QR Codeのセキュリティとプライバシー

セキュリティ脅威(QRフィッシング、ステッカー攻撃)、プライバシーへの配慮、暗号署名、QRコードを安全に運用・スキャンするためのベストプラクティス。

QRishing:QR Codeフィッシングの仕組み

How attackers use QR codes for phishing: fake parking meters, restaurant stickers, email QR codes, and credential theft.

QR Codeステッカー攻撃: 検出と防止

Physical QR code tampering: sticker overlay attacks, tamper-evident materials, and verification strategies.

安全なQR Codeスキャン:消費者ガイド

How to scan QR codes safely: URL preview checking, suspicious code indicators, and what to do if you scan a …

QR Codeにおける暗号署名

How digital signatures verify QR code authenticity: COSE, CBOR, public key infrastructure, and offline verification.

SQRC:暗号化データを持つセキュアQR Codes

DENSO WAVE's Secure QR Code: dual public/private data, encryption architecture, authorised reader requirements, and use cases.

QR Codeのプライバシーリスク:スキャナーが明かすこと

Data exposed when scanning QR codes: IP address, device info, location, and time. Privacy implications of dynamic QR tracking.

2要素認証用QR Code (2FA)

TOTP authentication QR codes: otpauth:// URI format, secret key generation, authenticator app compatibility, and security best practices.

企業展開のためのQR Codeセキュリティ

Enterprise QR code security: access control, audit logging, domain whitelisting, certificate pinning, and compliance requirements.

EU デジタルCOVID証明書: QR Codeケーススタディ

Technical analysis of the EU DCC: CBOR encoding, COSE signing, offline verification, and lessons for future credential systems.

QR Codeマルウェア: 脅威と対策

How QR codes can deliver malware: drive-by downloads, app store redirects, and scanner vulnerabilities. Defence strategies.

QR Codeを使った偽造防止

Using QR codes to combat product counterfeiting: serialisation, cloud verification, blockchain integration, and tamper detection.

QR Codeセキュリティ監査チェックリスト

Comprehensive security checklist for QR code deployments: generation, distribution, scanning, data handling, and incident response.

データ保護(GDPR)とQR Code

GDPR compliance for QR code systems: data collection notices, consent mechanisms, data retention, and user rights.

安全なQR Code生成:開発者のためのベストプラクティス

Developer guide: input validation, output sanitisation, secret handling, HTTPS enforcement, and preventing injection attacks.

QR Codeインシデント対応:問題発生時の対処法

Responding to QR code security incidents: compromised dynamic URLs, sticker attacks in the wild, and public communication.