网络安全治理对策研究

doi:10.3969/j.issn.1671-1122.2023.06.010

摘要/Abstract

摘要：

为深入贯彻国家网络安全法，破解新形势下网络安全治理在技术和管理上面临的诸多痛点和难题，文章以网络安全法为基本遵循，研究探讨了依法持续推进网络安全治理向纵深发展的问题，提出要确立基于网络安全逻辑的治理取向，在保安全与促发展中实现平衡共进，突出数据这一关键要素的安全治理，建立敏捷高效的风险评估方法策略，旨在以多措并举的综合治理筑起坚固的网络安全屏障，创建绿色可持续的网络生态。

关键词: 网络安全法, 网络安全治理, 网络安全逻辑特征

Abstract:

In order to deeply implement the national cybersecurity law and address the difficulties and challenges faced by cybersecurity governance in both technology and management, this article took the cybersecurity law as the basic principle and explored how to continuously promote the in-depth development of cybersecurity governance in accordance with the law. It proposed to establish a governance orientation strategy based on the logic of cybersecurity and achieve balance and progress in ensuring security and promoting development. Highlighting the key element of data security governance, establishing agile and efficient risk assessment methods and other strategies, this article aimed to build a solid network security firewall through comprehensive governance with multiple measures, and create a green and sustainable network ecosystem.

Key words: national cybersecurity law, network security governance, logical characteristics of network security

中图分类号:

TP309

孙珵珵. 网络安全治理对策研究[J]. 信息网络安全, 2023, 23(6): 104-110.

SUN Chengcheng. Research on Countermeasures for Network Security Governance[J]. Netinfo Security, 2023, 23(6): 104-110.

图/表 3

参考文献 14

[1]	XIE Yongjiang. Study on Principles of Cybersecurity Law[J]. Jinan Journal(Philosophy and Social Sciences), 2018(6): 41-52.
	谢永江. 论网络安全法的基本原则[J]. 暨南学报:哲学社会科学版, 2018(6): 41-52.
[2]	HU Yu, LUO Xinwei, WANG Dan. The Digital Revolution: The Logic of Industrial Transformation in the New Era[M]. Beijing: Publishing House of Electronics Industry, 2022.
	胡煜, 罗欣伟, 王丹. 数字革命:新时代的产业转型逻辑[M]. 北京: 电子工业出版社, 2022.
[3]	ZHANG Min, MA Minhu. The Cyber Security Obligations of Internet Service Providers in the Perspective of the National Security: “Guarantee” Transformation[J]. Journal of Intelligence, 2020(39): 45-53.
	张敏, 马民虎. 国家安全视域下网络服务提供者之网络安全义务的“保障”转型[J]. 情报杂志, 2020(39): 45-53.
[4]	The National People’s Congress of the People’s Republic of China. Cybersecurity Law of the People’s Republic of China[EB/OL]. (2016-11-07)[2023-03-09]. http://www.npc.gov.cn/npc/c30834/201611/270b43e8b35e4f7ea98502b6f0e26f8a.shtml.
	中国人大网. 中华人民共和国网络安全法[EB/OL]. (2016-11-07)[2023-03-09]. http://www.npc.gov.cn/npc/c30834/201611/270b43e8b35e4f7ea98502b6f0e26f8a.shtml.
[5]	XIAO Xiaolei, ZHAO Xuelian. Overview of the Research on Governance of Cross-Border Data Flow in China[J]. Netinfo Security, 2022, 22(10): 45-51.
	肖晓雷, 赵雪莲. 我国跨境数据流动治理的研究综述[J]. 信息网络安全, 2022, 22(10): 45-51.
[6]	CAICT. White Paper on China’s Cyber Security Industry[EB/OL]. [2023-03-09]. http://www.caict.ac.cn/kxyj/qwfb/bps/202201/t20220124_396106.htm.
	中国信通院. 中国网络安全产业白皮书[EB/OL]. [2023-03-09]. http://www.caict.ac.cn/kxyj/qwfb/bps/202201/t20220124_396106.htm.
[7]	YANG Heqing. Interpretation of the Cybersecurity Law of the People’s Republic of China[M]. Beijing: China Legal Publishing House, 2017.
	杨合庆. 《中华人民共和国网络安全法》解读[M]. 北京: 中国法制出版社, 2017.
[8]	CSDN. White Paper on Data Security Governance 4.0[EB/OL]. (2022-06-09)[2023-03-09]. https://blog.csdn.net/kuankuanerfei/article/details/128038128.
	CSDN. 数据安全治理白皮书4.0[EB/OL]. (2022-06-09)[2023-03-09]. https://blog.csdn.net/kuankuanerfei/article/details/128038128.
[9]	QUE Tianshu, MO Fei. Cyber Ecological Governance Under the Overall National Security Perspective: Overall Evolution, Linkage Lineage, And Promotion Path[J]. Contemporary World and Socialism, 2021(1): 65-72.
	阙天舒, 莫非. 总体国家安全观下的网络生态治理——整体演化、联动谱系与推进路径[J]. 当代世界与社会主义, 2021(1): 65-72.
[10]	WEN Yuheng, YU lin. Multi-Dimensional Cognition and Systematic Interpretation of the Concept of Data Security[J]. Information and Documentation Service, 2022, 43(6): 5-13.
	文禹衡, 于琳. 数据安全概念的多维度认知与体系化解读[J]. 情报资料工作, 2022, 43(6): 5-13.
[11]	CHENG Xiao. On the Duty of Data Security[J]. Journal of Comparative Law, 2023(2): 60-73.
	程啸. 论数据安全保护义务[J]. 比较法研究, 2023(2): 60-73.
[12]	MA Zhongfa, HU Ling. The Inprovement of China’s Legal System of Data Security Protection[J]. Science Technology and Law, 2021(2): 1-7.
	马忠法, 胡玲. 论我国数据安全保护法律制度的完善[J]. 科技与法律, 2021(2): 1-7.
[13]	Office of the Central Cyberspace Affairs Commission. Measures for the Security Assessment of Outbound Data Transfer[EB/OL]. (2022-07-07)[2023-03-09]. http://www.cac.gov.cn/2022-07/07/c_1658811536396503.htm.
	中共中央网络安全和信息化委员会办公室. 数据出境安全评估办法[EB/OL]. (2022-07-07)[2023-03-09]. http://www.cac.gov.cn/2022-07/07/c_1658811536396503.htm.
[14]	SHI Yewei. International Trade Rules in Cross-Border Data Flows: Regulation, Compatibility and Development[J]. Journal of Comparative Law, 2020(4): 173-183.
	时业伟. 跨境数据流动中的国际贸易规则:规制、兼容与发展[J]. 比较法研究, 2020(4): 173-183.

[1]	黄杰, 何城鋆. 基于软件定义边界的服务保护方案[J]. 信息网络安全, 2023, 23(6): 1-10.
[2]	王晓狄, 黄诚, 刘嘉勇. 面向网络安全开源情报的知识图谱研究综述[J]. 信息网络安全, 2023, 23(6): 11-21.
[3]	谢盈, 曾竹, 胡巍, 丁旭阳. 一种虚假数据注入攻击检测与补偿方法[J]. 信息网络安全, 2023, 23(6): 22-33.
[4]	杨宇光, 卢嘉煜. 一种基于星型簇态的动态的分级的量子秘密共享协议[J]. 信息网络安全, 2023, 23(6): 34-42.
[5]	李志华, 王志豪. 基于LCNN和LSTM混合结构的物联网设备识别方法[J]. 信息网络安全, 2023, 23(6): 43-54.
[6]	唐雨, 张驰. 一种基于Intel SGX的信息中心网络隐私保护方案[J]. 信息网络安全, 2023, 23(6): 55-65.
[7]	罗一诺, 姚思, 陈杰, 董晓丽. 基于白盒CLEFIA实现的软件防篡改方案[J]. 信息网络安全, 2023, 23(6): 66-73.
[8]	蒋曾辉, 曾维军, 陈璞, 武士涛. 面向调制识别的对抗样本研究综述[J]. 信息网络安全, 2023, 23(6): 74-90.
[9]	吴尚远, 申国伟, 郭春, 陈意. 威胁情报驱动的动态威胁狩猎方法[J]. 信息网络安全, 2023, 23(6): 91-103.
[10]	赵俊, 任怡, 李宝, 谭郁松. 混源操作系统供应链安全风险评估方法研究[J]. 信息网络安全, 2023, 23(5): 50-61.
[11]	裴蓓, 张水海, 吕春利. 用于云存储的主动秘密共享方案[J]. 信息网络安全, 2023, 23(5): 95-104.
[12]	陈梓彤, 贾鹏, 刘嘉勇. 基于Siamese架构的恶意软件隐藏函数识别方法[J]. 信息网络安全, 2023, 23(5): 62-75.
[13]	秦宝东, ，陈从正, ，何俊杰, 郑东. 基于可验证秘密共享的多关键词可搜索加密方案[J]. 信息网络安全, 2023, 23(5): 32-40.
[14]	毛红晶, 程驭坤, 胡红钢. 基于未知故障模型的多重持续故障分析[J]. 信息网络安全, 2023, 23(5): 41-49.
[15]	赵小林, 王琪瑶, 赵斌, 薛静锋. 基于机器学习的匿名流量分类方法研究[J]. 信息网络安全, 2023, 23(5): 1-10.