DDoSæ»æ察çããŒã«æ¯èŒïŒå°å ¥ã¡ãªããã»éžã³æ¹ã»ãããããµãŒãã¹


ããããWAFã®è³æãå³éžãåãµãŒãã¹ã®æéãã©ã³ãæ©èœãç¹åŸŽããŸãšãŸã£ãè³æãç¡æã§è³æè«æ±å¯èœã§ããè³æè«æ±ç¹å žã®æ¯èŒè¡šã§ã¯ãäŸ¡æ Œã现ããæ©èœãé£æºãµãŒãã¹ãªã©ã代衚çãªWAFãå«ããµãŒãã¹ã培åºæ¯èŒããŠããŸãããã²WAFãæ¯èŒããéãçšè°ãäœæããéã«ãå©çšãã ããã
ç®æ¬¡ãéãã
- DDoSæ»æ察çããŒã«ãšã¯
- DDoSæ»æã®çš®é¡ãšæå£
- DDoSæ»æ察çããŒã«ã®çš®é¡
- ã¯ã©ãŠãåDDoSæ»æ察çããŒã«
- ãªã³ãã¬ãã¹åDDoSæ»æ察çããŒã«
- DDoSæ»æ察çããŒã«ã®å°å ¥ã¡ãªãã
- é«åºŠãªæ»ææ€ç¥ã»é²åŸ¡æ©èœ
- èªåçãªæ»æé®æ
- 24æé365æ¥ã®ç£èŠäœå¶
- å°å ¥ã»éçšã³ã¹ãã®åæž
- DDoSæ»æ察çããŒã«ã®éžã³æ¹
- èªç€Ÿã®è åšãšèŠä»¶ã®åæããã
- èªç€Ÿã®ããŒãºã«åã£ãæ©èœãæ確ã«ãã
- å°å ¥ãšéçšã³ã¹ããèæ ®ãã
- å®çžŸããµããŒãäœå¶ã確èªãã
- ããããã®DDoSæ»æ察çããŒã«
- æ»æé®æãã
- BLUE Sphere
- DDoS Owl
- secuWAF
- DDoSæ»æ察çããŒã«ã®å°å ¥æé
- ã·ã¹ãã ç°å¢ã®æºå
- å°å ¥ãšèšå®
- éçšãšç£èŠ
- DDoSæ»æ察çããŒã«ã®å°å ¥ã»éçšã§å€§äºãªããš
DDoSæ»æ察çããŒã«ãšã¯
DDoSæ»æ察çããŒã«ã¯ããµã€ããŒæ»æã®äžçš®ã§ããDDoSæ»æãããããã¯ãŒã¯ãå®ãããã®ãœãããŠã§ã¢ããµãŒãã¹ã§ãã
DDoSæ»æã¯ãå€æ°ã® ã³ã³ãã¥ãŒã¿ãŒãªã©ããWebãµãŒããŒã«å€§éã®äžæ£ãªãã©ãã£ãã¯ãéãä»ãããµãŒãã¹ãå©çšã§ããªãããæ»ææ¹æ³ã§ãã
ãã®DDoSæ»æããäŒæ¥ã®Webãµã€ããã·ã¹ãã ãå®ããããå°éçãªæ»ææ€ç¥ãšé²åŸ¡æ©èœãåããããŒã«ãäžå¯æ¬ ãšãªããŸããæ»æãäºåã«æ€ç¥ããäžæ£ãªãã©ãã£ãã¯ãèªåçã«ãããã¯ããããšã§ãµãŒãã¹ã®å¯çšæ§ã確ä¿ã§ããŸãã

DDoSæ»æã®çš®é¡ãšæå£
DDoSæ»æã«ã¯ãäž»ã«æ¬¡ã®çš®é¡ããããŸãã
- UDPãã©ããæ»æ:ïŒå€§éã®UDPãã±ãããéä¿¡ããŠããããã¯ãŒã¯åž¯åå¹ ãæ¶è²»ãããµãŒãã¹ãåæ¢ãããæ»æ
- SYNãã©ããæ»æ:ïŒå€§éã®SYNãã±ãããéä¿¡ããŠããµãŒããŒã®åŠçèœåã奪ãããµãŒãã¹ãåæ¢ãããæ»æ
- HTTP GETãã©ããæ»æ:ïŒå€§éã®HTTP GETãªã¯ãšã¹ããéä¿¡ããŠãWebãµãŒããŒãããŠã³ãããæ»æ
- ãã®ä»:ïŒDNSã¯ãšãªãã©ããæ»æãNTPãªãã¬ã¯ã·ã§ã³æ»æãªã©
DDoSæ»æã¯ãæ»æè ããããããããšåŒã°ããå€æ°ã®ç«¯æ«ãæ瞊ããŠå®è¡ãããããšãå€ããåŸæ¥ã®ãã¡ã€ã¢ãŠã©ãŒã«ãªã©ã®ã»ãã¥ãªãã£å¯Ÿçã§ã¯é²ããããªãå ŽåããããŸãã

DDoSæ»æ察çããŒã«ã®çš®é¡
DDoSæ»æ察çããŒã«ã«ã¯ãäž»ã«æ¬¡ã®çš®é¡ããããŸãã
ã¯ã©ãŠãåDDoSæ»æ察çããŒã«
ã¯ã©ãŠããµãŒãã¹ãšããŠæäŸãããDDoS察çããŒã«ã§ããæ»æãæ€ç¥ãããšèªåçã«ã¯ã©ãŠãäžã§å¯Ÿå¿ããæ£åžžãªãã©ãã£ãã¯ã®ã¿ããªã³ãã¬ãã¹ç°å¢ã«æµãä»çµã¿ã§ãã
å°å ¥ãéçšãç°¡åã§ãåæè²»çšãæãããããšããã¡ãªããããããŸãããŸããæ»æèŠæš¡ã®æ¡å€§ã«ãæè»ã«å¯Ÿå¿ã§ãããšããç¹åŸŽããããŸãã
ãªã³ãã¬ãã¹åDDoSæ»æ察çããŒã«
ãªã³ãã¬ãã¹åDDoSæ»æ察çããŒã«ã¯ãèªç€Ÿå ã«èšçœ®ããŠéçšããDDoSæ»æ察çããŒã«ã§ããå°çšã®æ»ææ€ç¥ã»é²åŸ¡è£ 眮ãèšçœ®ãããããé«åºŠãªå¯Ÿçãå¯èœã§ãããŸããã©ã³ãã³ã°ã³ã¹ãããããããéä¿¡é床ãäœäžãã«ãããšããã¡ãªããããããŸãã
äžæ¹ããªã³ãã¬ãã¹åDDoSæ»æ察çããŒã«ã¯ãå°å ¥ãéçšãè€éã§ãåæè²»çšãããããšãããã¡ãªããããããŸãããŸããæ¡åŒµæ§ã«å£ããšããç¹ã«ã泚æãå¿ èŠã§ãã
DDoSæ»æ察çããŒã«ã®å°å ¥ã¡ãªãã
å¹æçãªDDoSæ»æ察çããŒã«ãå°å ¥ããããšã§ã次ã®ãããªã¡ãªãããæåŸ ã§ããŸãã
- é«åºŠãªæ»ææ€ç¥ã»é²åŸ¡æ©èœ
- èªåçãªæ»æé®æ
- 24æé365æ¥ã®ç£èŠäœå¶
- å°å ¥ã»éçšã³ã¹ãã®åæž
é«åºŠãªæ»ææ€ç¥ã»é²åŸ¡æ©èœ
äžè¬çãªãã¡ã€ã¢ãŠã©ãŒã«ãããé«åºŠãªæ»ææ€ç¥ã¢ã«ãŽãªãºã ãæèŒããŠããŸããææ°ã®æ»æãã¿ãŒã³ãèªåæ€ç¥ããäžæ£ãªãã©ãã£ãã¯ã®ã¿ããããã¯ã§ããŸãã
èªåçãªæ»æé®æ
æ»æãæ€ç¥ããéã«äººæãä»ããã«èªåã§å¯ŸåŠã§ããããã被害ã®æå°åã«ã€ãªãããŸãã管çè ãžã®ã¢ã©ãŒãéç¥ãè¡ãããŸãã
24æé365æ¥ã®ç£èŠäœå¶
ãã³ããŒã«ãã£ãŠã¯ã»ãã¥ãªãã£éçšã»ã³ã¿ãŒãã24æé365æ¥ã®ãµããŒããç£èŠãæäŸãããµãŒãã¹ãããããã©ãã«æã®åå察å¿ãå®å¿ã§ãã
å°å ¥ã»éçšã³ã¹ãã®åæž
å°ä»»ã®ã»ãã¥ãªãã£æ åœè ãé 眮ããå¿ èŠããªããªãã»ããæšçåæ»æãžã®å¯Ÿçã³ã¹ããæããããŸããäžå°äŒæ¥ã§ãå°å ¥ãããããªã£ãŠããŸãã
DDoSæ»æ察çããŒã«ã®éžã³æ¹
é©åãªDDoSæ»æ察çããŒã«ãéžã¶ããã®ãã€ã³ãã解説ããŸãã
èªç€Ÿã®è åšãšèŠä»¶ã®åæããã
ãŸãã¯ãèªç€Ÿã§åããå¯èœæ§ã®ããDDoSæ»æã®çš®é¡ãèŠæš¡ãåæããå¿ èŠããããŸããéå»ã®è¢«å®³ç¶æ³ãªã©ãåèã«ããŠãå ·äœçãªè åšãç¹å®ããããšãéèŠã§ãã
ãŸããèªç€Ÿã®ã€ã³ãã©ã«ã©ã®ãããªè åšãååšããã®ããã©ã®ã¬ãã«ã®ä¿è·ãå¿ èŠããæ£ç¢ºã«åæããããšãéèŠã§ããããã«ãããéå°ãªæè³ãé¿ããæãå¹æçãªããŒã«ãéžå®ã§ããŸãã
èªç€Ÿã®ããŒãºã«åã£ãæ©èœãæ確ã«ãã
è åšåæã®çµæãããå¿ èŠãšãªãæ©èœèŠä»¶ãæ€èšããŸããããªã¥ãŒã 察çã«éãã眮ãã®ããã¢ããªã±ãŒã·ã§ã³å±€ã®é²åŸ¡ã«ç¹åããã®ããªã©ãåªå é äœãã€ããŸãããã
äŸãã°ãèªåã¹ã±ãŒãªã³ã°æ©èœããªã¢ã«ã¿ã€ã ã®ãã©ãã£ãã¯åæãæ±ããããããšããããŸãã
å°å ¥ãšéçšã³ã¹ããèæ ®ãã
ã¯ã©ãŠããµãŒãã¹ã®å Žåã¯ãµãã¹ã¯ãªãã·ã§ã³æéãããªã³ãã¬ãã¹ã®å Žåã¯ä¿å®è²»çšãçºçããããšãäžè¬çã§ãã
ã¯ã©ãŠããµãŒãã¹ãªããµãã¹ã¯ãªãã·ã§ã³è²»çšããªã³ãã¬ãã¹ãªãæ©åšèª¿éè²»ãªã©ã5幎çšåºŠã®TCOïŒTotal Cost of OwnershipïŒãè©Šç®ããäºç®å ã«åãŸããã確èªããå¿ èŠããããŸãã
å®çžŸããµããŒãäœå¶ã確èªãã
æäŸæ¥è ã®å®çžŸã顧客ããã®è©äŸ¡ããµããŒãäœå¶ã®å å®åºŠãéèŠãªéžå®åºæºã§ããç¹ã«DDoSæ»æã¯é²åãæ©ããããè¿ éãªå¯Ÿå¿ãå¯èœãªãµããŒãäœå¶ãæã€ããŒã«ãæšå¥šãããŸãã
ããããã®DDoSæ»æ察çããŒã«
ããããã®DDoSæ»æ察çããŒã«ã玹ä»ããŸãã
æ»æé®æãã - æ ªåŒäŒç€Ÿãµã€ããŒã»ãã¥ãªãã£ã¯ã©ãŠã

æ»æé®æããã¯ãWebãµãŒããWebãµã€ããžã®ãµã€ããŒæ»æãé®æããæ å ±æŒãããWebæ¹ããããµãŒãããŠã³ãçã£ãDDosæ»æãªã©ã®è åšããäŒæ¥ãšãŠãŒã¶ãŒãå®ããSaaSåã®ã¯ã©ãŠãWAFãæäŸããŠããŸãã
æçç¿å¶æ¥æ¥ããå°å ¥ãå¯èœã§ãå°ä»»ã®æè¡è ãã¡ã³ããã³ã¹ãå¿ èŠãªããæé¡4äžåããã®äœäŸ¡æ Œã§ã24æé365æ¥ã®ãµããŒããåããããŸããä¿å®ã»éçšã«äžåã®æéãå¿ èŠãšããªãã»ãã¥ãªãã£ãµãŒãã¹ã§ãã
BLUE Sphere - æ ªåŒäŒç€Ÿã¢ã€ãã
BLUE Sphereã¯ãã»ãã¥ãªãã£å¯Ÿçãšãµã€ããŒã»ãã¥ãªãã£ä¿éºãã²ãšã€ã«ãŸãšããWebãµã€ããå æ¬çã«å®ãã¯ã©ãŠããµãŒãã¹ã§ãã
WAFã§ãµã€ããŒæ»æãWebãµã€ãã«å±ãåã«ã·ã£ããã¢ãŠãããªãããDDoSé²åŸ¡ã»æ¹ããæ€ç¥ã»DNSç£èŠã«ããããµãŒããŒããŠã³ãããŒã¿ã®çé£ãªã©ããããããªã¹ã¯ã«å¯Ÿå¿ããŸãããŸããæå®³è³ åãè²»çšæ害ãè£åãããµã€ããŒã»ãã¥ãªãã£ä¿éºãä»åž¯ããŠãããããäžãäžã®å Žåãå®å¿ã§ãã
DDoS Owl - æ ªåŒäŒç€Ÿã¢ã€ãã
DDoS Owlã¯ã倧èŠæš¡ãã€åºç¯å²ãªDDosæ»æã«å¯Ÿå¿ããã¯ã©ãŠãåãµãŒãã¹ã§ããäžçèŠæš¡ã®DDosæ»æãããã©ã³ã¹ããŒãå±€ãã¢ããªã±ãŒã·ã§ã³å±€ãçã£ãåºç¯å²ã®æ»æãªã©ã«å¯Ÿãã倧èŠæš¡ãªåŠçåºç€ã«ããåæ£åŠçã§æ»æãç Žæ£å¯èœã§ãã
å šãããã³ã«ã«é©å¿ããã·ã¹ãã ã®èšå®å€æŽãäžèŠãªã®ã§ãå°ä»»ã®ãšã³ãžãã¢ãããªããŠãå°å ¥ã§ããŸãã155TbpsãŸã§ã®èŠæš¡ã®æ»æã«å¯Ÿå¿ããŠããŸãã
secuWAF - æ ªåŒäŒç€Ÿã»ãã¥ã¢ã€ãããŒã·ã§ã³
secuWAFïŒã»ãã¥ã¯ãïŒã¯ã匷åãªã»ãã¥ãªãã£æ©èœãšèªåã¢ããããŒãã«ãããåžžã«ææ°ã®è åšã«å¯Ÿå¿ããã¯ã©ãŠãWAFã§ãã
WAFåé·æ§æãIPãã©ãã¯ãªã¹ããªã©ãäžè¬çãªã¯ã©ãŠãWAFã§ã¯ãªãã·ã§ã³ãšãªã£ãŠãããããªæ©èœãããã©ã«ãã§å©çšã§ããŸãããŸããWAF以å€ã®ã»ãã¥ãªãã£å¯Ÿçãéžå®ãã©ã³ãæ©èœã«ãã£ãŠã¯èšå®å¯èœãªãããWebãµã€ãã®ã»ãã¥ãªãã£ãããç£ç³ãªãã®ã«ããŸãã

DDoSæ»æ察çããŒã«ã®å°å ¥æé
DDoSæ»æ察çããŒã«ãå°å ¥ããéã«ã¯ã次ã®æé ã§è¡ãå¿ èŠããããŸãã
- ã·ã¹ãã ç°å¢ã®æºå
- å°å ¥ãšèšå®
- éçšãšç£èŠ
ã·ã¹ãã ç°å¢ã®æºå
DDoSæ»æ察çããŒã«ãå°å ¥ããã·ã¹ãã ç°å¢ãæºåããå¿ èŠããããŸããå ·äœçã«ã¯ã次ã®äœæ¥ãå¿ èŠã§ãã
- å¿ èŠãªããŒããŠã§ã¢ã»ãœãããŠãšã¢ã®èª¿éïŒDDoSæ»æ察çããŒã«ã®çš®é¡ã«ãã£ãŠã¯ãå°çšã®ããŒããŠã§ã¢ããœãããŠãšã¢ãå¿ èŠ
- ãããã¯ãŒã¯ã®èšå®:ïŒDDoSæ»æ察çããŒã«ããããã¯ãŒã¯ã«æ¥ç¶ããããã«ããããã¯ãŒã¯ã®èšå®ãå€æŽããå¿ èŠ
å°å ¥ãšèšå®
補åã®å°å ¥ãšã»ããã¢ãããè¡ããŸãããã³ããŒã«ããã€ã³ã¹ããŒã«æ¯æŽãµãŒãã¹ãå©çšãããšãã¹ã ãŒãºã«äœæ¥ãé²ããããŸãã
èšå®é ç®ã¯æ¬¡ã®ãšããã§ãã
- æ»ææ€ç¥ã«ãŒã«/ããªã·ãŒã®èšèš
- æ€ç¥æã®ã¢ã¯ã·ã§ã³èšå®ïŒãããã¯ãTCPãªã»ãããã¢ãã¿ãªã³ã°ãªã©ïŒ
- æ£åžžãã©ãã£ãã¯ã®èªèšŒæ¹æ³
- ã·ã¹ãã éã®é£æºèšå®
- 管çè ã¢ã«ãŠã³ãã®èšå®
ãã¹ãéçšãçµãŠãæ¬çªç°å¢ãžã®é©çšãè¡ããŸãã
éçšãšç£èŠ
å°å ¥åŸã¯ãé©åãªéçšãšç£èŠäœå¶ãæŽããå¿ èŠããããŸãã
- æ»ææ€ç¥ãã°ã®åžžæç£èŠ
- ã»ãã¥ãªãã£ãããã®é©çš
- ããªã·ãŒ/ã«ãŒã«ã®å®æèŠçŽã
- ä»ã®ã»ãã¥ãªãã£å¯Ÿçãšã®é£æºç£èŠ
ãã³ããŒã®ãããŒãžããµãŒãã¹ã掻çšããã°ãå°éã®ã»ãã¥ãªãã£éçšã»ã³ã¿ãŒã«ç£èŠãå§èšã§ããŸãã
DDoSæ»æ察çããŒã«ã®å°å ¥ã»éçšã§å€§äºãªããš
DDoSæ»æã¯æ§ã ãªæå£ã§è¡ããããµã€ããŒæ»æã§ããWebãµã€ããã·ã¹ãã ã®å¯çšæ§ãå®ããäºæ¥ãžã®è¢«å®³ãé²ãããã«ã¯ãé©åãªDDoSæ»æ察çããŒã«ã®å°å ¥ãäžå¯æ¬ ã§ãã
ããŒã«ã®éžå®ã«ãããŠã¯ãèªç€Ÿã®è åšãèŠä»¶ãæ£ããåæããæ©èœé¢ãšè²»çšé¢ããç·åçã«æ€èšããå¿ èŠããããŸããã¯ã©ãŠããšãªã³ãã¬ãã¹ã®2ã€ã®çš®é¡ããããããããã¡ãªããã»ãã¡ãªããããããŸãã
å°å ¥åŸã¯æ£ããèšå®ãšé©åãªéçšã»ç£èŠäœå¶ãæŽåããç·åçãªã»ãã¥ãªãã£å¯Ÿçã®äžç°ãšããŠåãçµãããšã倧åã§ããDDoSæ»æããäŒæ¥ãå®ããããå°éçãªå¯ŸçããŒã«ã®æŽ»çšãããããããŸãã