u30de\uff1aAlibaba Cloud\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u3064\u3044\u3066
\n\uff0aSTAR\u8a8d\u8a3c\u53d6\u5f97\u4f01\u696d\u3067\u3001CCM\u306b\u6e96\u62e0\u3057\u305f\u7ba1\u7406\u7b56\u3092\u8b1b\u3058\u3066\u3044\u308b
\n\uff0aCSA China\u3068\u9023\u643a\u3057\u306a\u304c\u3089\u3001\u65e5\u672c\u56fd\u5185\u3067\u306e\u958b\u767a\u8005\u30b3\u30df\u30e5\u30cb\u30c6\u30a3\u3068\u306e\u9023\u643a\u3092\u9032\u3081\u308b\u4e88\u5b9a
\n1-3. Japan Azure User Group \u300c\u7b2c16\u56de Tokyo Jazug Night\u300d\uff08\u7d42\u4e86\uff09
\n\u65e5\u6642\uff1a2019\u5e741\u670830\u65e5\uff08\u6728\uff09\u5348\u5f8c7\u6642\uff5e9\u6642
\n\u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e
\n1-4. Japan Azure User Group \u300c\u7b2c17\u56de Tokyo Jazug Night\u300d\uff08\u4e88\u5b9a\uff09
\n\u65e5\u6642\uff1a2019\u5e742\u670827\u65e5\uff08\u6728\uff09\u5348\u5f8c7\u6642\uff5e9\u6642
\n\u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e<\/p>\n
\n2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/p>\n
\n2019\u5e741\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/p>\n
\n2-3-1. OWASP\u3068\u306e\u9023\u643a\u6d3b\u52d5
\nOWASP SAMM V2.0 BETA\u30ea\u30ea\u30fc\u30b9
\n2-3-2. IoT Working Group Call
\n\u65e5\u6642\uff1a2019\u5e741\u670825\u65e5\uff08\u91d1\uff09\u300003:00am \u2013 04:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n\u2022 Kicked off the call with Introductions for new and returning volunteers.
\n\u2022 Discussed latest IoT Security Items of Interest.
\n\u2022 Discussed creation of CSA IoTWG roadmap for 2019 \u2013 2020
\n\u2022 Key areas of interest:
\n\u2022 Lee Szilagyi mentioned zero-trust and Michael Roza briefed the group on various SDP efforts:
\n\u2022 Brian Russell mentioned autonomy as a focus area
\n\u2022 Reviewed Joint Survey between CSA IoTWG and Underwriters Lab (UL)
\n\u2022 Finalizing CSA IoT Controls Matrix
\n\u2022 Discussed RSA 2019
\no Brian to be onsite for CSA IoTWG In-person meeting on Tuesday March 5, 2019
\no Will host WG members to review and update 2019-2020 roadmap<\/p>\n
\n\u65e5\u6642\uff1a2018\u5e7412\u67086\u65e5\uff08\u6728\uff09\u5348\u5f8c7\u6642\uff5e9\u6642
\n\u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e<\/p>\n
\n2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/p>\n
\n2018\u5e7412\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/p>\n
\n2-3-1. OWASP\u3068\u306e\u9023\u643a\u6d3b\u52d5
\nOWASP IoT Top 10 for 2018\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u7248\u30ea\u30ea\u30fc\u30b9
\nhttps:\/\/www.owasp.org\/index.php\/OWASP_Internet_of_Things_Project<\/p>\n
\n\u65e5\u6642\uff1a2018\u5e7411\u670824\u65e5\uff08\u571f\uff09\u5348\u5f8c1\u6642\uff5e6\u6642
\n\u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e
\nLT\uff1a\u300cDevOps\u3068\u30af\u30e9\u30a6\u30c9\u74b0\u5883\u306e\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u300d<\/p>\n
\n\u65e5\u6642\uff1a2018\u5e7412\u67086\u65e5\uff08\u6728\uff09\u5348\u5f8c7\u6642\uff5e9\u6642
\n\u4f1a\u5834\uff1a\u65e5\u672c\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u682a\u5f0f\u4f1a\u793e
\nhttps:\/\/jazug.connpass.com\/event\/109350\/<\/p>\n
\n2018\u5e743\u670814\u65e5\u3092\u3082\u3063\u3066\u3001\u30b0\u30ed\u30fc\u30d0\u30eb\u306eWG\u6d3b\u52d5\u3092\u6b63\u5f0f\u306b\u4f11\u6b62<\/p>\n
\n2018\u5e7411\u6708\u306e\u6d3b\u52d5\u306f\u7279\u306b\u306a\u3057<\/p>\n\n
\n\u65e5\u6642\uff1a2018\u5e7411\u670830\u65e5\uff08\u91d1\uff09\u300003:00am \u2013 04:00am
\n\u5834\u6240\uff1a\u30aa\u30f3\u30e9\u30a4\u30f3(WebEX)
\n\u30b3\u30fc\u30c7\u30a3\u30cd\u30fc\u30bf\u30fc\uff1aHillary Baron (CSA)
\n\u6982\u8981\uff1a
\n\u30fbIoT Framework Document<\/p>\n\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n
\n\u3053\u3061\u3089\u3092\u53c2\u7167<\/a><\/li>\n