[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"quiz:kjh-mock-kadai-2-v3":3,"quiz-article-index":1170},{"quizId":4,"title":5,"titleEn":6,"topicPath":7,"questions":8},"kjh-mock-kadai-2-v3","課題Ⅱ 模擬試験（第3回）","Subject II Mock Exam #3","software\u002Fkojin-joho-hogo\u002Fkadai-2",[9,37,60,83,106,130,153,176,200,224,247,271,295,318,341,358,382,405,428,451,474,498,522,545,568,591,613,635,658,680,702,726,749,772,795,818,841,864,886,908,931,956,979,1002,1026,1050,1074,1098,1121,1146],{"id":10,"articleId":11,"question":12,"options":15,"correctLabel":17,"explanation":32,"tags":35},"kjh-mock-k2v3-q01","kjh-k2-h01-security-kiso",{"en":13,"jp":14},"Which information security property ensures information does not leak to unauthorized persons?","[権限]{けんげん:authority}のない[者]{もの:person}に[情報]{じょうほう:information}が[漏]{ろう:leak}れないようにする[情報]{じょうほう:information}セキュリティの[特性]{とくせい:property}はどれか。",[16,20,24,28],{"label":17,"jp":18,"en":19},"ア","[機密性]{きみつせい:confidentiality}","Confidentiality",{"label":21,"jp":22,"en":23},"イ","[完全性]{かんぜんせい:integrity}","Integrity",{"label":25,"jp":26,"en":27},"ウ","[可用性]{かようせい:availability}","Availability",{"label":29,"jp":30,"en":31},"エ","[責任]{せきにん:accountability}[追跡性]{ついせきせい:traceability}","Accountability",{"en":33,"jp":34},"Confidentiality ensures information is not disclosed to unauthorized persons. Integrity means no tampering; availability means access when needed. Accountability is an additional property outside the CIA triad.","[機密性]{きみつせい:confidentiality}は、[認可]{にんか:authorized}されていない[者]{もの:persons}に[情報]{じょうほう:information}が[開示]{かいじ:disclosed}されないことを[確保]{かくほ:ensure}する[特性]{とくせい:property}。[完全性]{かんぜんせい:integrity}は[改]{かい:alter}ざんがないこと、[可用性]{かようせい:availability}は[必要]{ひつよう:necessary}な[時]{とき:time}にアクセスできること。[責任]{せきにん:accountability}[追跡性]{ついせきせい:traceability}はCIA[以外]{いがい:outside}の[追加]{ついか:additional}[特性]{とくせい:property}。",[36],"CIA",{"id":38,"articleId":11,"question":39,"options":42,"correctLabel":25,"explanation":55,"tags":58},"kjh-mock-k2v3-q02",{"en":40,"jp":41},"Which malware encrypts files to make them unusable and demands money for decryption?","ファイルを[暗号化]{あんごうか:encrypt}して[利用]{りよう:use}できなくし、[復号]{ふくごう:decryption}のために[金銭]{きんせん:money}を[要求]{ようきゅう:demand}するマルウェアはどれか。",[43,46,49,52],{"label":17,"jp":44,"en":45},"スパイウェア","Spyware",{"label":21,"jp":47,"en":48},"トロイの[木馬]{もくば:horse}","Trojan horse",{"label":25,"jp":50,"en":51},"ランサムウェア","Ransomware",{"label":29,"jp":53,"en":54},"アドウェア","Adware",{"en":56,"jp":57},"Ransomware encrypts files on infected PCs and demands a ransom for decryption. Spyware steals information, Trojans disguise themselves as normal software, and adware displays ads.","ランサムウェアは、[感染]{かんせん:infected}したPCのファイルを[暗号化]{あんごうか:encrypt}し、[復号]{ふくごう:decryption}と[引]{ひ:exchange}き[換]{か:exchange}えに[身代金]{みのしろきん:ransom}を[要求]{ようきゅう:demand}する。スパイウェアは[情報]{じょうほう:information}を[窃取]{せっしゅ:steal}、トロイの[木馬]{もくば:horse}は[正常]{せいじょう:normal}なソフトを[装]{よそお:disguise}う、アドウェアは[広告]{こうこく:ads}を[表示]{ひょうじ:display}する。",[59],"malware",{"id":61,"articleId":11,"question":62,"options":65,"correctLabel":21,"explanation":78,"tags":81},"kjh-mock-k2v3-q03",{"en":63,"jp":64},"Which is the most effective countermeasure against phishing attacks?","フィッシング[攻撃]{こうげき:attack}への[対策]{たいさく:countermeasure}として[最]{もっと:most}も[有効]{ゆうこう:effective}なものはどれか。",[66,69,72,75],{"label":17,"jp":67,"en":68},"ファイアウォールの[導入]{どうにゅう:introduction}","Introducing a firewall",{"label":21,"jp":70,"en":71},"URLを[確認]{かくにん:verify}してから[個人情報]{こじんじょうほう:personal information}を[入力]{にゅうりょく:input}する[習慣]{しゅうかん:habit}","The habit of verifying the URL before entering personal information",{"label":25,"jp":73,"en":74},"ハードディスクの[暗号化]{あんごうか:encryption}","Hard disk encryption",{"label":29,"jp":76,"en":77},"[定期的]{ていきてき:periodic}なデフラグの[実行]{じっこう:execution}","Periodic defragmentation",{"en":79,"jp":80},"Phishing lures victims to fake sites to steal personal information, so verifying URLs and not clicking suspicious links is most effective. Firewalls and disk encryption are insufficient as phishing countermeasures.","フィッシングは[偽]{にせ:fake}サイトに[誘導]{ゆうどう:lure}して[個人情報]{こじんじょうほう:personal information}を[窃取]{せっしゅ:steal}する[攻撃]{こうげき:attack}のため、URLの[確認]{かくにん:verification}や[不審]{ふしん:suspicious}なメールのリンクをクリックしないことが[最]{もっと:most}も[有効]{ゆうこう:effective}。ファイアウォールやディスク[暗号化]{あんごうか:encryption}はフィッシング[対策]{たいさく:countermeasures}としては[不十分]{ふじゅうぶん:insufficient}。",[82],"phishing",{"id":84,"articleId":11,"question":85,"options":88,"correctLabel":21,"explanation":101,"tags":104},"kjh-mock-k2v3-q04",{"en":86,"jp":87},"What does an attacker target in an SQL injection attack?","SQLインジェクション[攻撃]{こうげき:attack}で[攻撃者]{こうげきしゃ:attacker}が[狙]{ねら:target}う[対象]{たいしょう:target}はどれか。",[89,92,95,98],{"label":17,"jp":90,"en":91},"[利用者]{りようしゃ:user}のブラウザ","The user's browser",{"label":21,"jp":93,"en":94},"Webサーバの[背後]{はいご:behind}にあるデータベース","The database behind the web server",{"label":25,"jp":96,"en":97},"DNS サーバ","DNS server",{"label":29,"jp":99,"en":100},"メールサーバ","Mail server",{"en":102,"jp":103},"SQL injection sends malicious SQL statements through a web application to the database behind it, stealing, altering, or deleting data. XSS targets the browser.","SQLインジェクションは、Webアプリケーションを[経由]{けいゆ:via}して[背後]{はいご:behind}のデータベースに[不正]{ふせい:malicious}なSQL[文]{ぶん:statements}を[送]{おく:send}り[込]{こ:insert}み、データの[窃取]{せっしゅ:theft}・[改]{かい:alter}ざん・[削除]{さくじょ:deletion}を[行]{おこな:carry out}う[攻撃]{こうげき:attack}。ブラウザを[狙]{ねら:target}うのはXSS。",[105],"SQLi",{"id":107,"articleId":11,"question":108,"options":111,"correctLabel":21,"explanation":124,"tags":127},"kjh-mock-k2v3-q05",{"en":109,"jp":110},"What is a commonality between XSS and CSRF?","XSSとCSRFの[共通点]{きょうつうてん:commonality}として[正]{ただ:correct}しいものはどれか。",[112,115,118,121],{"label":17,"jp":113,"en":114},"[両方]{りょうほう:both}ともデータベースを[直接]{ちょくせつ:directly}[攻撃]{こうげき:attack}する","Both directly attack databases",{"label":21,"jp":116,"en":117},"[両方]{りょうほう:both}とも[利用者]{りようしゃ:user}のブラウザを[悪用]{あくよう:exploit}する","Both exploit the user's browser",{"label":25,"jp":119,"en":120},"[両方]{りょうほう:both}ともサーバのルート[権限]{けんげん:privileges}を[奪取]{だっしゅ:seize}する","Both seize server root privileges",{"label":29,"jp":122,"en":123},"[両方]{りょうほう:both}ともネットワーク[帯域]{たいいき:bandwidth}を[消費]{しょうひ:consume}する","Both consume network bandwidth",{"en":125,"jp":126},"Both XSS and CSRF exploit the user's browser. XSS executes malicious scripts in the browser; CSRF sends unintended requests through the browser. Direct database attacks are SQL injection.","XSSもCSRFも[利用者]{りようしゃ:user}のブラウザを[悪用]{あくよう:exploit}する[攻撃]{こうげき:attack}。XSSは[不正]{ふせい:malicious}スクリプトをブラウザ[上]{じょう:on}で[実行]{じっこう:execute}させ、CSRFはブラウザを[通]{つう:through}じて[意図]{いと:unintended}しないリクエストを[送信]{そうしん:send}させる。データベースへの[直接]{ちょくせつ:direct}[攻撃]{こうげき:attack}はSQLインジェクション。",[128,129],"XSS","CSRF",{"id":131,"articleId":11,"question":132,"options":135,"correctLabel":21,"explanation":148,"tags":151},"kjh-mock-k2v3-q06",{"en":133,"jp":134},"Which correctly describes the difference between DoS and DDoS attacks?","DoS[攻撃]{こうげき:attack}とDDoS[攻撃]{こうげき:attack}の[違]{ちが:difference}いとして[正]{ただ:correct}しいものはどれか。",[136,139,142,145],{"label":17,"jp":137,"en":138},"DoSはデータを[暗号化]{あんごうか:encrypt}し、DDoSは[復号]{ふくごう:decrypt}する","DoS encrypts data, and DDoS decrypts it",{"label":21,"jp":140,"en":141},"DoSは[単一]{たんいつ:single}の[攻撃]{こうげき:attack}[元]{もと:source}、DDoSは[分散]{ぶんさん:distributed}した[複数]{ふくすう:multiple}の[攻撃]{こうげき:attack}[元]{もと:sources}","DoS has a single attack source; DDoS has distributed multiple attack sources",{"label":25,"jp":143,"en":144},"DoSはWebのみ、DDoSはメールのみを[対象]{たいしょう:target}とする","DoS targets only the web; DDoS targets only email",{"label":29,"jp":146,"en":147},"DoSは[合法]{ごうほう:legal}、DDoSは[違法]{いほう:illegal}","DoS is legal; DDoS is illegal",{"en":149,"jp":150},"DoS disrupts services from a single attack source; DDoS is a distributed form attacking simultaneously from multiple sources (e.g., botnets). Both are illegal.","DoS[攻撃]{こうげき:attack}は[単一]{たんいつ:single}の[攻撃]{こうげき:attack}[元]{もと:source}からサービスを[妨害]{ぼうがい:disrupt}する[攻撃]{こうげき:attack}、DDoSは[複数]{ふくすう:multiple}の[攻撃]{こうげき:attack}[元]{もと:sources}（ボットネットなど）から[同時]{どうじ:simultaneously}に[攻撃]{こうげき:attack}する[分散型]{ぶんさんがた:distributed}の[形態]{けいたい:form}。[両方]{りょうほう:both}とも[違法]{いほう:illegal}。",[152],"DDoS",{"id":154,"articleId":11,"question":155,"options":158,"correctLabel":21,"explanation":171,"tags":174},"kjh-mock-k2v3-q07",{"en":156,"jp":157},"What is the common characteristic of social engineering attacks?","ソーシャルエンジニアリング[攻撃]{こうげき:attack}の[共通]{きょうつう:common}する[特徴]{とくちょう:characteristic}はどれか。",[159,162,165,168],{"label":17,"jp":160,"en":161},"[高度]{こうど:advanced}な[技術的]{ぎじゅつてき:technical}スキルが[必要]{ひつよう:necessary}","Advanced technical skills are necessary",{"label":21,"jp":163,"en":164},"[人間]{にんげん:human}の[心理的]{しんりてき:psychological}な[弱]{よわ:weakness}さを[突]{つ:exploit}いて[情報]{じょうほう:information}を[取得]{しゅとく:obtain}する","Exploiting human psychological weaknesses to obtain information",{"label":25,"jp":166,"en":167},"[大量]{たいりょう:massive}のサーバリソースを[消費]{しょうひ:consume}する","Consuming massive server resources",{"label":29,"jp":169,"en":170},"[暗号化]{あんごうか:encrypted}された[通信]{つうしん:communication}を[解読]{かいどく:decode}する","Decoding encrypted communications",{"en":172,"jp":173},"Social engineering is a collective term for techniques that exploit human psychological weaknesses (trust, fear, curiosity, etc.) rather than technical means to obtain confidential information.","ソーシャルエンジニアリングは、[技術的]{ぎじゅつてき:technical}な[手段]{しゅだん:means}ではなく、[人間]{にんげん:human}の[心理的]{しんりてき:psychological}な[弱]{よわ:weakness}さ（[信頼]{しんらい:trust}、[恐怖]{きょうふ:fear}、[好奇心]{こうきしん:curiosity}など）を[突]{つ:exploit}いて[機密]{きみつ:confidential}[情報]{じょうほう:information}を[取得]{しゅとく:obtain}する[手法]{しゅほう:technique}の[総称]{そうしょう:collective name}。",[175],"social-engineering",{"id":177,"articleId":11,"question":178,"options":181,"correctLabel":17,"explanation":194,"tags":197},"kjh-mock-k2v3-q08",{"en":179,"jp":180},"How does a watering hole attack differ from a targeted email attack?","[水飲]{みずの:watering}み[場型]{ばがた:hole type}[攻撃]{こうげき:attack}が[標的型]{ひょうてきがた:targeted}メール[攻撃]{こうげき:attack}と[異]{こと:different}なる[点]{てん:point}はどれか。",[182,185,188,191],{"label":17,"jp":183,"en":184},"[標的]{ひょうてき:target}が[頻繁]{ひんぱん:frequently}に[利用]{りよう:use}するWebサイトを[経由]{けいゆ:via}する[点]{てん:point}","It goes via websites the target frequently uses",{"label":21,"jp":186,"en":187},"マルウェアを[使用]{しよう:use}しない[点]{てん:point}","It does not use malware",{"label":25,"jp":189,"en":190},"[不特定]{ふとくてい:unspecified}[多数]{たすう:many}を[狙]{ねら:target}う[点]{てん:point}","It targets a large unspecified audience",{"label":29,"jp":192,"en":193},"[物理的]{ぶつりてき:physical}なアクセスが[必要]{ひつよう:necessary}な[点]{てん:point}","Physical access is necessary",{"en":195,"jp":196},"A watering hole attack differs by compromising websites the target routinely visits to plant malware, unlike targeted email attacks that use email attachments. Both use malware and target specific victims.","[水飲]{みずの:watering}み[場型]{ばがた:hole type}[攻撃]{こうげき:attack}は、[標的]{ひょうてき:target}が[日常的]{にちじょうてき:routinely}に[閲覧]{えつらん:browse}するWebサイトを[改]{かい:alter}ざんしてマルウェアを[仕込]{しこ:plant}む[点]{てん:point}が、メール[添付]{てんぷ:attachment}ファイルを[利用]{りよう:use}する[標的型]{ひょうてきがた:targeted}メール[攻撃]{こうげき:attack}と[異]{こと:differ}なる。[両方]{りょうほう:both}ともマルウェアを[使用]{しよう:use}し、[特定]{とくてい:specific}の[標的]{ひょうてき:target}を[狙]{ねら:target}う。",[198,199],"watering-hole","targeted-attack",{"id":201,"articleId":202,"question":203,"options":206,"correctLabel":21,"explanation":219,"tags":222},"kjh-mock-k2v3-q09","kjh-k1-h01-hotaikei",{"en":204,"jp":205},"Which constitutes an \"act promoting unauthorized access\" subject to punishment under the Unauthorized Computer Access Law?","[不正]{ふせい:unauthorized}アクセス[禁止法]{きんしほう:prohibition law}で[処罰]{しょばつ:punishment}の[対象]{たいしょう:subject}となる「[不正]{ふせい:unauthorized}アクセスを[助長]{じょちょう:promote}する[行為]{こうい:act}」に[該当]{がいとう:applicable}するものはどれか。",[207,210,213,216],{"label":17,"jp":208,"en":209},"[自分]{じぶん:own}のパスワードを[変更]{へんこう:change}すること","Changing one's own password",{"label":21,"jp":211,"en":212},"[他人]{たにん:another person}のID・パスワードを[正当]{せいとう:legitimate}な[理由]{りゆう:reason}なく[第三者]{だいさんしゃ:third party}に[教]{おし:teach}えること","Telling another person's ID and password to a third party without legitimate reason",{"label":25,"jp":214,"en":215},"セキュリティ[研修]{けんしゅう:training}を[受]{う:receive}けること","Receiving security training",{"label":29,"jp":217,"en":218},"パスワードを[複雑]{ふくざつ:complex}に[設定]{せってい:set}すること","Setting a complex password",{"en":220,"jp":221},"Providing another person's identification codes (ID\u002Fpassword) to a third party without legitimate reason is subject to punishment as an act promoting unauthorized access.","[他人]{たにん:another person}の[識別]{しきべつ:identification}[符号]{ふごう:code}（ID・パスワード）を[正当]{せいとう:legitimate}な[理由]{りゆう:reason}なく[第三者]{だいさんしゃ:third party}に[提供]{ていきょう:provide}する[行為]{こうい:act}は、[不正]{ふせい:unauthorized}アクセスを[助長]{じょちょう:promote}する[行為]{こうい:act}として[処罰]{しょばつ:punishment}の[対象]{たいしょう:subject}となる。",[223],"unauthorized-access-law",{"id":225,"articleId":202,"question":226,"options":229,"correctLabel":21,"explanation":242,"tags":245},"kjh-mock-k2v3-q10",{"en":227,"jp":228},"Which is an example that satisfies the \"secret management\" requirement under the Unfair Competition Prevention Act?","[不正]{ふせい:unfair}[競争]{きょうそう:competition}[防止法]{ぼうしほう:prevention act}における「[秘密]{ひみつ:secret}[管理]{かんり:management}[性]{せい:nature}」の[要件]{ようけん:requirement}を[満]{み:satisfy}たす[例]{れい:example}はどれか。",[230,233,236,239],{"label":17,"jp":231,"en":232},"[誰]{だれ:anyone}でも[自由]{じゆう:freely}にアクセスできるフォルダに[保存]{ほぞん:save}する","Saving in a folder anyone can freely access",{"label":21,"jp":234,"en":235},"「[社外秘]{しゃがいひ:confidential}」と[表示]{ひょうじ:label}しアクセス[制限]{せいげん:restriction}をかける","Labeling as \"confidential\" and applying access restrictions",{"label":25,"jp":237,"en":238},"Webサイトで[一般]{いっぱん:general}[公開]{こうかい:publish}する","Publishing on a website for the general public",{"label":29,"jp":240,"en":241},"SNSで[情報]{じょうほう:information}を[共有]{きょうゆう:share}する","Sharing information on SNS",{"en":243,"jp":244},"To satisfy secret management, it must be objectively recognizable that the information is managed as a secret. Labeling as \"confidential\" with access restrictions is a specific example. Free access or publishing does not qualify.","[秘密]{ひみつ:secret}[管理]{かんり:management}[性]{せい:nature}を[満]{み:satisfy}たすには、[秘密]{ひみつ:secret}として[管理]{かんり:manage}されていることが[客観的]{きゃっかんてき:objectively}に[認識]{にんしき:recognize}できる[必要]{ひつよう:need}がある。「[社外秘]{しゃがいひ:confidential}」の[表示]{ひょうじ:label}やアクセス[制限]{せいげん:restriction}は[秘密]{ひみつ:secret}[管理]{かんり:management}の[具体例]{ぐたいれい:specific example}。[自由]{じゆう:free}アクセスや[公開]{こうかい:publishing}は[秘密]{ひみつ:secret}[管理]{かんり:management}に[該当]{がいとう:applicable}しない。",[246],"unfair-competition-law",{"id":248,"articleId":249,"question":250,"options":253,"correctLabel":29,"explanation":266,"tags":269},"kjh-mock-k2v3-q11","kjh-k2-h01-guideline",{"en":251,"jp":252},"Which is NOT applicable as a \"critical social infrastructure operator\" under the Basic Act on Cybersecurity?","サイバーセキュリティ[基本法]{きほんほう:basic act}における「[重要]{じゅうよう:critical}[社会]{しゃかい:social}[基盤]{きばん:infrastructure}[事業者]{じぎょうしゃ:operators}」に[該当]{がいとう:applicable}しないものはどれか。",[254,257,260,263],{"label":17,"jp":255,"en":256},"[電力]{でんりょく:electric power}[会社]{がいしゃ:company}","Electric power company",{"label":21,"jp":258,"en":259},"[鉄道]{てつどう:railway}[会社]{がいしゃ:company}","Railway company",{"label":25,"jp":261,"en":262},"[金融]{きんゆう:financial}[機関]{きかん:institution}","Financial institution",{"label":29,"jp":264,"en":265},"[個人]{こじん:individual}[経営]{けいえい:operated}の[花屋]{はなや:flower shop}","Individually operated flower shop",{"en":267,"jp":268},"Critical social infrastructure operators provide services indispensable to citizens' lives, such as electric power, gas, railways, finance, and medical care. An individually operated flower shop does not qualify.","[重要]{じゅうよう:critical}[社会]{しゃかい:social}[基盤]{きばん:infrastructure}[事業者]{じぎょうしゃ:operators}は、[電力]{でんりょく:electric power}、ガス、[鉄道]{てつどう:railway}、[金融]{きんゆう:finance}、[医療]{いりょう:medical}など[国民]{こくみん:citizens}[生活]{せいかつ:life}に[不可欠]{ふかけつ:indispensable}なサービスを[提供]{ていきょう:provide}する[事業者]{じぎょうしゃ:operators}。[個人]{こじん:individual}[経営]{けいえい:operated}の[花屋]{はなや:flower shop}は[該当]{がいとう:applicable}しない。",[270],"cybersecurity-basic-act",{"id":272,"articleId":202,"question":273,"options":276,"correctLabel":25,"explanation":289,"tags":292},"kjh-mock-k2v3-q12",{"en":274,"jp":275},"What is the validity period of ISMS certification?","ISMS[認証]{にんしょう:certification}の[有効]{ゆうこう:validity}[期間]{きかん:period}はどれか。",[277,280,283,286],{"label":17,"jp":278,"en":279},"1[年]{ねん:year}","1 year",{"label":21,"jp":281,"en":282},"2[年]{ねん:years}","2 years",{"label":25,"jp":284,"en":285},"3[年]{ねん:years}","3 years",{"label":29,"jp":287,"en":288},"[無期限]{むきげん:unlimited}","Unlimited",{"en":290,"jp":291},"ISMS certification has a 3-year validity period with annual maintenance (surveillance) audits required. Note that P-Mark validity is 2 years.","ISMS[認証]{にんしょう:certification}の[有効]{ゆうこう:validity}[期間]{きかん:period}は3[年]{ねん:years}であり、[毎年]{まいとし:annually}[維持]{いじ:maintenance}[審査]{しんさ:audit}（サーベイランス[審査]{しんさ:audit}）を[受]{う:receive}ける[必要]{ひつよう:need}がある。なおP-Markの[有効]{ゆうこう:validity}[期間]{きかん:period}は2[年]{ねん:years}。",[293,294],"ISMS","ISO-27001",{"id":296,"articleId":249,"question":297,"options":300,"correctLabel":29,"explanation":313,"tags":316},"kjh-mock-k2v3-q13",{"en":298,"jp":299},"Which is NOT included in the ISO\u002FIEC 27000 standard family?","ISO\u002FIEC 27000[規格]{きかく:standard}[群]{ぐん:family}に[含]{ふく:include}まれないものはどれか。",[301,304,307,310],{"label":17,"jp":302,"en":303},"ISO\u002FIEC 27001（ISMS[要求]{ようきゅう:requirements}[事項]{じこう:items}）","ISO\u002FIEC 27001 (ISMS requirements)",{"label":21,"jp":305,"en":306},"ISO\u002FIEC 27002（セキュリティ[管理策]{かんりさく:controls}の[実践]{じっせん:practice}[規範]{きはん:code}）","ISO\u002FIEC 27002 (code of practice for security controls)",{"label":25,"jp":308,"en":309},"ISO\u002FIEC 27005（[情報]{じょうほう:information}セキュリティリスク[管理]{かんり:management}）","ISO\u002FIEC 27005 (information security risk management)",{"label":29,"jp":311,"en":312},"ISO 9001（[品質]{ひんしつ:quality}[管理]{かんり:management}システム）","ISO 9001 (quality management system)",{"en":314,"jp":315},"ISO 9001 is a quality management system standard and is not part of the ISO\u002FIEC 27000 family. The 27000 family is specialized in information security.","ISO 9001は[品質]{ひんしつ:quality}[管理]{かんり:management}システムの[規格]{きかく:standard}であり、ISO\u002FIEC 27000[規格]{きかく:standard}[群]{ぐん:family}には[含]{ふく:included}まれない。27000[規格]{きかく:standard}[群]{ぐん:family}は[情報]{じょうほう:information}セキュリティに[特化]{とっか:specialized}した[規格]{きかく:standards}。",[317],"ISO-27000",{"id":319,"articleId":249,"question":320,"options":323,"correctLabel":25,"explanation":336,"tags":339},"kjh-mock-k2v3-q14",{"en":321,"jp":322},"Which activity falls under the \"Respond\" function of NIST CSF?","NIST CSFの「[対応]{たいおう:respond}（Respond）」に[該当]{がいとう:applicable}する[活動]{かつどう:activity}はどれか。",[324,327,330,333],{"label":17,"jp":325,"en":326},"[資産]{しさん:assets}の[識別]{しきべつ:identification}とリスク[評価]{ひょうか:assessment}","Asset identification and risk assessment",{"label":21,"jp":328,"en":329},"[従業者]{じゅうぎょうしゃ:employees}へのセキュリティ[教育]{きょういく:education}","Security education for employees",{"label":25,"jp":331,"en":332},"インシデント[発生]{はっせい:occurrence}[時]{じ:time}の[分析]{ぶんせき:analysis}・[封]{ふう:contain}じ[込]{こ:contain}め・[報告]{ほうこく:report}","Analysis, containment, and reporting upon incident occurrence",{"label":29,"jp":334,"en":335},"バックアップからのシステム[復旧]{ふっきゅう:recovery}","System recovery from backup",{"en":337,"jp":338},"\"Respond\" involves analysis, containment, mitigation, and reporting upon incidents. A is \"Identify,\" B is \"Protect,\" and D is \"Recover.\"","「[対応]{たいおう:respond}」はインシデント[発生]{はっせい:occurrence}[時]{じ:time}の[分析]{ぶんせき:analysis}、[封]{ふう:contain}じ[込]{こ:contain}め、[軽減]{けいげん:mitigation}、[報告]{ほうこく:reporting}を[行]{おこな:conduct}う[機能]{きのう:function}。アは「[識別]{しきべつ:identify}」、イは「[防御]{ぼうぎょ:protect}」、エは「[復旧]{ふっきゅう:recover}」に[該当]{がいとう:applicable}。",[340],"NIST-CSF",{"id":342,"articleId":202,"question":343,"options":346,"correctLabel":21,"explanation":353,"tags":356},"kjh-mock-k2v3-q15",{"en":344,"jp":345},"What is the validity period of Privacy Mark (P-Mark)?","P-Markの[有効]{ゆうこう:validity}[期間]{きかん:period}はどれか。",[347,348,349,350],{"label":17,"jp":278,"en":279},{"label":21,"jp":281,"en":282},{"label":25,"jp":284,"en":285},{"label":29,"jp":351,"en":352},"5[年]{ねん:years}","5 years",{"en":354,"jp":355},"P-Mark validity is 2 years, requiring a renewal audit. ISMS validity is 3 years.","P-Markの[有効]{ゆうこう:validity}[期間]{きかん:period}は2[年]{ねん:years}であり、[更新]{こうしん:renewal}[審査]{しんさ:audit}を[受]{う:receive}けて[更新]{こうしん:renew}する[必要]{ひつよう:need}がある。ISMSの[有効]{ゆうこう:validity}[期間]{きかん:period}は3[年]{ねん:years}。",[357],"P-Mark",{"id":359,"articleId":360,"question":361,"options":364,"correctLabel":17,"explanation":377,"tags":380},"kjh-mock-k2v3-q16","kjh-k2-h02-soshiki-kiso",{"en":362,"jp":363},"Which is appropriate to state in the basic policy?","[基本方針]{きほんほうしん:basic policy}に[記載]{きさい:state}すべき[事項]{じこう:items}として[適切]{てきせつ:appropriate}なものはどれか。",[365,368,371,374],{"label":17,"jp":366,"en":367},"[法令]{ほうれい:laws}[遵守]{じゅんしゅ:compliance}の[宣言]{せんげん:declaration}と[継続的]{けいぞくてき:continuous}[改善]{かいぜん:improvement}の[方針]{ほうしん:policy}","Declaration of legal compliance and policy of continuous improvement",{"label":21,"jp":369,"en":370},"ファイアウォールのIPアドレス[設定]{せってい:configuration}","Firewall IP address configuration",{"label":25,"jp":372,"en":373},"バックアップの[実行]{じっこう:execution}スケジュール","Backup execution schedule",{"label":29,"jp":375,"en":376},"[入退室]{にゅうたいしつ:entry\u002Fexit}ログの[保存]{ほぞん:retention}[期間]{きかん:period}","Entry\u002Fexit log retention period",{"en":378,"jp":379},"The basic policy is the organization's highest-level document, including legal compliance, continuous improvement, and representative signature. Specific technical settings and operational procedures are in lower-level documents.","[基本方針]{きほんほうしん:basic policy}は[組織]{そしき:organization}の[最上位]{さいじょうい:highest level}[文書]{ぶんしょ:document}であり、[法令]{ほうれい:laws}[遵守]{じゅんしゅ:compliance}、[継続的]{けいぞくてき:continuous}[改善]{かいぜん:improvement}、[代表者]{だいひょうしゃ:representative}の[署名]{しょめい:signature}などを[含]{ふく:include}む。[具体的]{ぐたいてき:specific}な[技術]{ぎじゅつ:technical}[設定]{せってい:settings}や[運用]{うんよう:operational}[手順]{てじゅん:procedures}は[下位]{かい:lower-level}[文書]{ぶんしょ:documents}で[規定]{きてい:stipulate}する。",[381],"basic-policy",{"id":383,"articleId":360,"question":384,"options":387,"correctLabel":29,"explanation":400,"tags":403},"kjh-mock-k2v3-q17",{"en":385,"jp":386},"Which is NOT an appropriate timing to update the management register?","[管理]{かんり:management}[台帳]{だいちょう:register}の[更新]{こうしん:update}が[必要]{ひつよう:necessary}なタイミングとして[適切]{てきせつ:appropriate}でないものはどれか。",[388,391,394,397],{"label":17,"jp":389,"en":390},"[新]{あたら:new}しい[個人情報]{こじんじょうほう:personal information}の[取得]{しゅとく:acquisition}を[開始]{かいし:start}した[時]{とき:time}","When starting to acquire new personal information",{"label":21,"jp":392,"en":393},"[保管]{ほかん:storage}[場所]{ばしょ:location}が[変更]{へんこう:changed}になった[時]{とき:time}","When the storage location changes",{"label":25,"jp":395,"en":396},"[利用]{りよう:use}[目的]{もくてき:purpose}が[変更]{へんこう:changed}された[時]{とき:time}","When the purpose of use is changed",{"label":29,"jp":398,"en":399},"[社員]{しゃいん:employee}の[誕生日]{たんじょうび:birthday}","An employee's birthday",{"en":401,"jp":402},"The register should be updated when acquiring\u002Fchanging\u002Fdisposing of personal information, changing storage locations, or changing purposes of use. Employee birthdays are not a trigger for register updates.","[管理]{かんり:management}[台帳]{だいちょう:register}は、[個人情報]{こじんじょうほう:personal information}の[取得]{しゅとく:acquisition}・[変更]{へんこう:change}・[廃棄]{はいき:disposal}、[保管]{ほかん:storage}[場所]{ばしょ:location}の[変更]{へんこう:change}、[利用]{りよう:use}[目的]{もくてき:purpose}の[変更]{へんこう:change}などに[応]{おう:respond}じて[更新]{こうしん:update}する。[社員]{しゃいん:employee}の[誕生日]{たんじょうび:birthday}は[台帳]{だいちょう:register}[更新]{こうしん:update}の[契機]{けいき:trigger}にはならない。",[404],"management-register",{"id":406,"articleId":360,"question":407,"options":410,"correctLabel":17,"explanation":423,"tags":426},"kjh-mock-k2v3-q18",{"en":408,"jp":409},"Which is an example of \"risk avoidance\" among risk treatment methods?","リスク[対応]{たいおう:treatment}の[方法]{ほうほう:method}のうち「リスク[回避]{かいひ:avoidance}」の[例]{れい:example}はどれか。",[411,414,417,420],{"label":17,"jp":412,"en":413},"[個人情報]{こじんじょうほう:personal information}を[取]{と:handle}り[扱]{あつか:handle}う[業務]{ぎょうむ:operation}そのものを[中止]{ちゅうし:discontinue}する","Discontinuing the operation that handles personal information altogether",{"label":21,"jp":415,"en":416},"[保険]{ほけん:insurance}に[加入]{かにゅう:subscribe}してリスクを[転嫁]{てんか:transfer}する","Subscribing to insurance to transfer the risk",{"label":25,"jp":418,"en":419},"ファイアウォールを[導入]{どうにゅう:introduce}してリスクを[低減]{ていげん:reduce}する","Introducing a firewall to reduce risk",{"label":29,"jp":421,"en":422},"リスクを[認識]{にんしき:recognize}した[上]{うえ:on}で[受容]{じゅよう:accept}する","Accepting risk after recognizing it",{"en":424,"jp":425},"Risk avoidance means discontinuing or withdrawing from the activity causing the risk. B is risk transfer, C is risk reduction, and D is risk acceptance (retention).","リスク[回避]{かいひ:avoidance}は、リスクの[原因]{げんいん:cause}となる[活動]{かつどう:activity}そのものを[中止]{ちゅうし:discontinue}・[撤退]{てったい:withdraw}すること。イはリスク[転嫁]{てんか:transfer}（[移転]{いてん:transfer}）、ウはリスク[低減]{ていげん:reduction}、エはリスク[受容]{じゅよう:acceptance}（[保有]{ほゆう:retention}）。",[427],"risk-analysis",{"id":429,"articleId":360,"question":430,"options":433,"correctLabel":25,"explanation":446,"tags":449},"kjh-mock-k2v3-q19",{"en":431,"jp":432},"Which correctly describes the role of \"implementation procedures\" in the regulation document hierarchy?","[規程]{きてい:regulations}[文書]{ぶんしょ:documents}[体系]{たいけい:hierarchy}における「[実施]{じっし:implementation}[手順書]{てじゅんしょ:procedures}」の[役割]{やくわり:role}として[正]{ただ:correct}しいものはどれか。",[434,437,440,443],{"label":17,"jp":435,"en":436},"[組織]{そしき:organization}の[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}の[方針]{ほうしん:policy}を[宣言]{せんげん:declare}する","Declaring the organization's personal information protection policy",{"label":21,"jp":438,"en":439},"[具体的]{ぐたいてき:specific}な[対策]{たいさく:measures}の[基準]{きじゅん:standards}を[定]{さだ:establish}める","Establishing specific countermeasure standards",{"label":25,"jp":441,"en":442},"[現場]{げんば:frontline}で[実際]{じっさい:actually}に[行]{おこな:carry out}う[操作]{そうさ:operations}や[作業]{さぎょう:tasks}の[手順]{てじゅん:procedure}を[詳細]{しょうさい:detail}に[記述]{きじゅつ:describe}する","Describing in detail the operations and tasks actually carried out on the frontline",{"label":29,"jp":444,"en":445},"[法令]{ほうれい:laws}の[条文]{じょうぶん:provisions}を[引用]{いんよう:quote}する","Quoting legal provisions",{"en":447,"jp":448},"Implementation procedures describe specific operational steps to execute on the frontline based on countermeasure standards. A is the role of the basic policy; B is the role of countermeasure standards.","[実施]{じっし:implementation}[手順書]{てじゅんしょ:procedures}は、[対策]{たいさく:measures}[基準]{きじゅん:standards}で[定]{さだ:established}めた[内容]{ないよう:content}を[現場]{げんば:frontline}で[実行]{じっこう:execute}するための[具体的]{ぐたいてき:specific}な[操作]{そうさ:operation}[手順]{てじゅん:procedure}を[記述]{きじゅつ:describe}する[文書]{ぶんしょ:document}。アは[基本方針]{きほんほうしん:basic policy}、イは[対策]{たいさく:measures}[基準]{きじゅん:standards}の[役割]{やくわり:role}。",[450],"document-hierarchy",{"id":452,"articleId":360,"question":453,"options":456,"correctLabel":17,"explanation":469,"tags":472},"kjh-mock-k2v3-q20",{"en":454,"jp":455},"Why is \"review of safety management measures\" required as one of the 5 organizational safety management items?","[組織的]{そしきてき:organizational}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}5[項目]{こうもく:items}のうち「[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[見直]{みなお:review}し」が[必要]{ひつよう:necessary}とされる[理由]{りゆう:reason}はどれか。",[457,460,463,466],{"label":17,"jp":458,"en":459},"[脅威]{きょうい:threats}や[技術]{ぎじゅつ:technology}[環境]{かんきょう:environment}は[変化]{へんか:change}するため、[継続的]{けいぞくてき:continuously}に[改善]{かいぜん:improve}する[必要]{ひつよう:need}がある","Because threats and technology environments change, continuous improvement is needed",{"label":21,"jp":461,"en":462},"[見直]{みなお:review}しは[法律]{ほうりつ:law}で[年]{ねん:year}1[回]{かい:time}と[規定]{きてい:stipulated}されているため","Because the law stipulates a review once a year",{"label":25,"jp":464,"en":465},"[見直]{みなお:review}しにより[従業者]{じゅうぎょうしゃ:employees}の[給与]{きゅうよ:salary}を[決定]{けってい:determine}するため","Because reviews determine employee salaries",{"label":29,"jp":467,"en":468},"[外部]{がいぶ:external}[監査]{かんさ:audit}[法人]{ほうじん:corporation}から[要求]{ようきゅう:demanded}されるため","Because it is demanded by external audit corporations",{"en":470,"jp":471},"Because security threats and technology environments constantly change, safety management measures need periodic review and continuous improvement (PDCA cycle).","セキュリティの[脅威]{きょうい:threats}や[技術]{ぎじゅつ:technology}[環境]{かんきょう:environment}は[常]{つね:constantly}に[変化]{へんか:change}するため、[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}も[定期的]{ていきてき:periodically}に[見直]{みなお:review}して[継続的]{けいぞくてき:continuously}に[改善]{かいぜん:improve}する[必要]{ひつよう:need}がある（PDCAサイクル）。",[473],"organizational-measures",{"id":475,"articleId":476,"question":477,"options":480,"correctLabel":17,"explanation":493,"tags":496},"kjh-mock-k2v3-q21","kjh-k1-h04-anzen-kanri",{"en":478,"jp":479},"What should be done at the time of resignation as a human safety management measure?","[人的]{じんてき:human}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}として[退職]{たいしょく:resignation}[時]{じ:time}に[行]{おこな:carry out}うべきことはどれか。",[481,484,487,490],{"label":17,"jp":482,"en":483},"[退職者]{たいしょくしゃ:resigning person}のアクセス[権限]{けんげん:authority}を[速]{すみ:promptly}やかに[削除]{さくじょ:delete}する","Promptly deleting the resigning person's access authority",{"label":21,"jp":485,"en":486},"[退職]{たいしょく:resignation}[金]{きん:payment}を[増額]{ぞうがく:increase}する","Increasing the resignation payment",{"label":25,"jp":488,"en":489},"[退職者]{たいしょくしゃ:resigning person}に[新]{あたら:new}しいパスワードを[発行]{はっこう:issue}する","Issuing a new password to the resigning person",{"label":29,"jp":491,"en":492},"[退職者]{たいしょくしゃ:resigning person}に[社内]{しゃない:internal}ネットワークへの[永続的]{えいぞくてき:permanent}なアクセス[権]{けん:right}を[付与]{ふよ:grant}する","Granting the resigning person permanent access to the internal network",{"en":494,"jp":495},"At resignation, access authority should be promptly deleted, IC cards and keys collected, and the continuation of confidentiality obligations confirmed.","[退職]{たいしょく:resignation}[時]{じ:time}には、[速]{すみ:promptly}やかにアクセス[権限]{けんげん:authority}を[削除]{さくじょ:delete}し、ICカードや[鍵]{かぎ:key}を[回収]{かいしゅう:collect}し、[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}[義務]{ぎむ:obligation}の[継続]{けいぞく:continuation}を[確認]{かくにん:confirm}する。",[497],"human-measures",{"id":499,"articleId":500,"question":501,"options":504,"correctLabel":21,"explanation":517,"tags":520},"kjh-mock-k2v3-q22","kjh-k2-h02-anzen-kanri-sochi",{"en":502,"jp":503},"Are directors included in the definition of \"employees\"?","[従業者]{じゅうぎょうしゃ:employees}の[定義]{ていぎ:definition}に[関]{かん:related}して、[取締役]{とりしまりやく:directors}は「[従業者]{じゅうぎょうしゃ:employee}」に[含]{ふく:include}まれるか。",[505,508,511,514],{"label":17,"jp":506,"en":507},"[含]{ふく:included}まれない","Not included",{"label":21,"jp":509,"en":510},"[含]{ふく:included}まれる","Included",{"label":25,"jp":512,"en":513},"[代表]{だいひょう:representative}[取締役]{とりしまりやく:director}のみ[含]{ふく:included}まれる","Only the representative director is included",{"label":29,"jp":515,"en":516},"[社外]{しゃがい:outside}[取締役]{とりしまりやく:director}のみ[含]{ふく:included}まれる","Only outside directors are included",{"en":518,"jp":519},"\"Employees\" under the Act includes all persons working under the operator's direction\u002Fsupervision regardless of employment relationship, and directors are included.","[個人情報]{こじんじょうほう:personal information}[保護法]{ほごほう:protection act}における「[従業者]{じゅうぎょうしゃ:employees}」は、[雇用]{こよう:employment}[関係]{かんけい:relationship}の[有無]{うむ:presence\u002Fabsence}を[問]{と:regardless}わず[事業者]{じぎょうしゃ:operator}の[指揮]{しき:direction}[監督]{かんとく:supervision}[下]{か:under}で[業務]{ぎょうむ:work}に[従事]{じゅうじ:engage}する[者]{もの:persons}で、[取締役]{とりしまりやく:directors}も[含]{ふく:included}まれる。",[521],"employee-definition",{"id":523,"articleId":476,"question":524,"options":527,"correctLabel":17,"explanation":540,"tags":543},"kjh-mock-k2v3-q23",{"en":525,"jp":526},"Which is an appropriate item to establish at the \"contract\" stage of subcontractor supervision?","[委託先]{いたくさき:subcontractor}の[監督]{かんとく:supervision}における「[契約]{けいやく:contract}」の[段階]{だんかい:stage}で[定]{さだ:establish}めるべき[事項]{じこう:items}として[適切]{てきせつ:appropriate}なものはどれか。",[528,531,534,537],{"label":17,"jp":529,"en":530},"[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}い[範囲]{はんい:scope}の[明確化]{めいかくか:clarification}","Clarifying the scope of personal data handling",{"label":21,"jp":532,"en":533},"[委託先]{いたくさき:subcontractor}[社員]{しゃいん:employees}の[血液型]{けつえきがた:blood type}の[確認]{かくにん:verification}","Verifying subcontractor employees' blood types",{"label":25,"jp":535,"en":536},"[委託先]{いたくさき:subcontractor}[社長]{しゃちょう:CEO}の[趣味]{しゅみ:hobbies}の[把握]{はあく:grasp}","Grasping the subcontractor CEO's hobbies",{"label":29,"jp":538,"en":539},"[委託先]{いたくさき:subcontractor}オフィスの[壁]{かべ:wall}の[色]{いろ:color}の[指定]{してい:specification}","Specifying the wall color of the subcontractor's office",{"en":541,"jp":542},"Outsourcing contracts should clearly establish the scope of personal data handling, confidentiality, sub-subcontracting restrictions, incident reporting, and data processing at contract termination.","[委託]{いたく:outsourcing}[契約]{けいやく:contract}では、[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}い[範囲]{はんい:scope}、[秘密]{ひみつ:confidentiality}[保持]{ほじ:maintenance}、[再委託]{さいいたく:sub-subcontracting}の[制限]{せいげん:restrictions}、[事故]{じこ:incident}[時]{じ:time}の[報告]{ほうこく:reporting}、[契約]{けいやく:contract}[終了]{しゅうりょう:termination}[時]{じ:time}のデータ[処理]{しょり:processing}などを[明確]{めいかく:clearly}に[定]{さだ:establish}める。",[544],"subcontractor-contract",{"id":546,"articleId":476,"question":547,"options":550,"correctLabel":17,"explanation":563,"tags":566},"kjh-mock-k2v3-q24",{"en":548,"jp":549},"What measure should the outsourcer take regarding sub-subcontracting?","[再委託]{さいいたく:sub-subcontracting}に[関]{かん:related}して、[委託元]{いたくもと:outsourcer}が[講]{こう:take}ずべき[措置]{そち:measure}はどれか。",[551,554,557,560],{"label":17,"jp":552,"en":553},"[再委託]{さいいたく:sub-subcontracting}の[有無]{うむ:presence\u002Fabsence}を[把握]{はあく:grasp}し、[再委託先]{さいいたくさき:sub-subcontractor}にも[適切]{てきせつ:appropriate}な[監督]{かんとく:supervision}を[行]{おこな:conduct}う","Grasping the existence of sub-subcontracting and conducting appropriate supervision of the sub-subcontractor",{"label":21,"jp":555,"en":556},"[再委託]{さいいたく:sub-subcontracting}は[委託先]{いたくさき:subcontractor}の[自由]{じゆう:freedom}なので[関与]{かんよ:involvement}[不要]{ふよう:unnecessary}","Sub-subcontracting is the subcontractor's freedom, so involvement is unnecessary",{"label":25,"jp":558,"en":559},"[再委託先]{さいいたくさき:sub-subcontractor}のことは[一切]{いっさい:at all}[把握]{はあく:grasp}する[必要]{ひつよう:need}がない","There is no need to grasp anything about the sub-subcontractor",{"label":29,"jp":561,"en":562},"[再委託]{さいいたく:sub-subcontracting}があっても[契約]{けいやく:contract}は[変更]{へんこう:change}しなくてよい","The contract need not change even if there is sub-subcontracting",{"en":564,"jp":565},"The outsourcer needs to grasp the existence of sub-subcontracting and supervise to ensure appropriate safety management at the sub-subcontractor.","[委託元]{いたくもと:outsourcer}は[再委託]{さいいたく:sub-subcontracting}の[有無]{うむ:existence}を[把握]{はあく:grasp}し、[再委託先]{さいいたくさき:sub-subcontractor}についても[安全]{あんぜん:safety}[管理]{かんり:management}が[適切]{てきせつ:appropriate}に[行]{おこな:carried out}われるよう[監督]{かんとく:supervision}する[必要]{ひつよう:need}がある。",[567],"sub-subcontracting",{"id":569,"articleId":500,"question":570,"options":573,"correctLabel":21,"explanation":586,"tags":589},"kjh-mock-k2v3-q25",{"en":571,"jp":572},"Which is an appropriate recurrence prevention measure for leakage incidents?","[漏]{ろう:leak}えい[事故]{じこ:incident}の[再発]{さいはつ:recurrence}[防止策]{ぼうしさく:prevention measures}として[適切]{てきせつ:appropriate}なものはどれか。",[574,577,580,583],{"label":17,"jp":575,"en":576},"[原因]{げんいん:cause}を[特定]{とくてい:identify}せず[同]{おな:same}じ[運用]{うんよう:operation}を[続]{つづ:continue}ける","Continuing the same operation without identifying the cause",{"label":21,"jp":578,"en":579},"[原因]{げんいん:cause}を[分析]{ぶんせき:analyze}し、[技術的]{ぎじゅつてき:technical}・[組織的]{そしきてき:organizational}・[人的]{じんてき:human}[対策]{たいさく:measures}を[見直]{みなお:review}す","Analyzing the cause and reviewing technical, organizational, and human measures",{"label":25,"jp":581,"en":582},"[担当者]{たんとうしゃ:person in charge}を[配置]{はいち:transfer}[転換]{てんかん:change}するだけでよい","Simply transferring the person in charge is sufficient",{"label":29,"jp":584,"en":585},"[事故]{じこ:incident}の[報告]{ほうこく:report}を[行]{おこな:carry out}わない","Not reporting the incident",{"en":587,"jp":588},"Recurrence prevention requires analyzing the root cause and comprehensively reviewing measures from technical, organizational, and human perspectives. Response without cause identification is insufficient.","[再発]{さいはつ:recurrence}[防止]{ぼうし:prevention}には、[根本]{こんぽん:root}[原因]{げんいん:cause}を[分析]{ぶんせき:analyze}し、[技術的]{ぎじゅつてき:technical}・[組織的]{そしきてき:organizational}・[人的]{じんてき:human}な[側面]{そくめん:aspects}から[総合的]{そうごうてき:comprehensively}に[対策]{たいさく:measures}を[見直]{みなお:review}す[必要]{ひつよう:need}がある。[原因]{げんいん:cause}[特定]{とくてい:identification}なしの[対応]{たいおう:response}は[不十分]{ふじゅうぶん:insufficient}。",[590],"incident-response",{"id":592,"articleId":476,"question":593,"options":596,"correctLabel":29,"explanation":609,"tags":612},"kjh-mock-k2v3-q26",{"en":594,"jp":595},"Which is NOT an appropriate theme for education and training?","[教育]{きょういく:education}・[研修]{けんしゅう:training}のテーマとして[適切]{てきせつ:appropriate}でないものはどれか。",[597,600,603,606],{"label":17,"jp":598,"en":599},"[個人情報]{こじんじょうほう:personal information}[保護法]{ほごほう:protection act}の[概要]{がいよう:overview}","Overview of the Personal Information Protection Act",{"label":21,"jp":601,"en":602},"[社内]{しゃない:internal}[規程]{きてい:regulations}の[内容]{ないよう:content}","Content of internal regulations",{"label":25,"jp":604,"en":605},"[漏]{ろう:leak}えい[事故]{じこ:incident}の[事例]{じれい:case studies}と[対策]{たいさく:countermeasures}","Case studies and countermeasures for leakage incidents",{"label":29,"jp":607,"en":608},"[競合]{きょうごう:competitor}[他社]{たしゃ:company}の[売上]{うりあげ:sales}[戦略]{せんりゃく:strategy}","Sales strategies of competitor companies",{"en":610,"jp":611},"Education\u002Ftraining on personal information protection covers legal overviews, internal regulations, incident cases, and security awareness improvement. Competitor sales strategies are unrelated.","[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}に[関]{かん:related}する[教育]{きょういく:education}・[研修]{けんしゅう:training}は、[法令]{ほうれい:laws}の[概要]{がいよう:overview}、[社内]{しゃない:internal}[規程]{きてい:regulations}、[事故]{じこ:incident}[事例]{じれい:cases}、セキュリティ[意識]{いしき:awareness}の[向上]{こうじょう:improvement}などをテーマとする。[競合]{きょうごう:competitor}の[売上]{うりあげ:sales}[戦略]{せんりゃく:strategy}は[無関係]{むかんけい:unrelated}。",[497],{"id":614,"articleId":476,"question":615,"options":618,"correctLabel":17,"explanation":631,"tags":634},"kjh-mock-k2v3-q27",{"en":616,"jp":617},"Which is an example of \"establishment of rules\" in organizational safety management measures?","[組織的]{そしきてき:organizational}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}における「[規律]{きりつ:rules}の[整備]{せいび:establishment}」の[例]{れい:example}はどれか。",[619,622,625,628],{"label":17,"jp":620,"en":621},"[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}い[手順]{てじゅん:procedure}を[文書化]{ぶんしょか:document}する","Documenting personal data handling procedures",{"label":21,"jp":623,"en":624},"サーバルームに[監視]{かんし:surveillance}カメラを[設置]{せっち:install}する","Installing surveillance cameras in the server room",{"label":25,"jp":626,"en":627},"ファイアウォールのルールを[設定]{せってい:configure}する","Configuring firewall rules",{"label":29,"jp":629,"en":630},"[従業者]{じゅうぎょうしゃ:employees}に[生体]{せいたい:biometric}[認証]{にんしょう:authentication}を[導入]{どうにゅう:introduce}する","Introducing biometric authentication for employees",{"en":632,"jp":633},"\"Establishment of rules\" means documenting personal data handling procedures and regulations, clarifying rules employees should comply with. B is a physical measure; C and D are technical measures.","「[規律]{きりつ:rules}の[整備]{せいび:establishment}」は、[個人]{こじん:personal}データの[取扱]{とりあつかい:handling}い[手順]{てじゅん:procedures}や[規程]{きてい:regulations}を[文書化]{ぶんしょか:document}し、[従業者]{じゅうぎょうしゃ:employees}が[遵守]{じゅんしゅ:comply}すべき[規律]{きりつ:rules}を[明確]{めいかく:clarify}にすること。イは[物理的]{ぶつりてき:physical}[措置]{そち:measures}、ウ・エは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}。",[473],{"id":636,"articleId":500,"question":637,"options":640,"correctLabel":17,"explanation":653,"tags":656},"kjh-mock-k2v3-q28",{"en":638,"jp":639},"Which is appropriate to record in complaint handling?","[苦情]{くじょう:complaint}[処理]{しょり:handling}で[記録]{きろく:record}すべき[事項]{じこう:item}として[適切]{てきせつ:appropriate}なものはどれか。",[641,644,647,650],{"label":17,"jp":642,"en":643},"[苦情]{くじょう:complaint}の[内容]{ないよう:content}、[受付]{うけつけ:receipt}[日]{び:date}、[対応]{たいおう:response}[結果]{けっか:result}","Complaint content, receipt date, and response result",{"label":21,"jp":645,"en":646},"[苦情]{くじょう:complaint}[申]{もう:applicant}し[出人]{でにん:person}の[年収]{ねんしゅう:annual income}","The annual income of the complaint applicant",{"label":25,"jp":648,"en":649},"[苦情]{くじょう:complaint}とは[無関係]{むかんけい:unrelated}な[社内]{しゃない:internal}のゴシップ","Internal gossip unrelated to the complaint",{"label":29,"jp":651,"en":652},"[対応]{たいおう:response}[担当者]{たんとうしゃ:person in charge}の[昼食]{ちゅうしょく:lunch}メニュー","The lunch menu of the response person in charge",{"en":654,"jp":655},"In complaint handling, recording the complaint content, receipt date\u002Ftime, response progress, and result is important for utilizing in improvements.","[苦情]{くじょう:complaint}[処理]{しょり:handling}では、[苦情]{くじょう:complaint}の[内容]{ないよう:content}、[受付]{うけつけ:receipt}[日時]{にちじ:date and time}、[対応]{たいおう:response}[経過]{けいか:progress}、[結果]{けっか:result}を[記録]{きろく:record}し、[改善]{かいぜん:improvement}に[活]{い:utilize}かすことが[重要]{じゅうよう:important}。",[657],"complaint-handling",{"id":659,"articleId":249,"question":660,"options":663,"correctLabel":29,"explanation":676,"tags":679},"kjh-mock-k2v3-q29",{"en":661,"jp":662},"Which is NOT an appropriate element to identify in risk analysis?","リスク[分析]{ぶんせき:analysis}で[特定]{とくてい:identify}すべき[要素]{ようそ:elements}として[適切]{てきせつ:appropriate}でないものはどれか。",[664,667,670,673],{"label":17,"jp":665,"en":666},"[情報]{じょうほう:information}[資産]{しさん:assets}","Information assets",{"label":21,"jp":668,"en":669},"[脅威]{きょうい:threats}","Threats",{"label":25,"jp":671,"en":672},"[脆弱性]{ぜいじゃくせい:vulnerabilities}","Vulnerabilities",{"label":29,"jp":674,"en":675},"[社員]{しゃいん:employee}の[血液型]{けつえきがた:blood type}","Employees' blood types",{"en":677,"jp":678},"Risk analysis identifies information assets, threats, and vulnerabilities, evaluating risk from their combination. Blood type is not a risk analysis element.","リスク[分析]{ぶんせき:analysis}では、[情報]{じょうほう:information}[資産]{しさん:assets}、[脅威]{きょうい:threats}、[脆弱性]{ぜいじゃくせい:vulnerabilities}を[特定]{とくてい:identify}し、それらの[組]{く:combination}み[合]{あ:together}わせからリスクを[評価]{ひょうか:evaluate}する。[血液型]{けつえきがた:blood type}はリスク[分析]{ぶんせき:analysis}の[要素]{ようそ:element}ではない。",[427],{"id":681,"articleId":476,"question":682,"options":685,"correctLabel":17,"explanation":698,"tags":701},"kjh-mock-k2v3-q30",{"en":683,"jp":684},"Which is an appropriate role for the personal information protection manager?","[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[管理者]{かんりしゃ:manager}の[役割]{やくわり:role}として[適切]{てきせつ:appropriate}なものはどれか。",[686,689,692,695],{"label":17,"jp":687,"en":688},"[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[実施]{じっし:implementation}[状況]{じょうきょう:status}を[統括]{とうかつ:oversee}し、[監督]{かんとく:supervise}する","Overseeing and supervising the implementation status of safety management measures",{"label":21,"jp":690,"en":691},"[全]{すべ:all}てのパスワードを[一人]{ひとり:alone}で[管理]{かんり:manage}する","Managing all passwords alone",{"label":25,"jp":693,"en":694},"[個人情報]{こじんじょうほう:personal information}に[関]{かん:related}する[全]{すべ:all}ての[業務]{ぎょうむ:operations}を[一人]{ひとり:alone}で[行]{おこな:carry out}う","Carrying out all personal information-related operations alone",{"label":29,"jp":696,"en":697},"[外部]{がいぶ:external}[委託先]{いたくさき:subcontractors}との[契約]{けいやく:contracts}には[関与]{かんよ:involve}しない","Not involved in contracts with external subcontractors",{"en":699,"jp":700},"The PI protection manager oversees and supervises the implementation of safety management measures. They do not carry out all operations alone but establish an organizational structure.","[個人情報]{こじんじょうほう:personal information}[保護]{ほご:protection}[管理者]{かんりしゃ:manager}は、[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の[実施]{じっし:implementation}[状況]{じょうきょう:status}を[統括]{とうかつ:oversee}・[監督]{かんとく:supervise}する[責任者]{せきにんしゃ:responsible person}。[全]{すべ:all}ての[業務]{ぎょうむ:operations}を[一人]{ひとり:alone}で[行]{おこな:carry out}うのではなく、[組織的]{そしきてき:organizationally}に[体制]{たいせい:structure}を[整備]{せいび:establish}する。",[473],{"id":703,"articleId":704,"question":705,"options":708,"correctLabel":21,"explanation":721,"tags":724},"kjh-mock-k2v3-q31","kjh-k2-h03-office",{"en":706,"jp":707},"Which is appropriate to place in a \"managed zone\"?","ゾーニングにおける「[管理]{かんり:managed}[区域]{くいき:zone}」に[配置]{はいち:place}するのが[適切]{てきせつ:appropriate}なものはどれか。",[709,712,715,718],{"label":17,"jp":710,"en":711},"[来客]{らいきゃく:visitor}[用]{よう:for}パンフレット","Visitor pamphlets",{"label":21,"jp":713,"en":714},"[個人情報]{こじんじょうほう:personal information}データベースサーバ","Personal information database server",{"label":25,"jp":716,"en":717},"[自動]{じどう:automatic}[販売]{はんばい:vending}[機]{き:machine}","Vending machine",{"label":29,"jp":719,"en":720},"[社外]{しゃがい:external}[向]{む:for}け[掲示板]{けいじばん:bulletin board}","External bulletin board",{"en":722,"jp":723},"The managed zone is for installing information systems handling personal data, requiring entry\u002Fexit management. Database servers should be placed in the managed zone.","[管理]{かんり:managed}[区域]{くいき:zone}は[個人]{こじん:personal}データを[取]{と:handle}り[扱]{あつか:handle}う[情報]{じょうほう:information}システムを[設置]{せっち:install}する[区域]{くいき:zone}で、[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}が[必要]{ひつよう:necessary}。データベースサーバは[管理]{かんり:managed}[区域]{くいき:zone}に[配置]{はいち:place}すべき。",[725],"security-zoning",{"id":727,"articleId":704,"question":728,"options":731,"correctLabel":29,"explanation":744,"tags":747},"kjh-mock-k2v3-q32",{"en":729,"jp":730},"Which is NOT an appropriate entry\u002Fexit management method?","[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}の[方法]{ほうほう:method}として[適切]{てきせつ:appropriate}でないものはどれか。",[732,735,738,741],{"label":17,"jp":733,"en":734},"ICカードによる[認証]{にんしょう:authentication}","IC card authentication",{"label":21,"jp":736,"en":737},"[暗証]{あんしょう:PIN}[番号]{ばんごう:number}による[認証]{にんしょう:authentication}","PIN number authentication",{"label":25,"jp":739,"en":740},"[生体]{せいたい:biometric}[認証]{にんしょう:authentication}","Biometric authentication",{"label":29,"jp":742,"en":743},"ドアを[常時]{じょうじ:constantly}[開放]{かいほう:open}にしておく","Keeping the door constantly open",{"en":745,"jp":746},"Keeping the door constantly open allows anyone to enter\u002Fexit freely, making it inappropriate for entry\u002Fexit management. IC card, PIN, and biometric authentication are all appropriate methods.","ドアを[常時]{じょうじ:constantly}[開放]{かいほう:open}すると[誰]{だれ:anyone}でも[自由]{じゆう:freely}に[出入]{でい:enter\u002Fexit}りできるため、[入退室]{にゅうたいしつ:entry\u002Fexit}[管理]{かんり:management}として[不適切]{ふてきせつ:inappropriate}。ICカード、[暗証]{あんしょう:PIN}[番号]{ばんごう:number}、[生体]{せいたい:biometric}[認証]{にんしょう:authentication}はいずれも[適切]{てきせつ:appropriate}な[方法]{ほうほう:methods}。",[748],"entry-exit-management",{"id":750,"articleId":476,"question":751,"options":754,"correctLabel":17,"explanation":767,"tags":770},"kjh-mock-k2v3-q33",{"en":752,"jp":753},"Which correctly enumerates the four items of physical safety management measures?","[物理的]{ぶつりてき:physical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の4[項目]{こうもく:items}を[正]{ただ:correctly}しく[列挙]{れっきょ:enumerate}しているものはどれか。",[755,758,761,764],{"label":17,"jp":756,"en":757},"[管理]{かんり:managed}[区域]{くいき:zone}の[管理]{かんり:management}、[取扱]{とりあつかい:handling}[区域]{くいき:zone}の[管理]{かんり:management}、[盗難]{とうなん:theft}[防止]{ぼうし:prevention}、[電子]{でんし:electronic}[媒体]{ばいたい:media}[廃棄]{はいき:disposal}[時]{じ:time}の[措置]{そち:measures}","Managed zone management, handling zone management, theft prevention, measures for electronic media disposal",{"label":21,"jp":759,"en":760},"ファイアウォール、IDS、VPN、[暗号化]{あんごうか:encryption}","Firewall, IDS, VPN, encryption",{"label":25,"jp":762,"en":763},"[教育]{きょういく:education}、[研修]{けんしゅう:training}、[秘密]{ひみつ:confidentiality}[契約]{けいやく:agreements}、[懲戒]{ちょうかい:discipline}","Education, training, confidentiality agreements, discipline",{"label":29,"jp":765,"en":766},"[体制]{たいせい:structure}[整備]{せいび:establishment}、[規律]{きりつ:rules}[整備]{せいび:establishment}、[状況]{じょうきょう:status}[把握]{はあく:grasp}、[見直]{みなお:review}し","Structure establishment, rules establishment, status grasp, review",{"en":768,"jp":769},"The 4 physical items are: managed zone management, handling zone management, equipment\u002Fmedia theft prevention, and media disposal measures. B is technical, C is human, D is organizational.","[物理的]{ぶつりてき:physical}[安全]{あんぜん:safety}[管理]{かんり:management}[措置]{そち:measures}の4[項目]{こうもく:items}は、①[管理]{かんり:managed}[区域]{くいき:zone}の[管理]{かんり:management}、②[取扱]{とりあつかい:handling}[区域]{くいき:zone}の[管理]{かんり:management}、③[機器]{きき:equipment}・[電子]{でんし:electronic}[媒体]{ばいたい:media}の[盗難]{とうなん:theft}[防止]{ぼうし:prevention}、④[電子]{でんし:electronic}[媒体]{ばいたい:media}[廃棄]{はいき:disposal}[時]{じ:time}の[措置]{そち:measures}。イは[技術的]{ぎじゅつてき:technical}[措置]{そち:measures}、ウは[人的]{じんてき:human}[措置]{そち:measures}、エは[組織的]{そしきてき:organizational}[措置]{そち:measures}。",[771],"physical-measures",{"id":773,"articleId":704,"question":774,"options":777,"correctLabel":17,"explanation":790,"tags":793},"kjh-mock-k2v3-q34",{"en":775,"jp":776},"Which correctly describes magnetic erasure (degaussing)?","[磁気]{じき:magnetic}[消去]{しょうきょ:erasure}（デガウス）の[説明]{せつめい:description}として[正]{ただ:correct}しいものはどれか。",[778,781,784,787],{"label":17,"jp":779,"en":780},"[強力]{きょうりょく:powerful}な[磁気]{じき:magnetic}を[当]{あ:apply}ててハードディスクのデータを[消去]{しょうきょ:erase}する","Applying a powerful magnetic field to erase hard disk data",{"label":21,"jp":782,"en":783},"ファイルをごみ[箱]{ばこ:box}に[移動]{いどう:move}する","Moving files to the recycle bin",{"label":25,"jp":785,"en":786},"ディスクを[水]{みず:water}で[洗]{あら:wash}う","Washing the disk with water",{"label":29,"jp":788,"en":789},"パスワードを[変更]{へんこう:change}する","Changing the password",{"en":791,"jp":792},"Degaussing applies a powerful magnetic field to erase data on magnetic recording media. However, it has no effect on flash memory like SSDs. It is desirable to use concurrently with physical destruction or software erasure.","デガウスは、[強力]{きょうりょく:powerful}な[磁気]{じき:magnetic}を[当]{あ:apply}てて[磁気]{じき:magnetic}[記録]{きろく:recording}[媒体]{ばいたい:media}のデータを[消去]{しょうきょ:erase}する[方法]{ほうほう:method}。ただしSSDなどフラッシュメモリには[効果]{こうか:effect}がない。[物理的]{ぶつりてき:physical}[破壊]{はかい:destruction}やソフトウェア[消去]{しょうきょ:erasure}と[併用]{へいよう:use concurrently}することが[望]{のぞ:desirable}ましい。",[794],"data-erasure",{"id":796,"articleId":704,"question":797,"options":800,"correctLabel":17,"explanation":813,"tags":816},"kjh-mock-k2v3-q35",{"en":798,"jp":799},"What is the most appropriate purpose of BCP formulation?","BCP[策定]{さくてい:formulation}の[目的]{もくてき:purpose}として[最]{もっと:most}も[適切]{てきせつ:appropriate}なものはどれか。",[801,804,807,810],{"label":17,"jp":802,"en":803},"[災害]{さいがい:disaster}や[緊急]{きんきゅう:emergency}[事態]{じたい:situation}[発生]{はっせい:occurrence}[時]{じ:time}に[事業]{じぎょう:business}の[継続]{けいぞく:continuity}・[早期]{そうき:early}[復旧]{ふっきゅう:recovery}を[図]{はか:achieve}る","Achieving business continuity and early recovery during disasters and emergencies",{"label":21,"jp":805,"en":806},"[売上]{うりあげ:sales}を[最大化]{さいだいか:maximize}する","Maximizing sales",{"label":25,"jp":808,"en":809},"[新商品]{しんしょうひん:new product}を[開発]{かいはつ:develop}する","Developing new products",{"label":29,"jp":811,"en":812},"[従業者]{じゅうぎょうしゃ:employees}の[福利]{ふくり:welfare}[厚生]{こうせい:benefits}を[充実]{じゅうじつ:enhance}させる","Enhancing employee welfare benefits",{"en":814,"jp":815},"BCP (Business Continuity Plan) is a plan to continue critical business operations or achieve early recovery during disasters and emergencies.","BCP（[事業]{じぎょう:business}[継続]{けいぞく:continuity}[計画]{けいかく:plan}）は、[災害]{さいがい:disaster}や[緊急]{きんきゅう:emergency}[事態]{じたい:situation}が[発生]{はっせい:occur}した[際]{さい:when}に、[重要]{じゅうよう:critical}な[事業]{じぎょう:business}を[継続]{けいぞく:continue}し、または[早期]{そうき:early}に[復旧]{ふっきゅう:recover}するための[計画]{けいかく:plan}。",[817],"BCP",{"id":819,"articleId":704,"question":820,"options":823,"correctLabel":21,"explanation":836,"tags":839},"kjh-mock-k2v3-q36",{"en":821,"jp":822},"Which correctly describes a characteristic of a cold site?","コールドサイトの[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[824,827,830,833],{"label":17,"jp":825,"en":826},"[即時]{そくじ:immediate}[切替]{きりかえ:switchover}が[可能]{かのう:possible}","Immediate switchover is possible",{"label":21,"jp":828,"en":829},"[設備]{せつび:facilities}はあるがデータや[要員]{よういん:personnel}の[準備]{じゅんび:preparation}に[時間]{じかん:time}がかかる","Facilities exist but data and personnel preparation takes time",{"label":25,"jp":831,"en":832},"コストが[最]{もっと:most}も[高]{たか:expensive}い","Most expensive",{"label":29,"jp":834,"en":835},"ホットサイトと[同]{おな:same}じ[機能]{きのう:function}を[持]{も:have}つ","Has the same functions as a hot site",{"en":837,"jp":838},"A cold site has basic facilities (power, network lines) but equipment installation, data restoration, and personnel placement take time. It has the lowest cost.","コールドサイトは[基本的]{きほんてき:basic}な[設備]{せつび:facilities}（[電源]{でんげん:power}、ネットワーク[回線]{かいせん:lines}など）はあるが、[機器]{きき:equipment}の[設置]{せっち:installation}やデータの[復元]{ふくげん:restoration}、[要員]{よういん:personnel}の[配置]{はいち:placement}に[時間]{じかん:time}がかかる。コストは[最]{もっと:most}も[低]{ひく:low}い。",[840,817],"DR-site",{"id":842,"articleId":704,"question":843,"options":846,"correctLabel":17,"explanation":859,"tags":862},"kjh-mock-k2v3-q37",{"en":844,"jp":845},"What is the correct purpose of the clear desk policy?","クリアデスクポリシーの[目的]{もくてき:purpose}として[正]{ただ:correct}しいものはどれか。",[847,850,853,856],{"label":17,"jp":848,"en":849},"[机上]{きじょう:desktop}に[放置]{ほうち:leave unattended}された[機密]{きみつ:confidential}[書類]{しょるい:documents}からの[情報]{じょうほう:information}[漏]{ろう:leak}えいを[防止]{ぼうし:prevent}する","Preventing information leakage from confidential documents left unattended on desktops",{"label":21,"jp":851,"en":852},"デスクを[美]{うつく:beautifully}しく[保]{たも:maintain}つ","Keeping desks beautiful",{"label":25,"jp":854,"en":855},"デスクの[耐久性]{たいきゅうせい:durability}を[向上]{こうじょう:improve}させる","Improving desk durability",{"label":29,"jp":857,"en":858},"[従業者]{じゅうぎょうしゃ:employees}の[集中力]{しゅうちゅうりょく:concentration}を[高]{たか:increase}める","Increasing employees' concentration",{"en":860,"jp":861},"Clear desk policy means storing and locking confidential documents and recording media from desktops when leaving the office or seat, to prevent information leakage.","クリアデスクポリシーは、[退社]{たいしゃ:leaving office}[時]{じ:time}や[離席]{りせき:leaving seat}[時]{じ:time}に[机上]{きじょう:desktop}の[機密]{きみつ:confidential}[書類]{しょるい:documents}や[記録]{きろく:recording}[媒体]{ばいたい:media}を[施錠]{せじょう:lock}[保管]{ほかん:store}し、[情報]{じょうほう:information}[漏]{ろう:leak}えいを[防止]{ぼうし:prevent}するためのもの。",[863],"clear-desk-screen",{"id":865,"articleId":704,"question":866,"options":869,"correctLabel":17,"explanation":882,"tags":885},"kjh-mock-k2v3-q38",{"en":867,"jp":868},"Which is an appropriate measure for managing the carrying out of electronic media?","[電子]{でんし:electronic}[媒体]{ばいたい:media}の[持]{も:carry}ち[出]{だ:out}し[管理]{かんり:management}として[適切]{てきせつ:appropriate}なものはどれか。",[870,873,876,879],{"label":17,"jp":871,"en":872},"[持]{も:carry}ち[出]{だ:out}し[記録]{きろく:record}を[作成]{さくせい:create}し、[暗号化]{あんごうか:encryption}などの[措置]{そち:measures}を[施]{ほどこ:apply}す","Creating a carry-out record and applying measures such as encryption",{"label":21,"jp":874,"en":875},"[自由]{じゆう:freely}に[持]{も:carry}ち[出]{だ:out}せるようにする","Making it freely carry-outable",{"label":25,"jp":877,"en":878},"USBメモリを[全員]{ぜんいん:everyone}に[配布]{はいふ:distribute}する","Distributing USB sticks to everyone",{"label":29,"jp":880,"en":881},"[持]{も:carry}ち[出]{だ:out}し[時]{じ:time}は[上長]{じょうちょう:supervisor}の[承認]{しょうにん:approval}は[不要]{ふよう:unnecessary}","Supervisor approval is unnecessary when carrying out",{"en":883,"jp":884},"Carrying out electronic media requires record creation, supervisor approval, and encryption. Free carry-out poses a high leakage risk.","[電子]{でんし:electronic}[媒体]{ばいたい:media}の[持]{も:carry}ち[出]{だ:out}しには、[記録]{きろく:record}の[作成]{さくせい:creation}、[上長]{じょうちょう:supervisor}の[承認]{しょうにん:approval}、[暗号化]{あんごうか:encryption}の[実施]{じっし:implementation}が[必要]{ひつよう:necessary}。[自由]{じゆう:free}な[持]{も:carry}ち[出]{だ:out}しは[漏]{ろう:leak}えいリスクが[高]{たか:high}い。",[771],{"id":887,"articleId":704,"question":888,"options":891,"correctLabel":29,"explanation":904,"tags":907},"kjh-mock-k2v3-q39",{"en":889,"jp":890},"Which is NOT an appropriate disaster countermeasure?","[災害]{さいがい:disaster}[対策]{たいさく:measures}として[適切]{てきせつ:appropriate}でないものはどれか。",[892,895,898,901],{"label":17,"jp":893,"en":894},"UPS（[無停電]{むていでん:uninterruptible}[電源]{でんげん:power supply}[装置]{そうち:device}）の[設置]{せっち:installation}","Installing a UPS (Uninterruptible Power Supply)",{"label":21,"jp":896,"en":897},"[耐震]{たいしん:earthquake-resistant}[固定]{こてい:securing}[具]{ぐ:equipment}によるサーバラックの[固定]{こてい:securing}","Securing server racks with earthquake-resistant equipment",{"label":25,"jp":899,"en":900},"[遠隔地]{えんかくち:remote location}へのバックアップ[保管]{ほかん:storage}","Storing backups at a remote location",{"label":29,"jp":902,"en":903},"[防災]{ぼうさい:disaster prevention}[訓練]{くんれん:drills}を[一切]{いっさい:at all}[行]{おこな:carry out}わない","Not conducting any disaster prevention drills",{"en":905,"jp":906},"Disaster measures include UPS installation, earthquake-resistant securing, remote backups, and periodic disaster prevention drills. Not conducting drills is a deficiency in measures.","[災害]{さいがい:disaster}[対策]{たいさく:measures}には、UPSの[設置]{せっち:installation}、[耐震]{たいしん:earthquake-resistant}[固定]{こてい:securing}、[遠隔地]{えんかくち:remote}バックアップ、[定期的]{ていきてき:periodic}な[防災]{ぼうさい:disaster prevention}[訓練]{くんれん:drills}が[含]{ふく:included}まれる。[訓練]{くんれん:drills}を[行]{おこな:conduct}わないことは[対策]{たいさく:measures}の[不備]{ふび:deficiency}。",[817],{"id":909,"articleId":704,"question":910,"options":913,"correctLabel":21,"explanation":926,"tags":929},"kjh-mock-k2v3-q40",{"en":911,"jp":912},"Where is installation of a privacy filter recommended?","[覗]{のぞ:peeking}き[見]{み:looking}[防止]{ぼうし:prevention}フィルター（プライバシーフィルター）の[設置]{せっち:installation}が[推奨]{すいしょう:recommended}される[場所]{ばしょ:place}はどれか。",[914,917,920,923],{"label":17,"jp":915,"en":916},"サーバルーム[内]{ない:within}の[監視]{かんし:monitoring}モニター","Monitoring monitors inside the server room",{"label":21,"jp":918,"en":919},"[外部]{がいぶ:external}の[人]{ひと:people}が[通]{とお:pass by}る[可能性]{かのうせい:possibility}のある[取扱]{とりあつかい:handling}[区域]{くいき:zone}のPC","PCs in handling zones where external people may pass by",{"label":25,"jp":921,"en":922},"[会議室]{かいぎしつ:meeting room}のプロジェクター","Meeting room projector",{"label":29,"jp":924,"en":925},"[社員]{しゃいん:employee}[食堂]{しょくどう:cafeteria}のテレビ","Television in the employee cafeteria",{"en":927,"jp":928},"Privacy filters are installed on PCs handling personal information in locations where external people may pass by, to prevent peeking.","プライバシーフィルターは、[外部]{がいぶ:external}の[人]{ひと:people}が[通]{とお:pass by}る[可能性]{かのうせい:possibility}のある[場所]{ばしょ:location}で[個人情報]{こじんじょうほう:personal information}を[取]{と:handle}り[扱]{あつか:handle}うPCに[設置]{せっち:install}し、[覗]{のぞ:peeking}き[見]{み:looking}を[防止]{ぼうし:prevent}する。",[771,930],"zoning",{"id":932,"articleId":933,"question":934,"options":937,"correctLabel":21,"explanation":950,"tags":953},"kjh-mock-k2v3-q41","kjh-k2-h04-gijutsu-kiso",{"en":935,"jp":936},"Which correctly describes a characteristic of hash functions?","ハッシュ[関数]{かんすう:function}の[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[938,941,944,947],{"label":17,"jp":939,"en":940},"ハッシュ[値]{ち:value}から[元]{もと:original}のデータを[容易]{ようい:easily}に[復元]{ふくげん:restore}できる","Original data can be easily restored from the hash value",{"label":21,"jp":942,"en":943},"[同]{おな:same}じデータからは[常]{つね:always}に[同]{おな:same}じハッシュ[値]{ち:value}が[得]{え:obtained}られ、[元]{もと:original}のデータの[復元]{ふくげん:restoration}は[困難]{こんなん:difficult}","The same hash value is always obtained from the same data, and restoring the original data is difficult",{"label":25,"jp":945,"en":946},"ハッシュ[値]{ち:value}のサイズは[元]{もと:original}データに[比例]{ひれい:proportional}する","Hash value size is proportional to the original data",{"label":29,"jp":948,"en":949},"[暗号化]{あんごうか:encryption}と[復号]{ふくごう:decryption}の[両方]{りょうほう:both}が[可能]{かのう:possible}","Both encryption and decryption are possible",{"en":951,"jp":952},"Hash functions are one-way functions that generate a fixed-length hash value from arbitrary-length data. The same input always produces the same output, but restoring original data from the hash is computationally difficult.","ハッシュ[関数]{かんすう:function}は、[任意]{にんい:arbitrary}の[長]{なが:length}さのデータから[固定]{こてい:fixed}[長]{ちょう:length}のハッシュ[値]{ち:value}を[生成]{せいせい:generate}する[一方向]{いちほうこう:one-way}[関数]{かんすう:function}。[同]{おな:same}じ[入力]{にゅうりょく:input}からは[常]{つね:always}に[同]{おな:same}じ[出力]{しゅつりょく:output}が[得]{え:obtained}られるが、ハッシュ[値]{ち:value}から[元]{もと:original}のデータを[復元]{ふくげん:restore}することは[計算上]{けいさんじょう:computationally}[困難]{こんなん:difficult}。",[954,955],"encryption","hash",{"id":957,"articleId":933,"question":958,"options":961,"correctLabel":21,"explanation":974,"tags":977},"kjh-mock-k2v3-q42",{"en":959,"jp":960},"Which correctly describes the mechanism of electronic signatures?","[電子]{でんし:electronic}[署名]{しょめい:signature}の[仕組]{しく:mechanism}みとして[正]{ただ:correct}しいものはどれか。",[962,965,968,971],{"label":17,"jp":963,"en":964},"[送信者]{そうしんしゃ:sender}が[公開鍵]{こうかいかぎ:public key}で[署名]{しょめい:sign}し、[受信者]{じゅしんしゃ:receiver}が[秘密鍵]{ひみつかぎ:private key}で[検証]{けんしょう:verify}する","Sender signs with public key; receiver verifies with private key",{"label":21,"jp":966,"en":967},"[送信者]{そうしんしゃ:sender}が[秘密鍵]{ひみつかぎ:private key}で[署名]{しょめい:sign}し、[受信者]{じゅしんしゃ:receiver}が[公開鍵]{こうかいかぎ:public key}で[検証]{けんしょう:verify}する","Sender signs with private key; receiver verifies with public key",{"label":25,"jp":969,"en":970},"[送信者]{そうしんしゃ:sender}と[受信者]{じゅしんしゃ:receiver}が[同]{おな:same}じ[鍵]{かぎ:key}を[使]{つか:use}う","Sender and receiver use the same key",{"label":29,"jp":972,"en":973},"ハッシュ[関数]{かんすう:function}は[使用]{しよう:used}しない","Hash functions are not used",{"en":975,"jp":976},"Electronic signatures work by the sender encrypting (signing) the message hash with their private key, and the receiver decrypting and verifying with the sender's public key.","[電子]{でんし:electronic}[署名]{しょめい:signature}は、[送信者]{そうしんしゃ:sender}がメッセージのハッシュ[値]{ち:value}を[秘密鍵]{ひみつかぎ:private key}で[暗号化]{あんごうか:encrypt}（[署名]{しょめい:sign}）し、[受信者]{じゅしんしゃ:receiver}が[送信者]{そうしんしゃ:sender}の[公開鍵]{こうかいかぎ:public key}で[復号]{ふくごう:decrypt}して[検証]{けんしょう:verify}する[仕組]{しく:mechanism}み。",[978],"digital-signature",{"id":980,"articleId":933,"question":981,"options":984,"correctLabel":25,"explanation":997,"tags":1000},"kjh-mock-k2v3-q43",{"en":982,"jp":983},"Which corresponds to \"Something you have\" among the three authentication factors?","[認証]{にんしょう:authentication}の3[要素]{ようそ:factors}のうち「Something you have」に[該当]{がいとう:applicable}するものはどれか。",[985,988,991,994],{"label":17,"jp":986,"en":987},"パスワード","Password",{"label":21,"jp":989,"en":990},"[指紋]{しもん:fingerprint}","Fingerprint",{"label":25,"jp":992,"en":993},"ワンタイムパスワード[生成]{せいせい:generating}トークン","One-time password generating token",{"label":29,"jp":995,"en":996},"[秘密]{ひみつ:secret}の[質問]{しつもん:question}の[答]{こた:answer}え","Answer to a secret question",{"en":998,"jp":999},"\"Something you have\" (possession) includes IC cards, OTP tokens, and smartphones. Passwords and secret questions are \"something you know\" (knowledge); fingerprints are \"something you are\" (biometric).","「Something you have」（[所持]{しょじ:possession}[情報]{じょうほう:information}）には、ICカード、ワンタイムパスワードトークン、スマートフォンなどが[該当]{がいとう:applicable}する。パスワードや[秘密]{ひみつ:secret}の[質問]{しつもん:question}は「Something you know」（[知識]{ちしき:knowledge}）、[指紋]{しもん:fingerprint}は「Something you are」（[生体]{せいたい:biometric}）。",[1001],"authentication",{"id":1003,"articleId":933,"question":1004,"options":1007,"correctLabel":21,"explanation":1020,"tags":1023},"kjh-mock-k2v3-q44",{"en":1005,"jp":1006},"Which correctly describes the relationship between FAR and FRR?","FARとFRRの[関係]{かんけい:relationship}として[正]{ただ:correct}しいものはどれか。",[1008,1011,1014,1017],{"label":17,"jp":1009,"en":1010},"FARを[下]{さ:lower}げるとFRRも[下]{さ:lower}がる","Lowering FAR also lowers FRR",{"label":21,"jp":1012,"en":1013},"FARを[下]{さ:lower}げるとFRRが[上]{あ:rise}がるトレードオフの[関係]{かんけい:relationship}がある","Lowering FAR raises FRR in a trade-off relationship",{"label":25,"jp":1015,"en":1016},"FARとFRRは[常]{つね:always}に[同]{おな:same}じ[値]{ち:value}になる","FAR and FRR always have the same value",{"label":29,"jp":1018,"en":1019},"FARとFRRは[無関係]{むかんけい:unrelated}","FAR and FRR are unrelated",{"en":1021,"jp":1022},"Lowering FAR (stricter security) raises FRR (genuine person more likely rejected), a trade-off relationship. Lowering both simultaneously is difficult.","FARを[下]{さ:lower}げる（セキュリティを[厳]{きび:strict}しくする）とFRRが[上]{あ:rise}がり（[本人]{ほんにん:genuine person}が[拒否]{きょひ:rejected}されやすくなる）、トレードオフの[関係]{かんけい:relationship}がある。[両方]{りょうほう:both}を[同時]{どうじ:simultaneously}に[下]{さ:lower}げることは[困難]{こんなん:difficult}。",[1024,1025],"biometric-authentication","FAR-FRR",{"id":1027,"articleId":933,"question":1028,"options":1031,"correctLabel":17,"explanation":1044,"tags":1047},"kjh-mock-k2v3-q45",{"en":1029,"jp":1030},"Which correctly describes a characteristic of DAC (Discretionary Access Control)?","DAC（[任意]{にんい:discretionary}アクセス[制御]{せいぎょ:control}）の[特徴]{とくちょう:characteristic}として[正]{ただ:correct}しいものはどれか。",[1032,1035,1038,1041],{"label":17,"jp":1033,"en":1034},"ファイルの[所有者]{しょゆうしゃ:owner}が[自分]{じぶん:own}の[判断]{はんだん:judgment}でアクセス[権限]{けんげん:permissions}を[設定]{せってい:set}できる","File owners can set access permissions at their own discretion",{"label":21,"jp":1036,"en":1037},"セキュリティラベルに[基]{もと:based}づく[強制的]{きょうせいてき:mandatory}なアクセス[制御]{せいぎょ:control}","Mandatory access control based on security labels",{"label":25,"jp":1039,"en":1040},"[役割]{やくわり:role}に[基]{もと:based}づくアクセス[制御]{せいぎょ:control}","Access control based on roles",{"label":29,"jp":1042,"en":1043},"[全]{すべ:all}てのアクセスを[拒否]{きょひ:deny}する","Denying all access",{"en":1045,"jp":1046},"DAC allows resource owners to set access permissions for other users at their own discretion. B is MAC; C is RBAC.","DAC（[任意]{にんい:discretionary}アクセス[制御]{せいぎょ:control}）は、[資源]{しげん:resources}の[所有者]{しょゆうしゃ:owner}が[自分]{じぶん:own}の[判断]{はんだん:judgment}で[他]{た:other}の[利用者]{りようしゃ:users}へのアクセス[権限]{けんげん:permissions}を[設定]{せってい:set}できる[方式]{ほうしき:method}。イはMAC、ウはRBACの[説明]{せつめい:description}。",[1048,1049],"access-control","DAC",{"id":1051,"articleId":933,"question":1052,"options":1055,"correctLabel":17,"explanation":1068,"tags":1071},"kjh-mock-k2v3-q46",{"en":1053,"jp":1054},"What information is used for judgment in packet filtering firewall methods?","ファイアウォールのパケットフィルタリング[方式]{ほうしき:method}で[判断]{はんだん:judge}に[使]{つか:use}われる[情報]{じょうほう:information}はどれか。",[1056,1059,1062,1065],{"label":17,"jp":1057,"en":1058},"[送信元]{そうしんもと:source}・[宛先]{あてさき:destination}のIPアドレスとポート[番号]{ばんごう:number}","Source\u002Fdestination IP addresses and port numbers",{"label":21,"jp":1060,"en":1061},"Webページの[内容]{ないよう:content}","Web page content",{"label":25,"jp":1063,"en":1064},"メールの[本文]{ほんぶん:body}","Email body",{"label":29,"jp":1066,"en":1067},"[利用者]{りようしゃ:user}のSNSプロフィール","User's SNS profile",{"en":1069,"jp":1070},"Packet filtering judges allow\u002Fdeny based on packet header information (source\u002Fdestination IP, port numbers, protocol). Content inspection is handled by WAF or proxy.","パケットフィルタリングは、パケットのヘッダ[情報]{じょうほう:information}（[送信元]{そうしんもと:source}・[宛先]{あてさき:destination}IPアドレス、ポート[番号]{ばんごう:number}、プロトコル）に[基]{もと:based}づいて[通信]{つうしん:communications}の[許可]{きょか:allow}・[拒否]{きょひ:deny}を[判断]{はんだん:judge}する。[通信]{つうしん:communication}[内容]{ないよう:content}の[検査]{けんさ:inspection}はWAFやプロキシが[担当]{たんとう:handle}。",[1072,1073],"network","firewall",{"id":1075,"articleId":933,"question":1076,"options":1079,"correctLabel":21,"explanation":1092,"tags":1095},"kjh-mock-k2v3-q47",{"en":1077,"jp":1078},"Which IDS detection method matches against known attack patterns?","IDSの[検知]{けんち:detection}[方式]{ほうしき:method}のうち、[既知]{きち:known}の[攻撃]{こうげき:attack}パターンと[照合]{しょうごう:match}する[方式]{ほうしき:method}はどれか。",[1080,1083,1086,1089],{"label":17,"jp":1081,"en":1082},"[異常]{いじょう:anomaly}[検知]{けんち:detection}（アノマリ[検知]{けんち:detection}）","Anomaly detection",{"label":21,"jp":1084,"en":1085},"シグネチャ[検知]{けんち:detection}（[不正]{ふせい:misuse}[検知]{けんち:detection}）","Signature detection (misuse detection)",{"label":25,"jp":1087,"en":1088},"[振]{ふ:behavior}る[舞]{ま:behavior}い[検知]{けんち:detection}","Behavior detection",{"label":29,"jp":1090,"en":1091},"ヒューリスティック[検知]{けんち:detection}","Heuristic detection",{"en":1093,"jp":1094},"Signature detection matches traffic against known attack patterns (signatures) to detect malicious activity. Anomaly detection detects deviations from normal traffic patterns.","シグネチャ[検知]{けんち:detection}は、[既知]{きち:known}の[攻撃]{こうげき:attack}パターン（シグネチャ）と[通信]{つうしん:traffic}を[照合]{しょうごう:match}して[不正]{ふせい:malicious}を[検知]{けんち:detect}する[方式]{ほうしき:method}。[異常]{いじょう:anomaly}[検知]{けんち:detection}は[正常]{せいじょう:normal}な[通信]{つうしん:traffic}パターンからの[逸脱]{いつだつ:deviation}を[検知]{けんち:detect}する[方式]{ほうしき:method}。",[1096,1097],"IDS","IPS",{"id":1099,"articleId":500,"question":1100,"options":1103,"correctLabel":17,"explanation":1116,"tags":1119},"kjh-mock-k2v3-q48",{"en":1101,"jp":1102},"Which is an important principle in log management?","ログ[管理]{かんり:management}において[重要]{じゅうよう:important}な[原則]{げんそく:principle}はどれか。",[1104,1107,1110,1113],{"label":17,"jp":1105,"en":1106},"ログは[改]{かい:alter}ざんされないよう[保護]{ほご:protect}し、[適切]{てきせつ:appropriate}な[期間]{きかん:period}[保存]{ほぞん:retain}する","Logs should be protected against tampering and retained for an appropriate period",{"label":21,"jp":1108,"en":1109},"ログは[毎日]{まいにち:daily}[削除]{さくじょ:delete}すべき","Logs should be deleted daily",{"label":25,"jp":1111,"en":1112},"ログは[誰]{だれ:anyone}でも[自由]{じゆう:freely}に[編集]{へんしゅう:edit}できるべき","Logs should be freely editable by anyone",{"label":29,"jp":1114,"en":1115},"ログの[取得]{しゅとく:acquisition}は[任意]{にんい:optional}でよい","Log acquisition can be optional",{"en":1117,"jp":1118},"Logs are indispensable for investigating unauthorized access and incidents, so they must be protected against tampering and retained for an appropriate period. Free editing or immediate deletion is inappropriate.","ログは[不正]{ふせい:unauthorized}アクセスや[事故]{じこ:incident}の[調査]{ちょうさ:investigation}・[追跡]{ついせき:tracking}に[不可欠]{ふかけつ:indispensable}であり、[改]{かい:alter}ざんされないよう[保護]{ほご:protect}し、[適切]{てきせつ:appropriate}な[期間]{きかん:period}[保存]{ほぞん:retain}する[必要]{ひつよう:need}がある。[自由]{じゆう:free}な[編集]{へんしゅう:editing}や[即時]{そくじ:immediate}[削除]{さくじょ:deletion}は[不適切]{ふてきせつ:inappropriate}。",[1120],"log-management",{"id":1122,"articleId":1123,"question":1124,"options":1127,"correctLabel":17,"explanation":1140,"tags":1143},"kjh-mock-k2v3-q49","kjh-k2-h04-gijutsu-jisshi",{"en":1125,"jp":1126},"Which correctly describes a risk of BYOD (Bring Your Own Device) in telework?","テレワークにおけるBYOD（Bring Your Own Device）のリスクとして[正]{ただ:correct}しいものはどれか。",[1128,1131,1134,1137],{"label":17,"jp":1129,"en":1130},"[会社]{かいしゃ:company}のセキュリティポリシーが[適用]{てきよう:applied}しにくく、マルウェア[感染]{かんせん:infection}や[情報]{じょうほう:information}[漏]{ろう:leak}えいのリスクが[高]{たか:increase}まる","Company security policies are hard to apply, increasing malware infection and information leakage risks",{"label":21,"jp":1132,"en":1133},"[端末]{たんまつ:terminal}の[調達]{ちょうたつ:procurement}コストが[増加]{ぞうか:increase}する","Terminal procurement costs increase",{"label":25,"jp":1135,"en":1136},"[従業者]{じゅうぎょうしゃ:employees}の[生産性]{せいさんせい:productivity}が[必]{かなら:necessarily}ず[向上]{こうじょう:improve}する","Employee productivity necessarily improves",{"label":29,"jp":1138,"en":1139},"セキュリティリスクは[一切]{いっさい:at all}ない","There are no security risks at all",{"en":1141,"jp":1142},"BYOD uses personal terminals for work, making company security policies hard to apply and increasing malware\u002Fleakage risks. Costs may be reduced but security management becomes a challenge.","BYODは[個人]{こじん:personal}[端末]{たんまつ:terminal}を[業務]{ぎょうむ:work}に[利用]{りよう:use}するため、[会社]{かいしゃ:company}のセキュリティポリシーが[適用]{てきよう:apply}しにくく、マルウェア[感染]{かんせん:infection}や[情報]{じょうほう:information}[漏]{ろう:leak}えいのリスクが[高]{たか:increase}まる。コストは[削減]{さくげん:reduce}できるがセキュリティ[管理]{かんり:management}が[課題]{かだい:challenge}。",[1144,1145],"telework","BYOD",{"id":1147,"articleId":1123,"question":1148,"options":1151,"correctLabel":25,"explanation":1164,"tags":1167},"kjh-mock-k2v3-q50",{"en":1149,"jp":1150},"In the SaaS shared responsibility model, what scope does the user mainly bear responsibility for?","SaaSの[責任]{せきにん:responsibility}[共有]{きょうゆう:shared}モデルにおいて、[利用者]{りようしゃ:user}が[主]{おも:mainly}に[責任]{せきにん:responsibility}を[負]{お:bear}う[範囲]{はんい:scope}はどれか。",[1152,1155,1158,1161],{"label":17,"jp":1153,"en":1154},"[物理的]{ぶつりてき:physical}なサーバの[管理]{かんり:management}","Management of physical servers",{"label":21,"jp":1156,"en":1157},"OSのセキュリティパッチ[適用]{てきよう:application}","Applying OS security patches",{"label":25,"jp":1159,"en":1160},"データの[管理]{かんり:management}と[利用者]{りようしゃ:user}アカウントの[管理]{かんり:management}","Data management and user account management",{"label":29,"jp":1162,"en":1163},"アプリケーションの[開発]{かいはつ:development}と[保守]{ほしゅ:maintenance}","Application development and maintenance",{"en":1165,"jp":1166},"In SaaS, the provider manages applications, middleware, OS, and physical infrastructure. Users are mainly responsible for data management and user account\u002Fpermissions configuration.","SaaSでは、アプリケーション、ミドルウェア、OS、[物理]{ぶつり:physical}[基盤]{きばん:infrastructure}は[事業者]{じぎょうしゃ:provider}が[管理]{かんり:manage}し、[利用者]{りようしゃ:user}は[主]{おも:mainly}にデータの[管理]{かんり:management}と[利用者]{りようしゃ:user}アカウント・[権限]{けんげん:permissions}の[設定]{せってい:configuration}に[責任]{せきにん:responsibility}を[負]{お:bear}う。",[1168,1169],"cloud","shared-responsibility",{"culture-anime-studio-ghibli":1171,"culture-bonsai-art":1175,"tech-cybozu-kintone-no-code":1179,"living-denki-gas-suidou":1183,"tech-gree-mobile-game-ops":1187,"culture-green-tea-types":1191,"living-gym-fitness":1195,"living-internet-hikari":1199,"living-jisha-de-kau":1203,"exam-jlpt-n3-grammar":1207,"exam-jlpt-n3-vocab":1211,"bj-job-gata-koyou":1215,"culture-kabuki-noh-bunraku":1219,"bj-karoushi-hatarakikata":1223,"living-keitai-mobile-plan":1227,"living-konbini-atm-banking":1231,"living-kosodate-hoiku":1235,"culture-nihon-teien":1239,"bj-nomikai-survival":1243,"tech-pixiv-image-cdn":1247,"culture-sake-shochu":1251,"bj-sankyu-ikukyu":1255,"tech-sansan-eight-platform":1259,"culture-shichi-go-san":1263,"bj-shukatsu-shinsotsu":1267,"tech-smartnews-recommendation":1271,"bj-taishoku-todoke":1275,"bj-telework-policy":1279,"bj-tenshoku-resume":1283,"tech-yahoo-japan-search":1287,"culture-anime-business":1291,"exam-ap":1295,"exam-aws-japan":1299,"law-chosakuken":1303,"tech-cookpad-recipe-search":1307,"tech-cybozu-kintone-api":1311,"tech-dena-observability":1315,"law-denshi-chouho":1319,"tech-digital-cho-cloud":1323,"exam-fe":1327,"tech-freee-accounting":1331,"law-furiransu-hou":1335,"law-harassment":1339,"tech-hatena-mackerel":1343,"bj-hourensou":1347,"bj-hyouka-mendan":1351,"law-invoice":1355,"exam-it-passport":1359,"culture-izakaya":1363,"culture-j-league":1367,"culture-jinja-tera":1371,"exam-jlpt-n1-dokkai":1375,"exam-jlpt-n2-business":1379,"bj-kaigi-manner":1383,"living-kakutei-shinkoku":1387,"bj-keigo-kihon":1391,"law-keihin-hyouji":1395,"living-kenkou-hoken":1399,"living-kosei-nenkin":1403,"tech-line-llmops":1407,"tech-line-streaming":1411,"living-chintai-keiyaku":1415,"living-eijuken":1419,"living-engineer-visa":1423,"living-ginkou-koza":1427,"living-hikkoshi-checklist":1431,"living-koudo-senmon":1435,"culture-matsuri":1439,"bj-meishi-koukan":1443,"tech-mercari-merpay-id":1447,"tech-mercari-microservices":1451,"tech-mf-multitenant":1455,"bj-nemawashi-ringi":1459,"living-nenmatsu-chousei":1463,"bj-1on1":1467,"bj-online-kaigi":1471,"culture-onsen":1475,"culture-pro-baseball":1479,"culture-ramen":1483,"tech-recruit-data-platform":1487,"law-roukikihou-kihon":1491,"culture-sado":1495,"culture-sandou":1499,"culture-seasonal-events":1503,"exam-sg":1507,"bj-shagai-mail":1511,"bj-shanai-mail":1515,"culture-sumo":1519,"culture-sushi":1523,"culture-washoku":1527,"law-yuukyuu-kyuuka":1531,"kjh-k1-h04-anzen-kanri":1535,"bill-one-auth":1538,"contract-one-vision":1542,"kjh-k1-h04-daisan-sha-teikyou":1546,"eight-web-renewal":1550,"kjh-k1-h04-gaikoku-kiroku":1554,"kjh-k2-h04-gijutsu-jisshi":1558,"kjh-k2-h04-gijutsu-kiso":1561,"kjh-k1-h01-hotaikei":1564,"kjh-k1-h06-hoyu-data":1567,"kjh-k1-h07-kamei-kakou":1571,"kjh-k1-h05-kanren-joho":1575,"kjh-k1-h02-kihon-rinen":1579,"kjh-k1-h09-jikkousei":1583,"kjh-k1-h10-gyousei":1587,"kjh-k1-h11-my-number-hogo":1591,"kjh-k1-h11-my-number-sousoku":1595,"kjh-k2-h01-guideline":1599,"kjh-k2-h01-security-kiso":1602,"kjh-k2-h02-anzen-kanri-sochi":1605,"kjh-k2-h02-soshiki-kiso":1608,"kjh-k2-h03-office":1611,"kjh-k1-h03-riyou-mokuteki":1614,"sansan-data-intelligence":1618,"sansan-engineer-team-infra":1622,"sansan-honne-15":1626,"sansan-interview-110":1630,"sansan-interview-126":1634,"sansan-interview-127":1638,"sansan-interview-130":1642,"sansan-interview-40":1646,"sansan-oyaco":1650,"kjh-k1-h03-tekisei-shutoku":1654,"kjh-k1-h08-tokumei-kakou":1658},{"articleId":1172,"path":1173,"title":1174},"culture-anime-studio-ghibli","\u002Farticles\u002Fculture\u002Fanime-studio-ghibli","スタジオジブリ作品史 — 宮崎駿・高畑勲・鈴木敏夫が築いた40年",{"articleId":1176,"path":1177,"title":1178},"culture-bonsai-art","\u002Farticles\u002Fculture\u002Fbonsai-art","盆栽の世界 — 小宇宙を育てる日本の芸術",{"articleId":1180,"path":1181,"title":1182},"tech-cybozu-kintone-no-code","\u002Farticles\u002Ftech\u002Fcybozu-kintone-no-code","kintoneのローコード戦略 — 業務アプリを誰でも作れる仕組み",{"articleId":1184,"path":1185,"title":1186},"living-denki-gas-suidou","\u002Farticles\u002Fliving-in-japan\u002Fdenki-gas-suidou","電気・ガス・水道の契約 — 引越し時のライフライン手続き",{"articleId":1188,"path":1189,"title":1190},"tech-gree-mobile-game-ops","\u002Farticles\u002Ftech\u002Fgree-mobile-game-ops","GREEのモバイルゲーム運用 — リアルタイム対戦と決済の裏側",{"articleId":1192,"path":1193,"title":1194},"culture-green-tea-types","\u002Farticles\u002Fculture\u002Fgreen-tea-types","日本茶の種類と淹れ方 — 煎茶・玉露・抹茶の違い",{"articleId":1196,"path":1197,"title":1198},"living-gym-fitness","\u002Farticles\u002Fliving-in-japan\u002Fgym-fitness","ジムとフィットネスクラブ — 入会から解約までの実務ガイド",{"articleId":1200,"path":1201,"title":1202},"living-internet-hikari","\u002Farticles\u002Fliving-in-japan\u002Finternet-hikari-keiyaku","光回線とネット契約 — フレッツ・NURO・auひかり比較",{"articleId":1204,"path":1205,"title":1206},"living-jisha-de-kau","\u002Farticles\u002Fliving-in-japan\u002Fjisha-de-kau","日本で不動産を買う — 外国人でも住宅ローンを組む方法",{"articleId":1208,"path":1209,"title":1210},"exam-jlpt-n3-grammar","\u002Farticles\u002Fexams\u002Fjlpt-n3-grammar","JLPT N3 文法 — 初級から中級への橋渡し",{"articleId":1212,"path":1213,"title":1214},"exam-jlpt-n3-vocab","\u002Farticles\u002Fexams\u002Fjlpt-n3-vocab","JLPT N3 語彙対策 — 1500語をどう攻略するか",{"articleId":1216,"path":1217,"title":1218},"bj-job-gata-koyou","\u002Farticles\u002Fbusiness-japanese\u002Fjob-gata-koyou","ジョブ型雇用への移行 — メンバーシップ型からの脱却",{"articleId":1220,"path":1221,"title":1222},"culture-kabuki-noh-bunraku","\u002Farticles\u002Fculture\u002Fkabuki-noh-bunraku","歌舞伎・能・文楽 — 日本三大伝統演劇の世界",{"articleId":1224,"path":1225,"title":1226},"bj-karoushi-hatarakikata","\u002Farticles\u002Fbusiness-japanese\u002Fkaroushi-hatarakikata","過労死と働き方改革 — 残業規制の歴史と現状",{"articleId":1228,"path":1229,"title":1230},"living-keitai-mobile-plan","\u002Farticles\u002Fliving-in-japan\u002Fkeitai-mobile-plan","携帯電話契約の選び方 — 大手キャリア・MVNO・eSIM完全ガイド",{"articleId":1232,"path":1233,"title":1234},"living-konbini-atm-banking","\u002Farticles\u002Fliving-in-japan\u002Fkonbini-atm-banking","コンビニATMと電子マネー — 現金とキャッシュレスのハイブリッド生活",{"articleId":1236,"path":1237,"title":1238},"living-kosodate-hoiku","\u002Farticles\u002Fliving-in-japan\u002Fkosodate-hoiku","子育て支援と保育園 — 児童手当・保活・無償化制度",{"articleId":1240,"path":1241,"title":1242},"culture-nihon-teien","\u002Farticles\u002Fculture\u002Fnihon-teien","日本庭園の世界 — 池泉・枯山水・露地の様式",{"articleId":1244,"path":1245,"title":1246},"bj-nomikai-survival","\u002Farticles\u002Fbusiness-japanese\u002Fnomikai-survival","飲み会・ノミニケーション完全攻略 — 新人エンジニアのサバイバルガイド",{"articleId":1248,"path":1249,"title":1250},"tech-pixiv-image-cdn","\u002Farticles\u002Ftech\u002Fpixiv-image-cdn","pixivの画像配信基盤 — 数億イラストを世界に届ける技術",{"articleId":1252,"path":1253,"title":1254},"culture-sake-shochu","\u002Farticles\u002Fculture\u002Fsake-shochu","日本酒と焼酎入門 — 製法・産地・飲み方の基礎",{"articleId":1256,"path":1257,"title":1258},"bj-sankyu-ikukyu","\u002Farticles\u002Fbusiness-japanese\u002Fsankyu-ikukyu","産休・育休制度の実務 — 取得スケジュールと給付金",{"articleId":1260,"path":1261,"title":1262},"tech-sansan-eight-platform","\u002Farticles\u002Ftech\u002Fsansan-eight-platform","Eight 名刺SaaSの基盤進化 — モバイルから法人向けプラットフォームへ",{"articleId":1264,"path":1265,"title":1266},"culture-shichi-go-san","\u002Farticles\u002Fculture\u002Fshichi-go-san","七五三 — 子供の成長を祝う伝統行事",{"articleId":1268,"path":1269,"title":1270},"bj-shukatsu-shinsotsu","\u002Farticles\u002Fbusiness-japanese\u002Fshukatsu-shinsotsu","新卒就活の流れ — エントリーシートから内定まで",{"articleId":1272,"path":1273,"title":1274},"tech-smartnews-recommendation","\u002Farticles\u002Ftech\u002Fsmartnews-recommendation","SmartNewsの推薦システム — ニュースを最適化する機械学習",{"articleId":1276,"path":1277,"title":1278},"bj-taishoku-todoke","\u002Farticles\u002Fbusiness-japanese\u002Ftaishoku-todoke","退職届と退職願 — 違いと書き方、円満退職への手順",{"articleId":1280,"path":1281,"title":1282},"bj-telework-policy","\u002Farticles\u002Fbusiness-japanese\u002Ftelework-policy","テレワーク制度の現状 — コロナ後の在宅勤務とハイブリッド",{"articleId":1284,"path":1285,"title":1286},"bj-tenshoku-resume","\u002Farticles\u002Fbusiness-japanese\u002Ftenshoku-resume","転職活動の進め方 — 履歴書と職務経歴書の書き方",{"articleId":1288,"path":1289,"title":1290},"tech-yahoo-japan-search","\u002Farticles\u002Ftech\u002Fyahoo-japan-search","Yahoo! JAPAN検索の基盤 — 日本語特化の大規模検索システム",{"articleId":1292,"path":1293,"title":1294},"culture-anime-business","\u002Farticles\u002Fculture\u002Fanime-business","アニメ・漫画文化と産業構造 — グローバル展開の現状",{"articleId":1296,"path":1297,"title":1298},"exam-ap","\u002Farticles\u002Fexams\u002Fap","応用情報技術者試験 — 重点出題分野",{"articleId":1300,"path":1301,"title":1302},"exam-aws-japan","\u002Farticles\u002Fexams\u002Faws-japan","AWS認定 — 日本語受験のコツ",{"articleId":1304,"path":1305,"title":1306},"law-chosakuken","\u002Farticles\u002Flaw\u002Fchosakuken","著作権法 — エンジニアが知っておくべき基礎",{"articleId":1308,"path":1309,"title":1310},"tech-cookpad-recipe-search","\u002Farticles\u002Ftech\u002Fcookpad-recipe-search-ranking","Cookpadのレシピ検索 — 学習to-rank実装",{"articleId":1312,"path":1313,"title":1314},"tech-cybozu-kintone-api","\u002Farticles\u002Ftech\u002Fcybozu-kintone-api-design","kintone API設計の十年 — 後方互換性との戦い",{"articleId":1316,"path":1317,"title":1318},"tech-dena-observability","\u002Farticles\u002Ftech\u002Fdena-mobile-game-observability","DeNAのモバイルゲーム監視基盤",{"articleId":1320,"path":1321,"title":1322},"law-denshi-chouho","\u002Farticles\u002Flaw\u002Fdenshi-chouho","電子帳簿保存法 — スキャナ保存と電子取引保存の対応",{"articleId":1324,"path":1325,"title":1326},"tech-digital-cho-cloud","\u002Farticles\u002Ftech\u002Fdigital-cho-government-cloud","デジタル庁ガバメントクラウド技術詳細",{"articleId":1328,"path":1329,"title":1330},"exam-fe","\u002Farticles\u002Fexams\u002Ffe","基本情報技術者試験 — シラバス全体像",{"articleId":1332,"path":1333,"title":1334},"tech-freee-accounting","\u002Farticles\u002Ftech\u002Ffreee-accounting-integrity","freeeの会計データ整合性 — 仕訳バランスの自動検証",{"articleId":1336,"path":1337,"title":1338},"law-furiransu-hou","\u002Farticles\u002Flaw\u002Ffuriransu-hou","フリーランス保護法（2024年施行）— 取引適正化のポイント",{"articleId":1340,"path":1341,"title":1342},"law-harassment","\u002Farticles\u002Flaw\u002Fharassment","ハラスメント関連法 — パワハラ・セクハラ・マタハラ防止義務",{"articleId":1344,"path":1345,"title":1346},"tech-hatena-mackerel","\u002Farticles\u002Ftech\u002Fhatena-mackerel-alert-design","MackerelのAlert設計思想",{"articleId":1348,"path":1349,"title":1350},"bj-hourensou","\u002Farticles\u002Fbusiness-japanese\u002Fhourensou","報・連・相 — 日本企業のコミュニケーションの基本",{"articleId":1352,"path":1353,"title":1354},"bj-hyouka-mendan","\u002Farticles\u002Fbusiness-japanese\u002Fhyouka-mendan","評価面談の準備と振り返り",{"articleId":1356,"path":1357,"title":1358},"law-invoice","\u002Farticles\u002Flaw\u002Finvoice-seido","インボイス制度の仕組みと実務 — 適格請求書発行事業者",{"articleId":1360,"path":1361,"title":1362},"exam-it-passport","\u002Farticles\u002Fexams\u002Fit-passport","ITパスポート試験 — 概要と学習法",{"articleId":1364,"path":1365,"title":1366},"culture-izakaya","\u002Farticles\u002Fculture\u002Fizakaya","居酒屋文化と乾杯のマナー — お通しから締めまで",{"articleId":1368,"path":1369,"title":1370},"culture-j-league","\u002Farticles\u002Fculture\u002Fj-league","Jリーグの歴史と地域密着 — 1993年開幕から30年",{"articleId":1372,"path":1373,"title":1374},"culture-jinja-tera","\u002Farticles\u002Fculture\u002Fjinja-tera","神社と寺の違い、参拝マナー",{"articleId":1376,"path":1377,"title":1378},"exam-jlpt-n1-dokkai","\u002Farticles\u002Fexams\u002Fjlpt-n1-dokkai","JLPT N1 — 読解問題のアプローチ",{"articleId":1380,"path":1381,"title":1382},"exam-jlpt-n2-business","\u002Farticles\u002Fexams\u002Fjlpt-n2-business","JLPT N2 — ビジネス語彙集中対策",{"articleId":1384,"path":1385,"title":1386},"bj-kaigi-manner","\u002Farticles\u002Fbusiness-japanese\u002Fkaigi-manner","会議のマナーと進め方 — 司会から議事録まで",{"articleId":1388,"path":1389,"title":1390},"living-kakutei-shinkoku","\u002Farticles\u002Fliving-in-japan\u002Fkakutei-shinkoku","確定申告の基本 — 給与所得・副業・控除",{"articleId":1392,"path":1393,"title":1394},"bj-keigo-kihon","\u002Farticles\u002Fbusiness-japanese\u002Fkeigo-kihon","ビジネス敬語の基本 — 尊敬語・謙譲語・丁寧語の使い分け",{"articleId":1396,"path":1397,"title":1398},"law-keihin-hyouji","\u002Farticles\u002Flaw\u002Fkeihin-hyouji","改正景品表示法とステマ規制 — マーケティングの法的注意点",{"articleId":1400,"path":1401,"title":1402},"living-kenkou-hoken","\u002Farticles\u002Fliving-in-japan\u002Fkenkou-hoken","健康保険の入門 — 国保と社保の違い",{"articleId":1404,"path":1405,"title":1406},"living-kosei-nenkin","\u002Farticles\u002Fliving-in-japan\u002Fkosei-nenkin","厚生年金と国民年金 — 老後の備えと現役の負担",{"articleId":1408,"path":1409,"title":1410},"tech-line-llmops","\u002Farticles\u002Ftech\u002Fline-llmops","LINEのLLMOps — 大規模言語モデル運用の取り組み",{"articleId":1412,"path":1413,"title":1414},"tech-line-streaming","\u002Farticles\u002Ftech\u002Fline-streaming","LINEの大規模リアルタイム配信基盤",{"articleId":1416,"path":1417,"title":1418},"living-chintai-keiyaku","\u002Farticles\u002Fliving-in-japan\u002Fliving-chintai-keiyaku","賃貸契約と保証会社 — 礼金・敷金から保証料まで",{"articleId":1420,"path":1421,"title":1422},"living-eijuken","\u002Farticles\u002Fliving-in-japan\u002Fliving-eijuken","永住権申請の最新基準 — 一般・高度専門職ルート比較",{"articleId":1424,"path":1425,"title":1426},"living-engineer-visa","\u002Farticles\u002Fliving-in-japan\u002Fliving-engineer-visa","エンジニアの在留資格 — 「技術・人文知識・国際業務」ビザの取得手順",{"articleId":1428,"path":1429,"title":1430},"living-ginkou-koza","\u002Farticles\u002Fliving-in-japan\u002Fliving-ginkou-koza","銀行口座開設とクレジットカード — 外国人エンジニアの実務",{"articleId":1432,"path":1433,"title":1434},"living-hikkoshi-checklist","\u002Farticles\u002Fliving-in-japan\u002Fliving-hikkoshi-checklist","引越し手続きチェックリスト — 役所・ライフライン・住所変更",{"articleId":1436,"path":1437,"title":1438},"living-koudo-senmon","\u002Farticles\u002Fliving-in-japan\u002Fliving-koudo-senmon","高度専門職ビザの実務 — ポイント制度と特権",{"articleId":1440,"path":1441,"title":1442},"culture-matsuri","\u002Farticles\u002Fculture\u002Fmatsuri","日本の祭り — 季節と地域の象徴",{"articleId":1444,"path":1445,"title":1446},"bj-meishi-koukan","\u002Farticles\u002Fbusiness-japanese\u002Fmeishi-koukan","名刺交換の作法 — 第一印象を決める数十秒",{"articleId":1448,"path":1449,"title":1450},"tech-mercari-merpay-id","\u002Farticles\u002Ftech\u002Fmercari-merpay-id","メルペイのID基盤 — eKYC・本人確認の技術",{"articleId":1452,"path":1453,"title":1454},"tech-mercari-microservices","\u002Farticles\u002Ftech\u002Fmercari-microservices-migration","Mercariのマイクロサービス移行 — モノリスから次世代へ",{"articleId":1456,"path":1457,"title":1458},"tech-mf-multitenant","\u002Farticles\u002Ftech\u002Fmoneyforward-multitenant-saas","Money Forwardのマルチテナント設計 — データ分離とセキュリティ",{"articleId":1460,"path":1461,"title":1462},"bj-nemawashi-ringi","\u002Farticles\u002Fbusiness-japanese\u002Fnemawashi-ringi","根回しと稟議 — 日本企業の意思決定の仕組み",{"articleId":1464,"path":1465,"title":1466},"living-nenmatsu-chousei","\u002Farticles\u002Fliving-in-japan\u002Fnenmatsu-chousei","年末調整の仕組み — 会社員のための税精算",{"articleId":1468,"path":1469,"title":1470},"bj-1on1","\u002Farticles\u002Fbusiness-japanese\u002Fone-on-one","1on1ミーティングの活用法 — 上司と部下の対話",{"articleId":1472,"path":1473,"title":1474},"bj-online-kaigi","\u002Farticles\u002Fbusiness-japanese\u002Fonline-kaigi","オンライン会議のエチケット — Zoom時代のビジネスマナー",{"articleId":1476,"path":1477,"title":1478},"culture-onsen","\u002Farticles\u002Fculture\u002Fonsen","温泉文化と入浴マナー — 名湯巡りの楽しみ方",{"articleId":1480,"path":1481,"title":1482},"culture-pro-baseball","\u002Farticles\u002Fculture\u002Fpro-baseball","プロ野球と高校野球 — 国民的スポーツの二つの顔",{"articleId":1484,"path":1485,"title":1486},"culture-ramen","\u002Farticles\u002Fculture\u002Framen","ラーメン地域ごとの違い — 札幌・博多・喜多方",{"articleId":1488,"path":1489,"title":1490},"tech-recruit-data-platform","\u002Farticles\u002Ftech\u002Frecruit-data-platform","Recruit データ基盤刷新事例 — 数十サービスの統合",{"articleId":1492,"path":1493,"title":1494},"law-roukikihou-kihon","\u002Farticles\u002Flaw\u002Froukikihou-kihon","労働基準法の基本 — 労働時間・休憩・残業規制",{"articleId":1496,"path":1497,"title":1498},"culture-sado","\u002Farticles\u002Fculture\u002Fsado","茶道入門 — 千利休と侘び寂びの精神",{"articleId":1500,"path":1501,"title":1502},"culture-sandou","\u002Farticles\u002Fculture\u002Fsandou","茶華書三道 — 日本の精神を体現する三つの道",{"articleId":1504,"path":1505,"title":1506},"culture-seasonal-events","\u002Farticles\u002Fculture\u002Fseasonal-events","季節の行事 — 正月から年末まで日本の年中行事",{"articleId":1508,"path":1509,"title":1510},"exam-sg","\u002Farticles\u002Fexams\u002Fsg","情報セキュリティマネジメント試験 — 管理者向けセキュリティ",{"articleId":1512,"path":1513,"title":1514},"bj-shagai-mail","\u002Farticles\u002Fbusiness-japanese\u002Fshagai-mail","社外メールの書き方 — お詫び・依頼・確認",{"articleId":1516,"path":1517,"title":1518},"bj-shanai-mail","\u002Farticles\u002Fbusiness-japanese\u002Fshanai-mail","社内メールの書き方 — 件名から結びまで",{"articleId":1520,"path":1521,"title":1522},"culture-sumo","\u002Farticles\u002Fculture\u002Fsumo","大相撲 — 番付と力士の生活",{"articleId":1524,"path":1525,"title":1526},"culture-sushi","\u002Farticles\u002Fculture\u002Fsushi","寿司の歴史と種類 — なれずしから江戸前まで",{"articleId":1528,"path":1529,"title":1530},"culture-washoku","\u002Farticles\u002Fculture\u002Fwashoku","和食 — ユネスコ無形文化遺産と一汁三菜",{"articleId":1532,"path":1533,"title":1534},"law-yuukyuu-kyuuka","\u002Farticles\u002Flaw\u002Fyuukyuu-kyuuka","有給休暇の取得ルールと最新改正",{"articleId":476,"path":1536,"title":1537},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fanzen-kanri","課題Ⅰ 第４編① 個人データに関する義務 ― 正確性の確保・安全管理措置・漏えい報告",{"articleId":1539,"path":1540,"title":1541},"bill-one-auth","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fbill-one-auth","インボイス管理サービスBill Oneの認証を内製認証基盤に置き換えて認証基盤のコストを削減した話",{"articleId":1543,"path":1544,"title":1545},"contract-one-vision","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fcontract-one-vision","契約書を\"意思決定のインフラ\"に──Contract Oneで挑む、新たな価値創造",{"articleId":1547,"path":1548,"title":1549},"kjh-k1-h04-daisan-sha-teikyou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fdaisan-sha-teikyou","課題Ⅰ 第４編② 第三者提供の制限 ― 同意・オプトアウト・非該当類型",{"articleId":1551,"path":1552,"title":1553},"eight-web-renewal","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Feight-web-renewal","Web版Eightのリニューアルと、安全なリリースのための取り組み",{"articleId":1555,"path":1556,"title":1557},"kjh-k1-h04-gaikoku-kiroku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fgaikoku-kiroku","課題Ⅰ 第４編③ 外国にある第三者への提供の制限・記録義務・確認義務（法28条〜30条）",{"articleId":1123,"path":1559,"title":1560},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fgijutsu-jisshi","課題Ⅱ 第４編② 技術的安全管理措置の実施項目",{"articleId":933,"path":1562,"title":1563},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fgijutsu-kiso","課題Ⅱ 第４編① 技術的セキュリティ対策の基礎知識",{"articleId":202,"path":1565,"title":1566},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fhotaikei","課題Ⅰ 第１編 個人情報保護の法体系と各種認定制度",{"articleId":1568,"path":1569,"title":1570},"kjh-k1-h06-hoyu-data","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fhoyu-data","課題Ⅰ 第６編 保有個人データに関する義務",{"articleId":1572,"path":1573,"title":1574},"kjh-k1-h07-kamei-kakou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkamei-kakou","課題Ⅰ 第７編 仮名加工情報（法41条・42条）",{"articleId":1576,"path":1577,"title":1578},"kjh-k1-h05-kanren-joho","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkanren-joho","課題Ⅰ 第５編 個人関連情報に関する義務（法31条）",{"articleId":1580,"path":1581,"title":1582},"kjh-k1-h02-kihon-rinen","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkihon-rinen","課題Ⅰ 第２編 個人情報保護法の目的・基本理念と用語の定義",{"articleId":1584,"path":1585,"title":1586},"kjh-k1-h09-jikkousei","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h09-jikkousei","課題Ⅰ 第９編 実効性を担保する仕組み等",{"articleId":1588,"path":1589,"title":1590},"kjh-k1-h10-gyousei","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h10-gyousei","課題Ⅰ 第10編 行政機関等における個人情報等の取扱い",{"articleId":1592,"path":1593,"title":1594},"kjh-k1-h11-my-number-hogo","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h11-my-number-hogo","課題Ⅰ 第11編② マイナンバー法 ― 特定個人情報の提供制限・保護・監督・罰則（法19条〜57条）",{"articleId":1596,"path":1597,"title":1598},"kjh-k1-h11-my-number-sousoku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Fkjh-k1-h11-my-number-sousoku","課題Ⅰ 第11編① マイナンバー法 ― 総則・個人番号・個人番号カード（法1条〜18条の5）",{"articleId":249,"path":1600,"title":1601},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h01-guideline","課題Ⅱ 第１編② セキュリティ対策基準とガイドライン",{"articleId":11,"path":1603,"title":1604},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h01-security-kiso","課題Ⅱ 第１編① 情報セキュリティの基礎と脅威",{"articleId":500,"path":1606,"title":1607},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h02-anzen-kanri-sochi","課題Ⅱ 第２編② 組織的・人的セキュリティ ― 安全管理措置・委託先監督・事故対応",{"articleId":360,"path":1609,"title":1610},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Fkjh-k2-h02-soshiki-kiso","課題Ⅱ 第２編① 組織的・人的セキュリティ ― 基本方針の策定からリスク管理・規程整備まで",{"articleId":704,"path":1612,"title":1613},"\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-2\u002Foffice","課題Ⅱ 第３編 オフィスセキュリティ",{"articleId":1615,"path":1616,"title":1617},"kjh-k1-h03-riyou-mokuteki","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Friyou-mokuteki","課題Ⅰ 第３編① 利用目的の特定・変更と利用目的による制限、不適正な利用の禁止",{"articleId":1619,"path":1620,"title":1621},"sansan-data-intelligence","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-data-intelligence","Sansan Data Intelligenceリリースに寄せて",{"articleId":1623,"path":1624,"title":1625},"sansan-engineer-team-infra","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-engineer-team-infra","Sansan Engineer Team：インフラ戦略部",{"articleId":1627,"path":1628,"title":1629},"sansan-honne-15","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-honne-15","入社後のホンネ［技術本部 データ戦略部 Infrastructureグループ 渡邉 友］",{"articleId":1631,"path":1632,"title":1633},"sansan-interview-110","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-110","SIer出身者が活躍する理由とは。Sansanを牽引するプロダクト開発に挑み続ける",{"articleId":1635,"path":1636,"title":1637},"sansan-interview-126","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-126","AIと協働する開発組織、そして技術の深化。Sansan 新CTO笹川が語るビジョン",{"articleId":1639,"path":1640,"title":1641},"sansan-interview-127","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-127","Sansanの技術基盤を関西から築く。新設組織で未来を創る、エンジニアの挑戦",{"articleId":1643,"path":1644,"title":1645},"sansan-interview-130","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-130","Sansanの全社基盤を支えるPlatform Engineering Unitの挑戦",{"articleId":1647,"path":1648,"title":1649},"sansan-interview-40","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-interview-40","膨大な量のデータを平然と処理する。Sansanのインフラのすごさが、そこに表れている。",{"articleId":1651,"path":1652,"title":1653},"sansan-oyaco","\u002Farticles\u002Fsoftware%2Fcompanies%2Fsansan\u002Fsansan-oyaco","仕事と子育ての両立を支援する制度「OYACO」",{"articleId":1655,"path":1656,"title":1657},"kjh-k1-h03-tekisei-shutoku","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Ftekisei-shutoku","課題Ⅰ 第３編② 適正な取得・要配慮個人情報・利用目的の通知",{"articleId":1659,"path":1660,"title":1661},"kjh-k1-h08-tokumei-kakou","\u002Farticles\u002Fkojin-joho-hogo%2Fkadai-1\u002Ftokumei-kakou","課題Ⅰ 第８編 匿名加工情報に関する義務等（法43条〜46条）"]