A white list generator capable of guaranteeing the accuracy of data related to the specification of normal communication that is a source of automatic generation and ensuring the accuracy of the generated white list throughout the white list generation flow is obtained. The white list generator is a white list generator that is applied to a system including a plurality of devices that transmit / receive data to / from each other and generates a white list for performing white list type intrusion detection, and is based on an input model. A model verification unit that verifies whether normal communication in the system is correctly modeled, and a model conversion unit that converts a model verified that there is no logical contradiction to a white list. Is.
展开▼