[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"article:office":3},{"meta":4,"markdown":247,"quiz":248},{"type":5,"articleId":6,"slug":7,"title":8,"titleEn":9,"category":10,"order":11,"seriesLabel":12,"summary":13,"publishedAt":14,"image":15,"tags":16,"vocabulary":20,"quizId":243,"source":244},"article","kjh-k2-h03-office","office","課題Ⅱ 第３編 オフィスセキュリティ","Task II Part 3: Office Security","kojin-joho-hogo\u002Fkadai-2",2030,"課題Ⅱ 第３編","Covers physical security for offices in depth: defense in depth, security zoning (4 zone levels), entry\u002Fexit management (authentication methods, anti-tailgating, visitor management), physical safety management measures per guideline 10-5 (zone management, theft prevention, transport leakage prevention, data deletion\u002Fdisposal), surveillance (CCTV, log monitoring), disaster countermeasures (earthquake, fire, flood, power outage), BCP (RPO, RTO, 3-2-1 backup rule, DR sites), and clear desk\u002Fclear screen policies (ISO 27001).","2026-04-26T00:00:00Z","https:\u002F\u002Fimages.yamiyomi.com\u002Fkjh-k2-h03-office.png",[17,18,19],"exam:個人情報保護士","topic:オフィスセキュリティ","topic:物理的安全管理",[21,26,31,35,39,43,47,51,55,59,63,67,71,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223,227,231,235,239],{"word":22,"reading":23,"meaning":24,"level":25},"物理的","ぶつりてき","physical","N2",{"word":27,"reading":28,"meaning":29,"level":30},"多層防御","たそうぼうぎょ","defense in depth","N1",{"word":32,"reading":33,"meaning":34,"level":30},"外周","がいしゅう","perimeter",{"word":36,"reading":37,"meaning":38,"level":30},"入退室","にゅうたいしつ","entry and exit (of a room)",{"word":40,"reading":41,"meaning":42,"level":30},"施錠","せじょう","locking",{"word":44,"reading":45,"meaning":46,"level":25},"監視","かんし","surveillance, monitoring",{"word":48,"reading":49,"meaning":50,"level":25},"侵入","しんにゅう","intrusion, trespassing",{"word":52,"reading":53,"meaning":54,"level":25},"区域","くいき","zone, area, district",{"word":56,"reading":57,"meaning":58,"level":30},"生体認証","せいたいにんしょう","biometric authentication",{"word":60,"reading":61,"meaning":62,"level":25},"指紋","しもん","fingerprint",{"word":64,"reading":65,"meaning":66,"level":30},"虹彩","こうさい","iris",{"word":68,"reading":69,"meaning":70,"level":30},"静脈","じょうみゃく","vein",{"word":72,"reading":73,"meaning":74,"level":30},"共連れ","ともづれ","tailgating",{"word":76,"reading":77,"meaning":78,"level":25},"来訪者","らいほうしゃ","visitor",{"word":80,"reading":81,"meaning":82,"level":30},"入館証","にゅうかんしょう","visitor badge, entry pass",{"word":84,"reading":85,"meaning":86,"level":30},"記帳","きちょう","registration, signing in",{"word":88,"reading":89,"meaning":90,"level":25},"重要度","じゅうようど","level of importance",{"word":92,"reading":93,"meaning":94,"level":25},"段階的","だんかいてき","gradual, tiered",{"word":96,"reading":97,"meaning":98,"level":25},"措置","そち","measure, step",{"word":100,"reading":101,"meaning":102,"level":25},"盗難","とうなん","theft",{"word":104,"reading":105,"meaning":106,"level":30},"電子媒体","でんしばいたい","electronic medium",{"word":108,"reading":109,"meaning":110,"level":30},"漏えい","ろうえい","leakage, disclosure",{"word":112,"reading":113,"meaning":114,"level":25},"暗号化","あんごうか","encryption",{"word":116,"reading":117,"meaning":118,"level":25},"削除","さくじょ","deletion",{"word":120,"reading":121,"meaning":122,"level":25},"廃棄","はいき","disposal, destruction",{"word":124,"reading":125,"meaning":126,"level":25},"消去","しょうきょ","erasure",{"word":128,"reading":129,"meaning":130,"level":30},"磁気消去","じきしょうきょ","degaussing, magnetic erasure",{"word":132,"reading":133,"meaning":134,"level":30},"溶解処理","ようかいしょり","dissolution processing",{"word":136,"reading":137,"meaning":138,"level":30},"管理台帳","かんりだいちょう","management ledger",{"word":140,"reading":141,"meaning":142,"level":25},"災害","さいがい","disaster",{"word":144,"reading":145,"meaning":146,"level":25},"地震","じしん","earthquake",{"word":148,"reading":149,"meaning":150,"level":25},"火災","かさい","fire (disaster)",{"word":152,"reading":153,"meaning":154,"level":25},"水害","すいがい","flood damage",{"word":156,"reading":157,"meaning":158,"level":25},"停電","ていでん","power outage",{"word":160,"reading":161,"meaning":162,"level":30},"免震","めんしん","seismic isolation",{"word":164,"reading":165,"meaning":166,"level":30},"耐震","たいしん","earthquake-resistant",{"word":168,"reading":169,"meaning":170,"level":25},"転倒","てんとう","toppling, falling over",{"word":172,"reading":173,"meaning":174,"level":30},"不活性ガス","ふかっせいガス","inert gas",{"word":176,"reading":177,"meaning":178,"level":30},"防火区画","ぼうかくかく","fire compartment",{"word":180,"reading":181,"meaning":182,"level":30},"瞬断","しゅんだん","momentary power interruption",{"word":184,"reading":185,"meaning":186,"level":30},"冗長化","じょうちょうか","redundancy",{"word":188,"reading":189,"meaning":190,"level":30},"事業継続計画","じぎょうけいぞくけいかく","business continuity plan (BCP)",{"word":192,"reading":193,"meaning":194,"level":30},"復旧","ふっきゅう","recovery, restoration",{"word":196,"reading":197,"meaning":198,"level":25},"遠隔地","えんかくち","remote location",{"word":200,"reading":201,"meaning":202,"level":30},"策定","さくてい","formulation",{"word":204,"reading":205,"meaning":206,"level":30},"離席","りせき","leaving one's seat",{"word":208,"reading":209,"meaning":210,"level":30},"附属書","ふぞくしょ","annex, appendix",{"word":212,"reading":213,"meaning":214,"level":25},"収納","しゅうのう","storage, housing",{"word":216,"reading":217,"meaning":218,"level":25},"放置","ほうち","leaving unattended",{"word":220,"reading":221,"meaning":222,"level":25},"総合的","そうごうてき","comprehensive",{"word":224,"reading":225,"meaning":226,"level":25},"不可欠","ふかけつ","indispensable",{"word":228,"reading":229,"meaning":230,"level":25},"設備","せつび","equipment, facilities",{"word":232,"reading":233,"meaning":234,"level":25},"保管","ほかん","storage, safekeeping",{"word":236,"reading":237,"meaning":238,"level":30},"混同","こんどう","confusion, conflation",{"word":240,"reading":241,"meaning":242,"level":30},"頻出","ひんしゅつ","frequently appearing","kjh-k2-h03-quiz",{"name":245,"url":246},"個人情報保護士試験対策","https:\u002F\u002Fwww.joho-gakushu.or.jp\u002Fpiip\u002F","\n::para\n[個人]{こじん:individual:N2}[情報]{じょうほう:information:N3}を[保護]{ほご:protection:N1}するためには、[技術的]{ぎじゅつてき:technical:N2}な[対策]{たいさく:countermeasure:N1}だけでなく、[物理的]{ぶつりてき:physical:N4}なセキュリティ[対策]{たいさく:countermeasure:N1}も[不可欠]{ふかけつ:indispensable:N3}です。オフィスセキュリティとは、[建物]{たてもの:building:N4}や[施設]{しせつ:facility:N1}への[不正]{ふせい:unauthorized:N4}な[侵入]{しんにゅう:intrusion:N1}を[防ぎ]{ふせぎ:to prevent:N2}、[情報]{じょうほう:information:N3}[資産]{しさん:asset:N3}を[物理的]{ぶつりてき:physical:N4}に[守る]{まもる:to protect:N3}ための[取組み]{とりくみ:initiative:N3}を[指します]{さします:refers to:N3}。[基本]{きほん:basic:N1}[原則]{げんそく:principle:N2}は[多層]{たそう:multi-layer:N2}[防御]{ぼうぎょ:defense:N2}（defense in depth）であり、[建物]{たてもの:building:N4}の[外周]{がいしゅう:perimeter:N2}からフロア、[部屋]{へや:room:N3}、キャビネット、[端末]{たんまつ:terminal:N1}[機器]{きき:device:N1}へと[段階的]{だんかいてき:gradual, tiered:N2}に[防御]{ぼうぎょ:defense:N2}[層]{そう:layer:N2}を[設け]{もうけ:to establish:N2}、[一]{ひと:one:N5}つの[層]{そう:layer:N2}が[突破]{とっぱ:breakthrough:N3}されても[次]{つぎ:next:N3}の[層]{そう:layer:N2}で[食い止める]{くいとめる:to hold back:N4}[考え方]{かんがえかた:way of thinking:N4}です。\n\n#en\nTo protect personal information, not only technical countermeasures but also physical security measures are indispensable. Office security refers to initiatives to physically protect information assets by preventing unauthorized intrusion into buildings and facilities. The basic principle is defense in depth: establishing layers of defense progressively from the building perimeter to the floor, room, cabinet, and terminal device, so that even if one layer is breached, the next layer can stop the threat.\n::\n\n::heading\nセキュリティゾーニング\n\n#en\nSecurity Zoning\n::\n\n::para\nセキュリティゾーニングとは、オフィス[内]{ない:within:N3}を[重要度]{じゅうようど:level of importance:N3}に[応じて]{おうじて:according to:N1}[区域]{くいき:zone, area:N2}に[分け]{わけ:to divide:N5}、[各]{かく:each:N2}[区域]{くいき:zone, area:N2}に[異なる]{ことなる:different:N1}[入室]{にゅうしつ:room entry:N4}[制限]{せいげん:restriction:N3}と[監視]{かんし:surveillance:N1}[水準]{すいじゅん:level:N2}を[設定]{せってい:setting:N2}する[手法]{しゅほう:method:N3}です。[一般]{いっぱん:general:N2}[区域]{くいき:zone:N2}（パブリックエリア）は[受付]{うけつけ:reception:N3}やロビーなど、[来訪者]{らいほうしゃ:visitor:N3}が[立ち入れる]{たちいれる:to enter:N4}[範囲]{はんい:scope:N1}です。[業務]{ぎょうむ:business:N3}[区域]{くいき:zone:N2}は[社員]{しゃいん:employee:N4}のみが[利用]{りよう:use:N3}する[一般]{いっぱん:general:N2}[執務]{しつむ:office work:N1}エリアです。セキュリティ[区域]{くいき:zone:N2}はサーバールームや[書類]{しょるい:document:N3}[保管]{ほかん:storage:N1}[庫]{こ:storehouse:N2}など、[限られた]{かぎられた:limited:N3}[担当者]{たんとうしゃ:person in charge:N2}のみが[入室]{にゅうしつ:room entry:N4}できる[区域]{くいき:zone:N2}です。[高]{こう:high:N5}セキュリティ[区域]{くいき:zone:N2}はデータセンターや[金庫]{きんこ:vault:N2}[室]{しつ:room:N4}など、[最]{もっと:most:N3}も[厳格]{げんかく:strict:N1}な[管理]{かんり:management:N2}が[求められる]{もとめられる:required:N3}[区域]{くいき:zone:N2}です。[外周]{がいしゅう:perimeter:N2}から[内側]{うちがわ:inside:N3}に[進む]{すすむ:to advance:N3}ほど[制限]{せいげん:restriction:N3}が[厳しく]{きびしく:strict:N1}なる[設計]{せっけい:design:N2}が[基本]{きほん:basic:N1}です。\n\n#en\nSecurity zoning is a method of dividing the office into zones according to their level of importance and setting different entry restrictions and surveillance levels for each zone. The general area (public area) is the scope visitors can enter, such as the reception and lobby. The work area is the general office area used only by employees. The secure area is a zone only designated personnel can enter, such as server rooms and document storage rooms. The high-security area is a zone requiring the strictest management, such as data centers and vaults. The basic design is that restrictions become stricter the further inside from the perimeter you go.\n::\n\n::heading\n[入退室]{にゅうたいしつ:entry and exit:N3}[管理]{かんり:management:N2}\n\n#en\nEntry\u002FExit Management\n::\n\n::para\n[入退室]{にゅうたいしつ:entry and exit:N3}[管理]{かんり:management:N2}では、[許可]{きょか:authorization:N3}された[人物]{じんぶつ:person:N4}のみが[該当]{がいとう:applicable:N1}する[区域]{くいき:zone:N2}に[立ち入れる]{たちいれる:to enter:N4}ようにします。[主]{おも:main:N4}な[認証]{にんしょう:authentication:N1}[方法]{ほうほう:method:N3}として、ICカード、[生体]{せいたい:biometric:N4}[認証]{にんしょう:authentication:N1}（[指紋]{しもん:fingerprint:N1}、[虹彩]{こうさい:iris:N1}、[静脈]{じょうみゃく:vein:N1}）、[暗証]{あんしょう:secret:N1}[番号]{ばんごう:number:N3}、[物理]{ぶつり:physical:N4}[鍵]{かぎ:key:N1}があります。セキュリティ[区域]{くいき:zone:N2}[以上]{いじょう:or above:N4}では、[二]{に:two:N5}[要素]{ようそ:factor:N1}[認証]{にんしょう:authentication:N1}（[例]{れい:example:N3}：ICカード＋[暗証]{あんしょう:secret:N1}[番号]{ばんごう:number:N3}）を[組み合わせる]{くみあわせる:to combine:N3}ことが[望ましい]{のぞましい:desirable:N3}とされています。\n\n#en\nIn entry and exit management, only authorized persons are allowed to enter the applicable zone. Main authentication methods include IC cards, biometric authentication (fingerprint, iris, vein), PIN codes, and physical keys. For secure areas and above, combining two-factor authentication (e.g., IC card + PIN code) is considered desirable.\n::\n\n::para\n[共連れ]{ともづれ:tailgating:N3}（テールゲーティング）とは、[認証]{にんしょう:authentication:N1}を[受けた]{うけた:received:N3}[人]{ひと:person:N5}に[続いて]{つづいて:following:N3}[未]{み:not yet:N3}[認証]{にんしょう:authentication:N1}の[人]{ひと:person:N5}が[入室]{にゅうしつ:room entry:N4}することです。[防止]{ぼうし:prevention:N2}[策]{さく:measure:N1}として、アンチパスバック（[入室]{にゅうしつ:room entry:N4}[記録]{きろく:record:N2}がないと[退室]{たいしつ:exit:N3}できない[仕組み]{しくみ:mechanism:N3}）、マントラップ（[二重]{にじゅう:double:N4}[扉]{とびら:door:N1}の[小]{しょう:small:N5}[部屋]{べや:room:N3}で[一人]{ひとり:one person:N5}ずつ[認証]{にんしょう:authentication:N1}）、[回転]{かいてん:rotation:N3}ドア、セキュリティゲートなどがあります。[高]{こう:high:N5}セキュリティ[区域]{くいき:zone:N2}ではマントラップが[特に]{とくに:particularly:N4}[有効]{ゆうこう:effective:N2}です。\n\n#en\nTailgating means an unauthenticated person enters a room by following someone who has been authenticated. Prevention measures include anti-passback (a mechanism where you cannot exit without an entry record), mantraps (authenticating one person at a time in a small room with double doors), revolving doors, and security gates. For high-security areas, mantraps are particularly effective.\n::\n\n::para\n[来訪者]{らいほうしゃ:visitor:N3}[管理]{かんり:management:N2}も[入退室]{にゅうたいしつ:entry and exit:N3}[管理]{かんり:management:N2}の[重要]{じゅうよう:important:N3}な[要素]{ようそ:element:N1}です。[来訪者]{らいほうしゃ:visitor:N3}は[受付]{うけつけ:reception:N3}で[記帳]{きちょう:registration:N1}し、[入館証]{にゅうかんしょう:visitor badge:N1}を[発行]{はっこう:issuance:N4}[受け]{うけ:receive:N3}ます。[社内]{しゃない:within the company:N3}では[必ず]{かならず:necessarily:N3}[社員]{しゃいん:employee:N4}がエスコートし、[単独]{たんどく:alone:N1}での[移動]{いどう:movement:N2}は[認めません]{みとめません:not allowed:N3}。[退館]{たいかん:leaving the building:N3}[時]{じ:time:N5}には[入館証]{にゅうかんしょう:visitor badge:N1}を[返却]{へんきゃく:return:N1}させ、[退館]{たいかん:leaving the building:N3}を[確認]{かくにん:confirmation:N3}します。[入退室]{にゅうたいしつ:entry and exit:N3}[記録]{きろく:record:N2}は[一定]{いってい:fixed:N3}[期間]{きかん:period:N3}[保管]{ほかん:storage:N1}し、[定期的]{ていきてき:periodic:N3}に[確認]{かくにん:confirmation:N3}・[監査]{かんさ:audit:N1}します。\n\n#en\nVisitor management is also an important element of entry and exit management. Visitors register at reception and receive a visitor badge. Inside the company, an employee must always escort them; unaccompanied movement is not allowed. When leaving, visitors return their badge and their departure is confirmed. Entry and exit records are stored for a fixed period and periodically reviewed and audited.\n::\n\n::callout\n[試験]{しけん:exam:N4}のポイント：[共連れ]{ともづれ:tailgating:N3}[対策]{たいさく:countermeasure:N1}は[鉄板]{てっぱん:classic:N2}[問題]{もんだい:question:N4}です。アンチパスバック＝[入室]{にゅうしつ:entry:N4}ログがないと[退室]{たいしつ:exit:N3}[不可]{ふか:not allowed:N4}（[共連れ]{ともづれ:tailgating:N3}を[事後]{じご:after the fact:N4}に[検出]{けんしゅつ:detect:N1}）。マントラップ＝[物理的]{ぶつりてき:physically:N4}に[一人]{ひとり:one person:N5}しか[入れない]{はいれない:can enter:N5}（[事前]{じぜん:in advance:N4}に[防止]{ぼうし:prevent:N2}）。「セキュリティ[区域]{くいき:zone:N2}[以上]{いじょう:or above:N4}では[二]{に:two:N5}[要素]{ようそ:factor:N1}[認証]{にんしょう:authentication:N1}が[望ましい]{のぞましい:desirable:N3}」という[点]{てん:point:N3}と、[来訪者]{らいほうしゃ:visitor:N3}の[単独]{たんどく:unescorted:N1}[行動]{こうどう:movement:N4}は[禁止]{きんし:prohibited:N2}（[社員]{しゃいん:employee:N4}が[必ず]{かならず:always:N3}エスコート）も[頻出]{ひんしゅつ:frequently appearing:N1}です。\n\n#en\nExam point: Tailgating countermeasures are a classic question. Anti-passback = exit not allowed without an entry log (detects tailgating after the fact). Mantrap = physically only one person can enter (prevents in advance). Frequently appearing points: \"two-factor authentication is desirable for secure areas and above,\" and \"visitors must not move unescorted (an employee must always escort them).\"\n::\n\n::heading\n[物理的]{ぶつりてき:physical:N4}[安全]{あんぜん:safety:N3}[管理]{かんり:management:N2}[措置]{そち:measure:N1}の[実施]{じっし:implementation:N1}[項目]{こうもく:item:N1}（ガイドライン[通則]{つうそく:general rules:N2}[編]{へん:part:N2}10-5）\n\n#en\nImplementation Items for Physical Safety Management Measures (Guideline General Rules Part 10-5)\n::\n\n::para\n[個人]{こじん:individual:N2}[情報]{じょうほう:information:N3}[保護法]{ほごほう:protection law:N1}のガイドライン[通則]{つうそく:general rules:N2}[編]{へん:part:N2}10-5では、[物理的]{ぶつりてき:physical:N4}[安全]{あんぜん:safety:N3}[管理]{かんり:management:N2}[措置]{そち:measure:N1}として[四]{よん:four:N5}つの[実施]{じっし:implementation:N1}[項目]{こうもく:item:N1}を[規定]{きてい:stipulate:N3}しています。(a) [個人]{こじん:individual:N2}データを[取り扱う]{とりあつかう:to handle:N1}[区域]{くいき:zone:N2}の[管理]{かんり:management:N2}：[管理]{かんり:management:N2}[区域]{くいき:zone:N2}（サーバールーム[等]{とう:etc.:N3}）では[入退室]{にゅうたいしつ:entry and exit:N3}[管理]{かんり:management:N2}、[施錠]{せじょう:locking:N1}、[持込み]{もちこみ:bringing in:N3}[制限]{せいげん:restriction:N3}を[実施]{じっし:implement:N1}します。[取扱]{とりあつかい:handling:N1}[区域]{くいき:zone:N2}（[一般]{いっぱん:general:N2}オフィス）ではのぞき[見]{み:looking:N5}[防止]{ぼうし:prevention:N2}のための[座席]{ざせき:seat:N3}[配置]{はいち:arrangement:N3}、パーティションの[設置]{せっち:installation:N2}などを[行います]{おこないます:to carry out:N5}。\n\n#en\nThe guidelines under the Act on Protection of Personal Information (General Rules Part 10-5) stipulate four implementation items as physical safety management measures. (a) Management of zones handling personal data: In management zones (server rooms, etc.), entry\u002Fexit management, locking, and restrictions on items brought in are implemented. In handling zones (general offices), measures such as seat arrangement to prevent shoulder surfing and installation of partitions are carried out.\n::\n\n::callout\n[試験]{しけん:examination:N4}では[管理]{かんり:management:N2}[区域]{くいき:zone:N2}と[取扱]{とりあつかい:handling:N1}[区域]{くいき:zone:N2}の[違い]{ちがい:difference:N3}が[問われ]{とわれ:questioned:N4}ます。[管理]{かんり:management:N2}[区域]{くいき:zone:N2}＝サーバールーム[等]{とう:etc.:N3}で[入退室]{にゅうたいしつ:entry and exit:N3}[管理]{かんり:management:N2}が[必須]{ひっす:essential:N1}。[取扱]{とりあつかい:handling:N1}[区域]{くいき:zone:N2}＝[一般]{いっぱん:general:N2}オフィスで、のぞき[見]{み:looking:N5}[防止]{ぼうし:prevention:N2}や[座席]{ざせき:seat:N3}[配置]{はいち:arrangement:N3}が[対策]{たいさく:countermeasure:N1}の[中心]{ちゅうしん:center:N4}。[両者]{りょうしゃ:both:N3}に[求められる]{もとめられる:required:N3}[措置]{そち:measure:N1}の[違い]{ちがい:difference:N3}を[正確]{せいかく:accurate:N3}に[押さえ]{おさえ:to grasp:N3}ましょう。\n\n#en\nThe exam tests the distinction between management zones and handling zones. Management zone = server rooms, etc., where entry\u002Fexit management is mandatory. Handling zone = general office, where the focus is on measures like preventing shoulder surfing and seat arrangement. Make sure to accurately grasp the different measures required for each.\n::\n\n::para\n(b) [機器]{きき:equipment:N1}[及び]{および:and:N1}[電子]{でんし:electronic:N5}[媒体]{ばいたい:medium:N1}[等]{とう:etc.:N3}の[盗難]{とうなん:theft:N3}[等]{とう:etc.:N3}の[防止]{ぼうし:prevention:N2}：ワイヤーロック（ケンジントンロック）でノートPCを[固定]{こてい:fix:N2}し、[施錠]{せじょう:locking:N1}できるキャビネットに[電子]{でんし:electronic:N5}[媒体]{ばいたい:medium:N1}を[保管]{ほかん:storage:N1}します。サーバーラックは[施錠]{せじょう:locking:N1}し、[携帯]{けいたい:portable:N1}[機器]{きき:device:N1}は[管理]{かんり:management:N2}[台帳]{だいちょう:ledger:N1}で[貸出]{かしだし:lending:N4}・[返却]{へんきゃく:return:N1}を[記録]{きろく:record:N2}します。\n\n#en\n(b) Prevention of theft of equipment and electronic media: Notebook PCs are secured with wire locks (Kensington locks) and electronic media are stored in lockable cabinets. Server racks are locked, and portable devices are tracked with a management ledger recording lending and return.\n::\n\n::para\n(c) [電子]{でんし:electronic:N5}[媒体]{ばいたい:medium:N1}[等]{とう:etc.:N3}を[持ち運ぶ]{もちはこぶ:to carry:N4}[場合]{ばあい:case:N3}の[漏えい]{ろうえい:leakage:N1}[等]{とう:etc.:N3}の[防止]{ぼうし:prevention:N2}：USBメモリやノートPCは[暗号化]{あんごうか:encryption:N3}し、パスワード[保護]{ほご:protection:N1}を[施します]{ほどこします:to apply:N1}。[持出し]{もちだし:taking out:N4}には[事前]{じぜん:prior:N4}の[申請]{しんせい:application:N1}・[承認]{しょうにん:approval:N2}[手続き]{てつづき:procedure:N3}が[必要]{ひつよう:necessary:N3}であり、[誰]{だれ:who:N3}が[何]{なに:what:N5}を[持ち出した]{もちだした:took out:N4}かの[追跡]{ついせき:tracking:N2}[可能性]{かのうせい:possibility:N3}を[確保]{かくほ:securing:N1}します。\n\n#en\n(c) Prevention of leakage when carrying electronic media: USB drives and notebook PCs are encrypted and password-protected. Taking items out requires a prior application and approval procedure, and traceability of who took what is ensured.\n::\n\n::para\n(d) [個人]{こじん:individual:N2}データの[削除]{さくじょ:deletion:N1}[及び]{および:and:N1}[機器]{きき:equipment:N1}、[電子]{でんし:electronic:N5}[媒体]{ばいたい:medium:N1}[等]{とう:etc.:N3}の[廃棄]{はいき:disposal:N1}：データ[消去]{しょうきょ:erasure:N3}には[専用]{せんよう:dedicated:N2}ソフトによる[上書き]{うわがき:overwriting:N5}[消去]{しょうきょ:erasure:N3}、[磁気]{じき:magnetic:N1}[消去]{しょうきょ:erasure:N3}（デガウス）、[物理]{ぶつり:physical:N4}[破壊]{はかい:destruction:N1}があります。[廃棄]{はいき:disposal:N1}[後]{ご:after:N5}は[廃棄]{はいき:disposal:N1}[証明書]{しょうめいしょ:certificate:N1}を[取得]{しゅとく:acquisition:N3}し、[記録]{きろく:record:N2}を[残します]{のこします:to leave:N3}。[紙]{かみ:paper:N4}[文書]{ぶんしょ:document:N4}はクロスカット[以上]{いじょう:or above:N4}のシュレッダーか、[溶解]{ようかい:dissolution:N2}[処理]{しょり:processing:N3}で[確実]{かくじつ:reliably:N3}に[廃棄]{はいき:dispose:N1}します。\n\n#en\n(d) Deletion of personal data and disposal of equipment\u002Felectronic media: Data erasure methods include overwriting with dedicated software, magnetic erasure (degaussing), and physical destruction. After disposal, a disposal certificate is obtained and records are kept. Paper documents are reliably disposed of using cross-cut shredders or higher, or dissolution processing.\n::\n\n::heading\n[監視]{かんし:surveillance:N1}\n\n#en\nSurveillance\n::\n\n::para\n[監視]{かんし:surveillance:N1}カメラ（CCTV）は[出入口]{でいりぐち:entrance\u002Fexit:N4}、[廊下]{ろうか:corridor:N1}、[重要]{じゅうよう:important:N3}[区域]{くいき:zone:N2}に[設置]{せっち:installation:N2}し、[映像]{えいぞう:footage:N2}は[一定]{いってい:fixed:N3}[期間]{きかん:period:N3}（[通常]{つうじょう:normally:N3}1〜3か[月]{げつ:month:N5}）[保存]{ほぞん:storage:N1}します。ただし、[従業員]{じゅうぎょういん:employee:N1}のプライバシーとの[両立]{りょうりつ:compatibility:N3}が[必要]{ひつよう:necessary:N3}であり、[設置]{せっち:installation:N2}[目的]{もくてき:purpose:N4}や[撮影]{さつえい:shooting:N1}[範囲]{はんい:scope:N1}を[明示]{めいじ:explicit:N3}することが[望まれ]{のぞまれ:desired:N3}ます。[入退室]{にゅうたいしつ:entry and exit:N3}ログの[監視]{かんし:surveillance:N1}では、[深夜]{しんや:late night:N3}・[休日]{きゅうじつ:holiday:N5}の[不審]{ふしん:suspicious:N1}な[入室]{にゅうしつ:room entry:N4}パターンや[頻繁]{ひんぱん:frequent:N1}な[認証]{にんしょう:authentication:N1}[失敗]{しっぱい:failure:N3}を[検知]{けんち:detection:N1}し、アラートを[発する]{はっする:to issue:N4}[仕組み]{しくみ:mechanism:N3}を[整備]{せいび:maintenance:N1}します。\n\n#en\nSurveillance cameras (CCTV) are installed at entrances\u002Fexits, corridors, and important areas, and footage is stored for a fixed period (typically 1-3 months). However, compatibility with employee privacy is necessary, and it is desirable to clearly state the installation purpose and recording scope. For monitoring entry\u002Fexit logs, a mechanism is established to detect suspicious entry patterns during late night\u002Fholidays and frequent authentication failures, and issue alerts.\n::\n\n::heading\n[災害]{さいがい:disaster:N1}[対策]{たいさく:countermeasure:N1}\n\n#en\nDisaster Countermeasures\n::\n\n::para\n[地震]{じしん:earthquake:N2}[対策]{たいさく:countermeasure:N1}として、サーバーラックには[耐震]{たいしん:earthquake-resistant:N1}ラックや[免震]{めんしん:seismic isolation:N1}[装置]{そうち:device:N2}を[導入]{どうにゅう:introduce:N2}し、[転倒]{てんとう:toppling:N3}[防止]{ぼうし:prevention:N2}[措置]{そち:measure:N1}を[講じ]{こうじ:take:N2}ます。[重要]{じゅうよう:important:N3}なシステムは[二重化]{にじゅうか:redundancy:N3}（[冗長]{じょうちょう:redundant:N1}[構成]{こうせい:configuration:N3}）し、[一方]{いっぽう:one side:N4}が[損壊]{そんかい:damage:N1}しても[他方]{たほう:the other:N3}で[継続]{けいぞく:continuation:N1}できるようにします。\n\n#en\nFor earthquake countermeasures, earthquake-resistant racks and seismic isolation devices are introduced for server racks, and anti-toppling measures are taken. Critical systems are made redundant so that if one is damaged, operations can continue with the other.\n::\n\n::para\n[火災]{かさい:fire:N1}[対策]{たいさく:countermeasure:N1}として、サーバールームには[不活性]{ふかっせい:inert:N3}ガス[消火]{しょうか:fire extinguishing:N3}[設備]{せつび:equipment:N2}（[水]{みず:water:N5}を[使わない]{つかわない:not using:N4}[消火]{しょうか:fire extinguishing:N3}[方式]{ほうしき:method:N3}）を[設置]{せっち:install:N2}します。[一般]{いっぱん:general:N2}[区域]{くいき:zone:N2}にはスプリンクラー、[防火]{ぼうか:fire prevention:N2}[区画]{くかく:section:N2}、[火災]{かさい:fire:N1}[報知器]{ほうちき:alarm:N1}を[設置]{せっち:install:N2}します。[水害]{すいがい:flood:N3}[対策]{たいさく:countermeasure:N1}としては、サーバー[機器]{きき:equipment:N1}を[上]{うえ:upper:N5}[階]{かい:floor:N2}に[設置]{せっち:install:N2}し、[防水]{ぼうすい:waterproof:N2}[対策]{たいさく:countermeasure:N1}を[施します]{ほどこします:to apply:N1}。[停電]{ていでん:power outage:N2}[対策]{たいさく:countermeasure:N1}として、UPS（[無]{む:no:N4}[停電]{ていでん:power outage:N2}[電源]{でんげん:power supply:N1}[装置]{そうち:device:N2}）で[瞬断]{しゅんだん:momentary interruption:N1}を[防ぎ]{ふせぎ:to prevent:N2}、[自家]{じか:private:N4}[発電]{はつでん:power generation:N4}[設備]{せつび:equipment:N2}で[長時間]{ちょうじかん:long time:N5}の[停電]{ていでん:power outage:N2}に[備えます]{そなえます:to prepare:N3}。\n\n#en\nFor fire countermeasures, inert gas fire suppression systems (which do not use water) are installed in server rooms. In general areas, sprinklers, fire compartments, and fire alarms are installed. For flood countermeasures, server equipment is placed on upper floors with waterproofing measures applied. For power outage countermeasures, UPS (uninterruptible power supply) devices prevent momentary interruptions, and private power generation equipment prepares for prolonged outages.\n::\n\n::heading\nBCP（[事業]{じぎょう:business:N4}[継続]{けいぞく:continuation:N1}[計画]{けいかく:plan:N4}）\n\n#en\nBCP (Business Continuity Plan)\n::\n\n::para\nBCP（[事業]{じぎょう:business:N4}[継続]{けいぞく:continuation:N1}[計画]{けいかく:plan:N4}）は、[大規模]{だいきぼ:large-scale:N1}な[災害]{さいがい:disaster:N1}や[障害]{しょうがい:failure:N1}が[発生]{はっせい:occurrence:N4}した[場合]{ばあい:case:N3}でも[事業]{じぎょう:business:N4}を[中断]{ちゅうだん:interruption:N3}させず、あるいは[速やかに]{すみやかに:promptly:N3}[復旧]{ふっきゅう:recovery:N2}するための[計画]{けいかく:plan:N4}です。[重要]{じゅうよう:important:N3}な[指標]{しひょう:indicator:N1}として、RPO（Recovery Point Objective：[目標]{もくひょう:target:N1}[復旧]{ふっきゅう:recovery:N2}[時点]{じてん:point in time:N3}）は「どの[時点]{じてん:point in time:N3}のデータまで[戻す]{もどす:to restore:N3}か」を[定め]{さだめ:to determine:N3}、RTO（Recovery Time Objective：[目標]{もくひょう:target:N1}[復旧]{ふっきゅう:recovery:N2}[時間]{じかん:time:N5}）は「どれくらいの[時間]{じかん:time:N5}で[復旧]{ふっきゅう:recovery:N2}するか」を[定めます]{さだめます:to determine:N3}。\n\n#en\nBCP (Business Continuity Plan) is a plan to avoid interrupting business or to recover promptly even when large-scale disasters or failures occur. As important indicators, RPO (Recovery Point Objective) determines \"to what point in time data should be restored,\" and RTO (Recovery Time Objective) determines \"how long recovery should take.\"\n::\n\n::callout\nRPOとRTOの[定義]{ていぎ:definition:N1}は[試験]{しけん:examination:N4}[頻出]{ひんしゅつ:frequently appearing:N1}です。RPO＝[復旧]{ふっきゅう:recovery:N2}すべき「[時点]{じてん:point in time:N3}」（データの[巻き戻し]{まきもどし:rewind:N2}[先]{さき:destination:N5}）、RTO＝[復旧]{ふっきゅう:recovery:N2}までの「[時間]{じかん:time:N5}」。[混同]{こんどう:confusion:N2}しないよう[注意]{ちゅうい:caution:N4}しましょう。\n\n#en\nThe definitions of RPO and RTO frequently appear on the exam. RPO = the \"point in time\" to recover to (how far back to rewind data). RTO = the \"time\" until recovery. Be careful not to confuse them.\n::\n\n::para\nバックアップでは3-2-1ルールが[推奨]{すいしょう:recommended:N1}されます：[三]{さん:three:N5}つのコピーを[保持]{ほじ:maintain:N1}し、[二]{に:two:N5}つの[異なる]{ことなる:different:N1}[媒体]{ばいたい:medium:N1}に[保存]{ほぞん:save:N1}し、[一]{いち:one:N5}つは[遠隔地]{えんかくち:remote location:N1}に[保管]{ほかん:store:N1}します。DR（ディザスタリカバリ）サイトには[三]{さん:three:N5}[種類]{しゅるい:type:N3}あります。ホットサイトは[常時]{じょうじ:always:N3}[稼働]{かどう:operation:N1}し、[即座]{そくざ:immediately:N1}に[切り替え]{きりかえ:switching:N2}[可能]{かのう:possible:N3}です。ウォームサイトは[機器]{きき:equipment:N1}は[設置]{せっち:installed:N2}[済み]{ずみ:completed:N3}で、データの[復元]{ふくげん:restoration:N2}[後]{ご:after:N5}に[利用]{りよう:use:N3}[可能]{かのう:possible:N3}です。コールドサイトは[場所]{ばしょ:place:N3}と[電源]{でんげん:power supply:N1}のみで、[機器]{きき:equipment:N1}の[搬入]{はんにゅう:bringing in:N1}・[設定]{せってい:setup:N2}が[必要]{ひつよう:necessary:N3}です。\n\n#en\nFor backup, the 3-2-1 rule is recommended: maintain three copies, save on two different media, and store one in a remote location. There are three types of DR (Disaster Recovery) sites. A hot site is always operational and can be switched to immediately. A warm site has equipment installed, and can be used after data restoration. A cold site has only the location and power supply; equipment must be brought in and configured.\n::\n\n::para\nバックアップには[三]{さん:three:N5}つの[方式]{ほうしき:method:N3}があり、[運用]{うんよう:operation:N4}[要件]{ようけん:requirement:N3}に[応じて]{おうじて:according to:N1}[使い分け]{つかいわけ:usage distinction:N4}ます。フルバックアップは[全]{ぜん:all:N3}データを[毎回]{まいかい:each time:N3}[丸ごと]{まるごと:entirely:N2}[複製]{ふくせい:copy:N1}する[方式]{ほうしき:method:N3}で、[復元]{ふくげん:restoration:N2}が[最]{もっと:most:N3}も[単純]{たんじゅん:simple:N2}（[最新]{さいしん:latest:N3}のフルだけ[戻せば]{もどせば:if you restore:N3}よい）ですが、[取得]{しゅとく:acquisition:N3}[時間]{じかん:time:N5}と[保存]{ほぞん:storage:N1}[容量]{ようりょう:capacity:N2}が[最大]{さいだい:largest:N3}になります。[増分]{ぞうぶん:incremental:N3}バックアップは[前回]{ぜんかい:previous:N3}のバックアップ（フル[又は]{または:or:N1}[増分]{ぞうぶん:incremental:N3}）[以降]{いこう:since:N3}に[変更]{へんこう:changed:N3}された[差分]{さぶん:difference:N3}のみを[保存]{ほぞん:save:N1}するため、[取得]{しゅとく:acquisition:N3}が[最]{もっと:most:N3}も[高速]{こうそく:fast:N3}で[容量]{ようりょう:capacity:N2}も[最]{もっと:most:N3}[小]{しょう:small:N5}ですが、[復元]{ふくげん:restoration:N2}には[最新]{さいしん:latest:N3}フル＋[以降]{いこう:since:N3}の[全]{ぜん:all:N3}[増分]{ぞうぶん:incremental:N3}を[順番]{じゅんばん:order:N2}に[適用]{てきよう:apply:N3}する[必要]{ひつよう:necessary:N3}があり、[復元]{ふくげん:restoration:N2}[時間]{じかん:time:N5}は[長く]{ながく:long:N5}なります。[差分]{さぶん:differential:N3}バックアップは[前回]{ぜんかい:previous:N3}のフルバックアップ[以降]{いこう:since:N3}に[変更]{へんこう:changed:N3}されたデータを[毎回]{まいかい:each time:N3}[保存]{ほぞん:save:N1}するため、[容量]{ようりょう:capacity:N2}は[増分]{ぞうぶん:incremental:N3}より[大きい]{おおきい:large:N5}ものの、[復元]{ふくげん:restoration:N2}は[最新]{さいしん:latest:N3}フル＋[最新]{さいしん:latest:N3}[差分]{さぶん:differential:N3}の[二]{に:two:N5}つだけで[済み]{すみ:completed:N3}、[増分]{ぞうぶん:incremental:N3}より[復元]{ふくげん:restoration:N2}が[単純]{たんじゅん:simple:N2}です。\n\n#en\nThere are three backup methods, used differently according to operational requirements. Full backup copies all data in its entirety each time; restoration is simplest (just restore the latest full), but acquisition time and storage capacity are the largest. Incremental backup saves only the differences changed since the previous backup (full or incremental), so acquisition is fastest and capacity is smallest, but restoration requires applying the latest full plus all subsequent incrementals in order, making restoration time long. Differential backup saves data changed since the previous full backup each time; capacity is larger than incremental, but restoration only needs the latest full plus the latest differential, making restoration simpler than incremental.\n::\n\n::callout\n[試験]{しけん:examination:N4}では3[方式]{ほうしき:method:N3}の[特徴]{とくちょう:characteristic:N1}が[問われ]{とわれ:questioned:N4}ます。フル＝[復元]{ふくげん:restoration:N2}[単純]{たんじゅん:simple:N2}・[容量]{ようりょう:capacity:N2}[最大]{さいだい:largest:N3}。[増分]{ぞうぶん:incremental:N3}＝[取得]{しゅとく:acquisition:N3}[最速]{さいそく:fastest:N3}・[容量]{ようりょう:capacity:N2}[最小]{さいしょう:smallest:N3}・[復元]{ふくげん:restoration:N2}[複雑]{ふくざつ:complex:N2}（フル＋[全]{ぜん:all:N3}[増分]{ぞうぶん:incremental:N3}を[順]{じゅん:order:N2}に[適用]{てきよう:apply:N3}）。[差分]{さぶん:differential:N3}＝[容量]{ようりょう:capacity:N2}・[復元]{ふくげん:restoration:N2}[時間]{じかん:time:N5}とも[中間]{ちゅうかん:intermediate:N5}（フル＋[最新]{さいしん:latest:N3}[差分]{さぶん:differential:N3}の2[世代]{せだい:generation:N4}のみ）。\n\n#en\nThe exam tests the characteristics of the three methods. Full = simple restoration, largest capacity. Incremental = fastest acquisition, smallest capacity, complex restoration (apply full + all incrementals in order). Differential = both capacity and restoration time are intermediate (only two generations: full + latest differential).\n::\n\n::para\nRPOを[限りなく]{かぎりなく:infinitely:N3}[零]{ぜろ:zero:N2}に[近づける]{ちかづける:approach:N4}ためには、リアルタイムレプリケーション（[同期]{どうき:synchronous:N3}[複製]{ふくせい:replication:N1}）が[用いられ]{もちいられ:used:N4}ます。[本番]{ほんばん:production:N3}サイトの[書き込み]{かきこみ:write:N3}を[遠隔地]{えんかくち:remote:N1}サイトに[同時]{どうじ:simultaneously:N4}に[反映]{はんえい:reflect:N3}することで、[障害]{しょうがい:failure:N1}[発生]{はっせい:occurrence:N4}[時]{じ:time:N5}にもデータの[損失]{そんしつ:loss:N2}が[発生]{はっせい:occur:N4}しない（RPO=0）[構成]{こうせい:configuration:N3}が[実現]{じつげん:realize:N3}できます。これを[支える]{ささえる:support:N3}DR（ディザスタリカバリ）サイトは[稼働]{かどう:operational:N1}[状態]{じょうたい:state:N1}と[切り替え]{きりかえ:switchover:N2}[時間]{じかん:time:N5}（RTO）に[応じて]{おうじて:according to:N1}[三]{さん:three:N5}[類型]{るいけい:category:N2}に[分類]{ぶんるい:classify:N3}されます。ホットサイトは[本番]{ほんばん:production:N3}と[同等]{どうとう:equivalent:N3}の[機器]{きき:equipment:N1}・データを[常時]{じょうじ:always:N3}[同期]{どうき:sync:N3}し、[数]{すう:few:N3}[分]{ふん:minute:N5}[以内]{いない:within:N3}に[切り替え]{きりかえ:switching:N2}[可能]{かのう:possible:N3}（RTO[短]{たん:short:N2}・コスト[最]{もっと:most:N3}[高]{こう:high:N5}）です。ウォームサイトは[機器]{きき:equipment:N1}は[設置]{せっち:installed:N2}[済み]{ずみ:completed:N3}で、データは[定期]{ていき:periodic:N3}バックアップから[復元]{ふくげん:restore:N2}するため、[数]{すう:few:N3}[時間]{じかん:hour:N5}〜[数]{すう:few:N3}[日]{にち:day:N5}で[復旧]{ふっきゅう:recovery:N2}（RTO[中]{ちゅう:medium:N5}・コスト[中]{ちゅう:medium:N5}）。コールドサイトは[場所]{ばしょ:location:N3}・[電源]{でんげん:power:N1}・[回線]{かいせん:line:N2}のみが[用意]{ようい:prepared:N4}されており、[機器]{きき:equipment:N1}[搬入]{はんにゅう:bringing in:N1}と[設定]{せってい:setup:N2}・データ[復元]{ふくげん:restore:N2}が[必要]{ひつよう:necessary:N3}なため、[数]{すう:few:N3}[日]{にち:day:N5}〜[数]{すう:few:N3}[週間]{しゅうかん:week:N4}を[要し]{ようし:require:N3}ます（RTO[長]{ちょう:long:N5}・コスト[最]{もっと:most:N3}[低]{てい:low:N2}）。\n\n#en\nTo bring RPO infinitely close to zero, real-time replication (synchronous replication) is used. By simultaneously reflecting writes from the production site to a remote site, a configuration with no data loss even when failures occur (RPO=0) can be realized. DR (Disaster Recovery) sites supporting this are classified into three categories according to operational state and switchover time (RTO). Hot sites continuously synchronize equipment and data equivalent to production and can switch over within minutes (short RTO, highest cost). Warm sites have equipment installed but restore data from periodic backups, recovering in hours to days (medium RTO, medium cost). Cold sites have only the location, power, and lines prepared; equipment must be brought in, set up, and data restored, requiring days to weeks (long RTO, lowest cost).\n::\n\n::callout\nRPO=0＝リアルタイム[同期]{どうき:sync:N3}（データ[損失]{そんしつ:loss:N2}[零]{ぜろ:zero:N2}）。[試験]{しけん:examination:N4}では3サイトの[対比]{たいひ:contrast:N2}が[頻出]{ひんしゅつ:frequently appearing:N1}：ホット＝[即時]{そくじ:immediate:N1}[切替]{きりかえ:switchover:N2}・コスト[最]{もっと:most:N3}[高]{こう:high:N5}、ウォーム＝[機器]{きき:equipment:N1}あり・データ[復元]{ふくげん:restoration:N2}[要]{よう:required:N3}、コールド＝[箱]{はこ:shell:N3}のみ・コスト[最]{もっと:most:N3}[低]{てい:low:N2}。RTOの[短]{みじか:short:N2}さとコストはトレードオフです。\n\n#en\nRPO=0 = real-time sync (zero data loss). The exam frequently contrasts the three sites: Hot = immediate switchover, highest cost; warm = equipment present, data restore needed; cold = shell only, lowest cost. Shortness of RTO and cost are a trade-off.\n::\n\n::heading\nクリアデスク・クリアスクリーン\n\n#en\nClear Desk \u002F Clear Screen\n::\n\n::para\nクリアデスクポリシーとは、[離席]{りせき:leaving one's seat:N1}[時]{じ:time:N5}や[退社]{たいしゃ:leaving the office:N3}[時]{じ:time:N5}に[机]{つくえ:desk:N2}の[上]{うえ:on top of:N5}の[書類]{しょるい:document:N3}や[記録]{きろく:record:N2}[媒体]{ばいたい:medium:N1}を[施錠]{せじょう:locking:N1}できるキャビネットや[引き出し]{ひきだし:drawer:N3}に[収納]{しゅうのう:store:N1}するルールです。クリアスクリーンポリシーとは、[離席]{りせき:leaving one's seat:N1}[時]{じ:time:N5}にパソコンの[画面]{がめん:screen:N3}をロックし、[長時間]{ちょうじかん:long time:N5}[離席]{りせき:leaving one's seat:N1}[時]{じ:time:N5}にはログオフするルールです。[第三者]{だいさんしゃ:third party:N1}に[情報]{じょうほう:information:N3}が[見られる]{みられる:to be seen:N5}リスクを[最小限]{さいしょうげん:minimum:N3}に[抑えます]{おさえます:to suppress:N1}。これらはISO 27001[附属書]{ふぞくしょ:annex:N1}A.11.2.9に[規定]{きてい:stipulate:N3}されており、[簡単]{かんたん:simple:N2}ながらも[情報]{じょうほう:information:N3}[漏えい]{ろうえい:leakage:N1}[防止]{ぼうし:prevention:N2}に[大きな]{おおきな:great:N5}[効果]{こうか:effect:N2}があります。\n\n#en\nClear desk policy is a rule to store documents and recording media on the desk in lockable cabinets or drawers when leaving one's seat or leaving the office. Clear screen policy is a rule to lock the computer screen when leaving one's seat and to log off when away for a long time. This minimizes the risk of information being seen by third parties. These are stipulated in ISO 27001 Annex A.11.2.9 and, while simple, have a great effect in preventing information leakage.\n::\n\n::para\n[外部]{がいぶ:external:N3}データセンターやクラウド[事業者]{じぎょうしゃ:provider:N4}に[個人]{こじん:individual:N2}データを[預ける]{あずける:entrust:N2}[場合]{ばあい:case:N3}も、[委託]{いたく:outsourcing:N1}[元]{もと:source:N4}は[物理]{ぶつり:physical:N4}セキュリティ[水準]{すいじゅん:level:N2}を[確認]{かくにん:confirm:N3}する[義務]{ぎむ:obligation:N1}を[負います]{おいます:bear:N3}。[確認]{かくにん:confirmation:N3}[項目]{こうもく:item:N1}は、[入退館]{にゅうたいかん:building entry\u002Fexit:N3}[管理]{かんり:management:N2}（[生体]{せいたい:biometric:N4}[認証]{にんしょう:authentication:N1}・マントラップ[等]{とう:etc.:N3}）、[監視]{かんし:surveillance:N1}カメラ、[耐震]{たいしん:earthquake-resistant:N1}[構造]{こうぞう:structure:N2}、[消火]{しょうか:fire suppression:N3}[設備]{せつび:equipment:N2}、UPSと[自家]{じか:private:N4}[発電]{はつでん:power generation:N4}、[立地]{りっち:location:N4}（[水害]{すいがい:flood:N3}リスクの[低い]{ひくい:low:N2}[地域]{ちいき:area:N2}）[等]{とう:etc.:N3}です。[実地]{じっち:on-site:N3}[視察]{しさつ:inspection:N1}が[原則]{げんそく:principle:N2}ですが、Tier IIIやTier IVのデータセンター[認証]{にんしょう:certification:N1}（Uptime Institute）、ISO 27001／ISO 27017の[取得]{しゅとく:acquisition:N3}[状況]{じょうきょう:status:N2}を[代替]{だいたい:alternative:N2}[的]{てき:-ly:N4}な[確認]{かくにん:confirmation:N3}[手段]{しゅだん:means:N3}とすることもあります。\n\n#en\nEven when entrusting personal data to external data centers or cloud providers, the outsourcing party bears the obligation to confirm the physical security level. Items to confirm include: building entry\u002Fexit management (biometric authentication, mantraps, etc.), surveillance cameras, earthquake-resistant structure, fire suppression equipment, UPS and private power generation, location (low flood-risk area), etc. On-site inspection is the principle, but Tier III\u002FTier IV data center certification (Uptime Institute) and ISO 27001\u002FISO 27017 acquisition status may be used as alternative confirmation means.\n::\n",{"id":243,"title":249,"titleEn":250,"topicPath":251,"questions":252},"第３編 オフィスセキュリティ 確認テスト","Chapter 3: Office Security — Practice Test","software\u002Fkojin-joho-hogo\u002Fkadai-2\u002Fhen-03-office-security",[253,281,304,328,353,377,400,424,450,474,497,521,544],{"id":254,"articleId":6,"question":255,"options":258,"correctLabel":264,"explanation":275,"tags":278},"kjh-k2-h03-q01",{"en":256,"jp":257},"Which of the following correctly describes the difference between \"management area\" and \"handling area\" in physical safety management measures?","[物理的]{ぶつりてき:physical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における「[管理]{かんり:management}[区域]{くいき:area}」と「[取扱]{とりあつかい:handling}[区域]{くいき:area}」の[違]{ちが:difference}いとして[正]{ただ:correct}しいものはどれか。",[259,263,267,271],{"label":260,"jp":261,"en":262},"ア","[管理]{かんり:management}[区域]{くいき:area}は[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[場所]{ばしょ:place}、[取扱]{とりあつかい:handling}[区域]{くいき:area}はサーバルームを[指]{さ:refer to}す","Management area is where personal data is handled; handling area refers to the server room",{"label":264,"jp":265,"en":266},"イ","[管理]{かんり:management}[区域]{くいき:area}は[個人]{こじん:personal}データを[保管]{ほかん:store}するサーバルーム[等]{とう:etc.}、[取扱]{とりあつかい:handling}[区域]{くいき:area}は[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[事務室]{じむしつ:office room}[等]{とう:etc.}を[指]{さ:refer to}す","Management area is the server room where personal data is stored; handling area is the office where personal data is handled",{"label":268,"jp":269,"en":270},"ウ","[両者]{りょうしゃ:both}に[区別]{くべつ:distinction}はなく[同]{おな:same}じ[意味]{いみ:meaning}である","There is no distinction between them; they mean the same thing",{"label":272,"jp":273,"en":274},"エ","[取扱]{とりあつかい:handling}[区域]{くいき:area}の[方]{ほう:direction}が[管理]{かんり:management}[区域]{くいき:area}より[厳格]{げんかく:strict}な[管理]{かんり:management}が[求]{もと:require}められる","Handling areas require stricter management than management areas",{"en":276,"jp":277},"\"Management area\" refers to server rooms, archives, etc. where personal data is stored and requires stricter management like entry\u002Fexit controls. \"Handling area\" refers to offices where personal data is processed. Options A and D are reversed; C is incorrect.","「[管理]{かんり:management}[区域]{くいき:area}」は[個人]{こじん:personal}データを[保管]{ほかん:store}するサーバルームや[書庫]{しょこ:archives}[等]{とう:etc.}で、[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}[等]{とう:etc.}のより[厳格]{げんかく:strict}な[管理]{かんり:management}が[必要]{ひつよう:necessary}。「[取扱]{とりあつかい:handling}[区域]{くいき:area}」は[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[事務室]{じむしつ:office room}[等]{とう:etc.}。アとエは[逆]{ぎゃく:reverse}、ウは[誤]{あやま:incorrect}り。",[279,280],"physical-security","management-area",{"id":282,"articleId":6,"question":283,"options":286,"correctLabel":272,"explanation":299,"tags":302},"kjh-k2-h03-q02",{"en":284,"jp":285},"Which of the following is NOT an appropriate method for entry\u002Fexit management?","[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}の[方法]{ほうほう:method}として[適切]{てきせつ:appropriate}でないものはどれか。",[287,290,293,296],{"label":260,"jp":288,"en":289},"ICカードによる[認証]{にんしょう:authentication}","IC card authentication",{"label":264,"jp":291,"en":292},"[生体]{せいたい:biometric}[認証]{にんしょう:authentication}（[指紋]{しもん:fingerprint}・[虹彩]{こうさい:iris}[等]{とう:etc.}）","Biometric authentication (fingerprint, iris, etc.)",{"label":268,"jp":294,"en":295},"[入退室]{にゅうたいしつ:entry\u002Fexit}[記録]{きろく:record}の[保管]{ほかん:storage}","Storage of entry\u002Fexit records",{"label":272,"jp":297,"en":298},"[共用]{きょうよう:shared}パスワードによるドアロック[解除]{かいじょ:release}","Unlocking doors with a shared password",{"en":300,"jp":301},"A shared password cannot identify individuals, making it impossible to track who entered or exited. IC cards and biometric authentication enable individual identification, and storing records is effective for post-incident tracing.","[共用]{きょうよう:shared}パスワードでは[個人]{こじん:individual}の[識別]{しきべつ:identification}ができず、[誰]{だれ:who}が[入退室]{にゅうたいしつ:entry\u002Fexit}したか[特定]{とくてい:identify}できないため[不適切]{ふてきせつ:inappropriate}。ICカード・[生体]{せいたい:biometric}[認証]{にんしょう:authentication}は[個人]{こじん:individual}[識別]{しきべつ:identification}が[可能]{かのう:possible}であり、[記録]{きろく:record}の[保管]{ほかん:storage}は[事後]{じご:after the fact}[追跡]{ついせき:tracking}に[有効]{ゆうこう:effective}。",[303],"entry-exit-management",{"id":305,"articleId":6,"question":306,"options":309,"correctLabel":264,"explanation":322,"tags":325},"kjh-k2-h03-q03",{"en":307,"jp":308},"Which of the following data erasure methods magnetically destroys data?","データ[消去]{しょうきょ:erasure}の[方法]{ほうほう:method}のうち、[磁気的]{じきてき:magnetic}にデータを[破壊]{はかい:destroy}する[方法]{ほうほう:method}はどれか。",[310,313,316,319],{"label":260,"jp":311,"en":312},"ファイルの[削除]{さくじょ:deletion}（ゴミ[箱]{ばこ:box}を[空]{から:empty}にする）","Deleting files (emptying the recycle bin)",{"label":264,"jp":314,"en":315},"デガウス（デガウザー）","Degaussing (degausser)",{"label":268,"jp":317,"en":318},"ソフトウェアによる[上書]{うわが:overwrite}き[消去]{しょうきょ:erasure}","Software-based overwrite erasure",{"label":272,"jp":320,"en":321},"[物理的]{ぶつりてき:physical}[破壊]{はかい:destruction}（[粉砕]{ふんさい:pulverization}）","Physical destruction (pulverization)",{"en":323,"jp":324},"Degaussing applies a powerful magnetic field to destroy data. Option A only removes file management information while the data itself remains. Option C overwrites via software (not magnetic). Option D is physical destruction, not magnetic.","デガウス（デガウザー）は[強力]{きょうりょく:powerful}な[磁気]{じき:magnetic}を[当]{あ:apply}ててデータを[破壊]{はかい:destroy}する[方法]{ほうほう:method}。アはファイル[管理]{かんり:management}[情報]{じょうほう:information}を[消]{け:erase}すだけでデータ[自体]{じたい:itself}は[残]{のこ:remain}る。ウはソフトウェアで[上書]{うわが:overwrite}きする[方法]{ほうほう:method}で[磁気的]{じきてき:magnetic}ではない。エは[物理的]{ぶつりてき:physical}な[方法]{ほうほう:method}であり[磁気的]{じきてき:magnetic}ではない。",[326,327],"data-erasure","degauss",{"id":329,"articleId":6,"question":330,"options":333,"correctLabel":264,"explanation":346,"tags":349},"kjh-k2-h03-q04",{"en":331,"jp":332},"In a BCP (Business Continuity Plan), which indicator represents the \"target time from disaster occurrence to system restoration\"?","BCP（[事業]{じぎょう:business}[継続]{けいぞく:continuity}[計画]{けいかく:plan}）において、「[災害]{さいがい:disaster}[発生]{はっせい:occurrence}からシステムを[復旧]{ふっきゅう:restore}するまでの[目標]{もくひょう:target}[時間]{じかん:time}」を[表]{あらわ:express}す[指標]{しひょう:indicator}はどれか。",[334,337,340,343],{"label":260,"jp":335,"en":336},"RPO（[目標]{もくひょう:target}[復旧]{ふっきゅう:recovery}[時点]{じてん:point in time}）","RPO (Recovery Point Objective)",{"label":264,"jp":338,"en":339},"RTO（[目標]{もくひょう:target}[復旧]{ふっきゅう:recovery}[時間]{じかん:time}）","RTO (Recovery Time Objective)",{"label":268,"jp":341,"en":342},"SLA（サービスレベル[合意]{ごうい:agreement}）","SLA (Service Level Agreement)",{"label":272,"jp":344,"en":345},"MTBF（[平均]{へいきん:average}[故障]{こしょう:failure}[間隔]{かんかく:interval}）","MTBF (Mean Time Between Failures)",{"en":347,"jp":348},"RTO (Recovery Time Objective) is the target time from disaster to recovery. RPO is the target recovery point — it concerns data freshness (how much data loss is acceptable), not time to restore. SLA defines service quality standards. MTBF is the average operating time between failures.","RTO（Recovery Time Objective）は[災害]{さいがい:disaster}[発生]{はっせい:occurrence}から[復旧]{ふっきゅう:recovery}までの[目標]{もくひょう:target}[時間]{じかん:time}。RPOは「どの[時点]{じてん:point in time}までのデータを[復旧]{ふっきゅう:restore}するか」という[目標]{もくひょう:target}[復旧]{ふっきゅう:recovery}[時点]{じてん:point}で、[時間]{じかん:time}ではなくデータの[鮮度]{せんど:freshness}に[関]{かん:related}する[指標]{しひょう:indicator}。SLAはサービスの[品質]{ひんしつ:quality}[基準]{きじゅん:standard}、MTBFは[故障]{こしょう:failure}[間]{かん:between}の[平均]{へいきん:average}[稼働]{かどう:operation}[時間]{じかん:time}。",[350,351,352],"BCP","RPO","RTO",{"id":354,"articleId":6,"question":355,"options":358,"correctLabel":264,"explanation":371,"tags":374},"kjh-k2-h03-q05",{"en":356,"jp":357},"Which of the following correctly explains the clear desk \u002F clear screen policy?","クリアデスク・クリアスクリーンポリシーの[説明]{せつめい:explanation}として[正]{ただ:correct}しいものはどれか。",[359,362,365,368],{"label":260,"jp":360,"en":361},"[退社]{たいしゃ:leaving work}[時]{じ:time}に[机]{つくえ:desk}の[上]{うえ:top}を[清掃]{せいそう:clean}し、パソコンの[画面]{がめん:screen}を[拭]{ふ:wipe}くこと","Cleaning the desk surface and wiping the PC screen when leaving work",{"label":264,"jp":363,"en":364},"[離席]{りせき:leaving one's seat}[時]{じ:time}に[書類]{しょるい:documents}を[片付]{かたづ:put away}け、パソコンをロックまたはログオフすること","Putting away documents and locking or logging off the PC when leaving one's seat",{"label":268,"jp":366,"en":367},"[毎日]{まいにち:every day}パソコンのデスクトップのファイルを[整理]{せいり:organize}すること","Organizing files on the PC desktop every day",{"label":272,"jp":369,"en":370},"[不要]{ふよう:unnecessary}なソフトウェアをアンインストールすること","Uninstalling unnecessary software",{"en":372,"jp":373},"Clear desk means putting away confidential documents when leaving your seat or work. Clear screen means locking or logging off the PC so the screen cannot be viewed. Option A describes physical cleaning, which is different in purpose. Options C and D are unrelated to this security policy.","クリアデスクは[離席]{りせき:leaving one's seat}・[退社]{たいしゃ:leaving work}[時]{じ:time}に[机]{つくえ:desk}の[上]{うえ:top}から[機密]{きみつ:confidential}[書類]{しょるい:documents}を[片付]{かたづ:put away}けること、クリアスクリーンは[離席]{りせき:leaving one's seat}[時]{じ:time}にパソコンをロック・ログオフして[画面]{がめん:screen}を[見]{み:see}られないようにすること。アは[物理的]{ぶつりてき:physical}な[清掃]{せいそう:cleaning}であり[趣旨]{しゅし:purpose}が[異]{こと:different}なる。ウ・エはセキュリティポリシーとは[無関係]{むかんけい:unrelated}。",[375,376],"clear-desk","clear-screen",{"id":378,"articleId":6,"question":379,"options":382,"correctLabel":272,"explanation":395,"tags":398},"kjh-k2-h03-q06",{"en":380,"jp":381},"Among the four security zoning categories, which one applies to data centers and vault rooms?","セキュリティゾーニングにおける4[段階]{だんかい:levels}の[区分]{くぶん:classification}のうち、データセンターや[金庫]{きんこ:vault}[室]{しつ:room}が[該当]{がいとう:applicable}するものはどれか。",[383,386,389,392],{"label":260,"jp":384,"en":385},"[一般]{いっぱん:general}[区域]{くいき:area}（パブリックエリア）","General area (public area)",{"label":264,"jp":387,"en":388},"[業務]{ぎょうむ:work}[区域]{くいき:area}","Work area",{"label":268,"jp":390,"en":391},"セキュリティ[区域]{くいき:area}","Secure area",{"label":272,"jp":393,"en":394},"[高]{こう:high}セキュリティ[区域]{くいき:area}","High-security area",{"en":396,"jp":397},"Security zoning has 4 levels: general area = reception\u002Flobby; work area = employee office area; secure area = server rooms\u002Farchives; high-security area = data centers\u002Fvault rooms requiring the strictest management. The basic design makes restrictions stricter the further inside you go.","セキュリティゾーニングは4[段階]{だんかい:levels}：[一般]{いっぱん:general}[区域]{くいき:area}＝[受付]{うけつけ:reception}・ロビー、[業務]{ぎょうむ:work}[区域]{くいき:area}＝[社員]{しゃいん:employee}[執務]{しつむ:office work}エリア、セキュリティ[区域]{くいき:area}＝サーバルーム・[書庫]{しょこ:archives}、[高]{こう:high}セキュリティ[区域]{くいき:area}＝データセンター・[金庫]{きんこ:vault}[室]{しつ:room}など[最]{もっと:most}も[厳格]{げんかく:strict}な[管理]{かんり:management}が[必要]{ひつよう:required}な[区域]{くいき:area}。[内側]{うちがわ:inward}に[行く]{いく:go}ほど[制限]{せいげん:restrictions}が[厳しく]{きびしく:strict}なる[設計]{せっけい:design}が[基本]{きほん:basic}。",[399],"security-zoning",{"id":401,"articleId":6,"question":402,"options":405,"correctLabel":268,"explanation":418,"tags":421},"kjh-k2-h03-q07",{"en":403,"jp":404},"Among backup methods, which has the shortest acquisition time and smallest capacity but requires applying the latest full plus all subsequent in order to restore?","バックアップ[方式]{ほうしき:methods}のうち、[取得]{しゅとく:acquisition}[時間]{じかん:time}が[最]{もっと:most}も[短]{みじか:short}く[容量]{ようりょう:capacity}が[最]{もっと:most}[小]{しょう:small}いが、[復元]{ふくげん:restoration}には[最新]{さいしん:latest}フル＋[以降]{いこう:all subsequent}を[順番]{じゅんばん:in order}に[適用]{てきよう:apply}する[必要]{ひつよう:necessary}があるものはどれか。",[406,409,412,415],{"label":260,"jp":407,"en":408},"フルバックアップ","Full backup",{"label":264,"jp":410,"en":411},"[差分]{さぶん:differential}バックアップ","Differential backup",{"label":268,"jp":413,"en":414},"[増分]{ぞうぶん:incremental}バックアップ","Incremental backup",{"label":272,"jp":416,"en":417},"スナップショット","Snapshot",{"en":419,"jp":420},"Incremental backup saves only differences since the previous backup (full or incremental), so acquisition is fastest and capacity smallest, but restoration requires applying the latest full plus all subsequent incrementals in order. Differential saves changes since the previous full each time; restoration only needs the latest full plus the latest differential.","[増分]{ぞうぶん:incremental}バックアップは[前回]{ぜんかい:previous}（フル[又は]{または:or}[増分]{ぞうぶん:incremental}）[以降]{いこう:since}に[変更]{へんこう:changed}された[差分]{さぶん:differences}のみを[保存]{ほぞん:save}するため[取得]{しゅとく:acquisition}が[最速]{さいそく:fastest}・[容量]{ようりょう:capacity}[最小]{さいしょう:smallest}だが、[復元]{ふくげん:restoration}は[最新]{さいしん:latest}フル＋[以降]{いこう:subsequent}の[全]{ぜん:all}[増分]{ぞうぶん:incrementals}を[順番]{じゅんばん:in order}に[適用]{てきよう:apply}する[必要]{ひつよう:required}がある。[差分]{さぶん:differential}は[前回]{ぜんかい:previous}フル[以降]{いこう:since}の[変更]{へんこう:changes}を[毎回]{まいかい:each time}[保存]{ほぞん:save}し、[復元]{ふくげん:restoration}は[最新]{さいしん:latest}フル＋[最新]{さいしん:latest}[差分]{さぶん:differential}の2つで[済む]{すむ:completed}。",[422,423],"backup","incremental",{"id":425,"articleId":426,"question":427,"options":430,"correctLabel":268,"explanation":443,"tags":446},"kjh-k2-h03-q08","kjh-k2-h04-gijutsu-kiso",{"en":428,"jp":429},"Which is correct about the accuracy metrics for biometric authentication?","[生体]{せいたい:biometric}[認証]{にんしょう:authentication}の[精度]{せいど:accuracy}[指標]{しひょう:indicators}に[関]{かん:related}する[説明]{せつめい:explanation}として[正]{ただ:correct}しいものはどれか。",[431,434,437,440],{"label":260,"jp":432,"en":433},"FARが[低]{ひく:low}いほど[利便性]{りべんせい:convenience}が[高]{たか:high}い","The lower FAR is, the higher convenience",{"label":264,"jp":435,"en":436},"FRRが[低]{ひく:low}いほどセキュリティが[高]{たか:high}い","The lower FRR is, the higher security",{"label":268,"jp":438,"en":439},"FARとFRRはトレードオフの[関係]{かんけい:relationship}にあり、[閾値]{しきいち:threshold}を[厳しく]{きびしく:tight}するとFARは[下]{さ:lower}がるがFRRは[上]{あ:rise}がる","FAR and FRR are in a tradeoff: tightening the threshold lowers FAR but raises FRR",{"label":272,"jp":441,"en":442},"FARとFRRは[独立]{どくりつ:independent}した[指標]{しひょう:indicators}で[互い]{たが:each other}に[影響]{えいきょう:influence}しない","FAR and FRR are independent indicators with no mutual influence",{"en":444,"jp":445},"The lower the FAR (False Acceptance Rate), the higher the security; the lower the FRR (False Rejection Rate), the higher the convenience. The two are in a tradeoff: tightening the threshold lowers FAR but raises FRR. Options A and B reverse the meanings.","FAR（[他人]{たにん:other person}[受入率]{うけいれりつ:acceptance rate}）が[低]{ひく:low}いほどセキュリティが[高]{たか:high}く、FRR（[本人]{ほんにん:the person}[拒否率]{きょひりつ:rejection rate}）が[低]{ひく:low}いほど[利便性]{りべんせい:convenience}が[高]{たか:high}い。[両者]{りょうしゃ:the two}はトレードオフで、[閾値]{しきいち:threshold}を[厳しく]{きびしく:tight}するとFARは[下]{さ:lower}がるがFRRは[上]{あ:rise}がる。アとイは[意味]{いみ:meaning}が[逆]{ぎゃく:reversed}。",[447,448,449],"biometric","FAR","FRR",{"id":451,"articleId":6,"question":452,"options":455,"correctLabel":268,"explanation":468,"tags":471},"kjh-k2-h03-q09",{"en":453,"jp":454},"Which is the most appropriate method for disposing of paper documents?","[紙]{かみ:paper}[文書]{ぶんしょ:documents}の[廃棄]{はいき:disposal}[方法]{ほうほう:method}として[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[456,459,462,465],{"label":260,"jp":457,"en":458},"[一般]{いっぱん:general}ゴミとして[廃棄]{はいき:discard}する","Discard as general garbage",{"label":264,"jp":460,"en":461},"[手]{て:hand}で[細]{こま:finely}かく[破]{やぶ:tear}いてゴミ[箱]{ばこ:box}に[捨]{す:throw}てる","Tear by hand into small pieces and throw in the garbage",{"label":268,"jp":463,"en":464},"クロスカット[以上]{いじょう:or above}のシュレッダー[又は]{または:or}[溶解]{ようかい:dissolution}[処理]{しょり:processing}を[利用]{りよう:use}する","Use a cross-cut or higher shredder, or dissolution processing",{"label":272,"jp":466,"en":467},"ストレートカットシュレッダーで[十分]{じゅうぶん:sufficient}である","A straight-cut shredder is sufficient",{"en":469,"jp":470},"Paper documents must be reliably disposed of using a cross-cut or finer (e.g., micro-cut) shredder or dissolution processing. Straight-cut (strip) shredders allow easy reconstruction and are inappropriate. After disposal, obtain a disposal certificate and keep records.","[紙]{かみ:paper}[文書]{ぶんしょ:documents}はクロスカット[以上]{いじょう:or above}（マイクロカットなど[細]{こま:finer}かいもの）のシュレッダー[又は]{または:or}[溶解]{ようかい:dissolution}[処理]{しょり:processing}で[確実]{かくじつ:reliably}に[廃棄]{はいき:dispose}する。ストレートカット（[短冊]{たんざく:strip}[状]{じょう:-shaped}）は[復元]{ふくげん:restoration}が[容易]{ようい:easy}で[不適切]{ふてきせつ:inappropriate}。[廃棄]{はいき:disposal}[後]{ご:after}は[廃棄]{はいき:disposal}[証明書]{しょうめいしょ:certificate}を[取得]{しゅとく:obtain}し[記録]{きろく:records}を[残す]{のこす:keep}。",[472,473],"document-disposal","shredder",{"id":475,"articleId":6,"question":476,"options":479,"correctLabel":260,"explanation":492,"tags":495},"kjh-k2-h03-q10",{"en":477,"jp":478},"Which best describes the \"anti-passback\" function in entry\u002Fexit management?","[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}における「アンチパスバック」[機能]{きのう:function}の[説明]{せつめい:explanation}として[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[480,483,486,489],{"label":260,"jp":481,"en":482},"[入室]{にゅうしつ:entering}[記録]{きろく:record}のない[者]{もの:person}は[退室]{たいしつ:exit}できないようにし、[共連れ]{ともづれ:tailgating}[入室]{にゅうしつ:entry}を[防止]{ぼうし:prevent}する","Prevents anyone without an entry record from exiting, blocking tailgating",{"label":264,"jp":484,"en":485},"パスワードの[使い]{つか:using}[回し]{まわし:reuse}を[禁止]{きんし:prohibit}する","Prohibits password reuse",{"label":268,"jp":487,"en":488},"[退室]{たいしつ:exit}[時]{じ:time}に[自動]{じどう:automatic}でパスワードを[変更]{へんこう:change}する","Automatically changes password upon exit",{"label":272,"jp":490,"en":491},"[一定]{いってい:fixed}[時間]{じかん:time}[経過]{けいか:elapse}でICカードを[無効化]{むこうか:invalidate}する","Invalidates the IC card after a set period",{"en":493,"jp":494},"Anti-passback is a function that prevents anyone without an entry record from exiting (and vice versa), blocking tailgating (piggybacking). It strictly matches entry and exit one-to-one.","アンチパスバックは「[入室]{にゅうしつ:entered}[記録]{きろく:record}のない[者]{もの:person}は[退室]{たいしつ:exit}できない／[退室]{たいしつ:exited}[記録]{きろく:record}のある[者]{もの:person}は[再]{さい:re-}[入室]{にゅうしつ:enter}できない」[機能]{きのう:function}で、テールゲーティング（[共連れ]{ともづれ:tailgating}）を[防止]{ぼうし:prevent}する。[入退室]{にゅうたいしつ:entry\u002Fexit}を[厳格]{げんかく:strictly}に[1]{いち:one}[対]{たい:pair}[1]{いち:one}で[対応]{たいおう:match}させる。",[303,496],"anti-passback",{"id":498,"articleId":6,"question":499,"options":502,"correctLabel":272,"explanation":515,"tags":518},"kjh-k2-h03-q11",{"en":500,"jp":501},"Which is NOT an appropriate consideration when installing\u002Foperating surveillance cameras (CCTV)?","[監視]{かんし:surveillance}カメラ（CCTV）の[設置]{せっち:installation}・[運用]{うんよう:operation}における[注意]{ちゅうい:caution}[点]{てん:point}として[適切]{てきせつ:appropriate}でないものはどれか。",[503,506,509,512],{"label":260,"jp":504,"en":505},"[出入口]{でいりぐち:entrances\u002Fexits}や[重要]{じゅうよう:critical}[区域]{くいき:areas}に[設置]{せっち:install}する","Install at entrances\u002Fexits and critical areas",{"label":264,"jp":507,"en":508},"[録画]{ろくが:recording}データは[一定]{いってい:fixed}[期間]{きかん:period}[保管]{ほかん:store}する","Store recorded data for a set period",{"label":268,"jp":510,"en":511},"[撮影]{さつえい:recording}している[旨]{むね:fact}を[表示]{ひょうじ:display}し[被]{ひ:subjects of}[撮影]{さつえい:recording}[者]{しゃ:persons}に[告知]{こくち:notify}する","Post a notice that recording is in progress to inform those filmed",{"label":272,"jp":513,"en":514},"[更衣室]{こういしつ:changing room}や[休憩]{きゅうけい:break}[室]{しつ:room}など[個人]{こじん:personal}の[プライバシー]{プライバシー:privacy}が[守]{まも:protected}られるべき[場所]{ばしょ:place}にも[設置]{せっち:install}する","Also install in changing rooms and break rooms where personal privacy should be protected",{"en":516,"jp":517},"Installation in places where personal privacy should be protected (changing rooms, break rooms, toilets) should be avoided in principle. Recorded data itself is personal information, so appropriate retention period management, access restrictions, and filming notifications are required.","[更衣室]{こういしつ:changing room}・[休憩]{きゅうけい:break}[室]{しつ:room}・トイレなど[個人]{こじん:personal}の[プライバシー]{プライバシー:privacy}が[保護]{ほご:protected}されるべき[場所]{ばしょ:place}への[設置]{せっち:installation}は[原則]{げんそく:in principle}[避]{さ:avoid}けるべき。[録画]{ろくが:recorded}データ[自体]{じたい:itself}も[個人]{こじん:personal}[情報]{じょうほう:information}に[該当]{がいとう:applicable}するため、[適切]{てきせつ:appropriate}な[保管]{ほかん:storage}[期間]{きかん:period}[管理]{かんり:management}とアクセス[制限]{せいげん:restriction}、[撮影]{さつえい:filming}[告知]{こくち:notification}が[必要]{ひつよう:required}。",[519,520],"surveillance-camera","CCTV",{"id":522,"articleId":6,"question":523,"options":526,"correctLabel":264,"explanation":539,"tags":542},"kjh-k2-h03-q12",{"en":524,"jp":525},"Which correctly describes \"defense in depth\" (tasou bougyo) in physical safety management?","[物理的]{ぶつりてき:physical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における[防]{ぼう:defense}[御]{ぎょ:-}の[考え方]{かんがえかた:concept}「[多層]{たそう:multi-layer}[防御]{ぼうぎょ:defense}」（Defense in Depth）の[説明]{せつめい:explanation}として[正]{ただ:correct}しいものはどれか。",[527,530,533,536],{"label":260,"jp":528,"en":529},"1つの[強力]{きょうりょく:strong}な[対策]{たいさく:countermeasure}で[全]{すべ:all}ての[脅威]{きょうい:threats}を[防]{ふせ:prevent}ぐ[考え方]{かんがえかた:concept}","Concept of preventing all threats with a single strong countermeasure",{"label":264,"jp":531,"en":532},"[複数]{ふくすう:multiple}の[異]{こと:different}なる[対策]{たいさく:countermeasures}を[重ね]{かさね:layer}ることで、1つが[破]{やぶ:breached}られても[他]{た:others}の[層]{そう:layers}で[防]{ふせ:prevent}ぐ[考え方]{かんがえかた:concept}","Layering multiple different countermeasures so that other layers prevent breach if one fails",{"label":268,"jp":534,"en":535},"[内部]{ないぶ:internal}と[外部]{がいぶ:external}で[同一]{どういつ:identical}の[対策]{たいさく:countermeasures}を[適用]{てきよう:apply}する[考え方]{かんがえかた:concept}","Concept of applying identical countermeasures internally and externally",{"label":272,"jp":537,"en":538},"[物理]{ぶつり:physical}[対策]{たいさく:countermeasures}より[技術]{ぎじゅつ:technical}[対策]{たいさく:countermeasures}を[優先]{ゆうせん:prioritize}する[考え方]{かんがえかた:concept}","Concept of prioritizing technical countermeasures over physical countermeasures",{"en":540,"jp":541},"Defense in depth layers multiple countermeasures (zoning, entry\u002Fexit management, locks, surveillance cameras, etc.) incrementally so that if one is breached, others can prevent intrusion. The key is not depending on a single countermeasure.","[多層]{たそう:multi-layer}[防御]{ぼうぎょ:defense}（Defense in Depth）は、ゾーニング・[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}・[施錠]{せじょう:locking}・[監視]{かんし:surveillance}カメラなど[複数]{ふくすう:multiple}の[対策]{たいさく:countermeasures}を[段階的]{だんかいてき:incrementally}に[重ね]{かさね:layer}、1つが[突破]{とっぱ:breached}されても[他]{た:others}で[防]{ふせ:prevent}げるようにする[考え方]{かんがえかた:concept}。[単一]{たんいつ:single}の[対策]{たいさく:countermeasure}に[依存]{いぞん:depend}しないことが[重要]{じゅうよう:important}。",[543],"defense-in-depth",{"id":545,"articleId":6,"question":546,"options":549,"correctLabel":264,"explanation":562,"tags":565},"kjh-k2-h03-q13",{"en":547,"jp":548},"Which correctly describes the characteristics of differential backup?","[差分]{さぶん:differential}バックアップの[特徴]{とくちょう:characteristics}として[正]{ただ:correct}しいものはどれか。",[550,553,556,559],{"label":260,"jp":551,"en":552},"[毎回]{まいかい:each time}[全]{すべ:all}データを[丸ごと]{まるごと:in entirety}コピーする","Copies all data in entirety each time",{"label":264,"jp":554,"en":555},"[前回]{ぜんかい:previous}フルバックアップ[以降]{いこう:since}の[変更]{へんこう:changes}[分]{ぶん:portion}を[毎回]{まいかい:each time}[保存]{ほぞん:save}し、[復元]{ふくげん:restoration}は[最新]{さいしん:latest}フル＋[最新]{さいしん:latest}[差分]{さぶん:differential}の2つで[済]{す:completed}む","Saves changes since the previous full each time; restoration only needs the latest full plus the latest differential",{"label":268,"jp":557,"en":558},"[前回]{ぜんかい:previous}[差分]{さぶん:differential}[以降]{いこう:since}の[変更]{へんこう:changes}[分]{ぶん:portion}のみを[保存]{ほぞん:save}する","Saves only changes since the previous differential",{"label":272,"jp":560,"en":561},"[容量]{ようりょう:capacity}が[最]{もっと:most}[小]{しょう:small}く、[復元]{ふくげん:restoration}は[最新]{さいしん:latest}[差分]{さぶん:differential}1つだけで[済]{す:completed}む","Smallest capacity; restoration only needs the latest differential",{"en":563,"jp":564},"Differential backup saves data changed since the previous full each time. Capacity is larger than incremental, but restoration only needs the latest full plus the latest differential, making it simpler than incremental. A describes full backup; C describes incremental; D is wrong because every method requires the full as a base.","[差分]{さぶん:differential}バックアップは[前回]{ぜんかい:previous}[フル]{フル:full}[以降]{いこう:since}に[変更]{へんこう:changed}されたデータを[毎回]{まいかい:each time}[保存]{ほぞん:save}するため、[容量]{ようりょう:capacity}は[増分]{ぞうぶん:incremental}より[大]{おお:large}きいが、[復元]{ふくげん:restoration}は[最新]{さいしん:latest}フル＋[最新]{さいしん:latest}[差分]{さぶん:differential}の2つで[済]{す:completed}むため[増分]{ぞうぶん:incremental}より[単純]{たんじゅん:simple}。アはフル、ウは[増分]{ぞうぶん:incremental}の[説明]{せつめい:description}。エはどの[方式]{ほうしき:method}でもフルが[必要]{ひつよう:needed}なため[誤]{あやま:incorrect}り。",[422,566],"differential"]