《電子技術(shù)應(yīng)用》
您所在的位置:首頁(yè) > 其他 > 設(shè)計(jì)應(yīng)用 > 數(shù)據(jù)安全審查實(shí)施困境與優(yōu)化措施
數(shù)據(jù)安全審查實(shí)施困境與優(yōu)化措施
網(wǎng)絡(luò)安全與數(shù)據(jù)治理
趙麗莉,劉曉瑞
山東科技大學(xué)文法學(xué)院
摘要: 為防控?cái)?shù)據(jù)安全風(fēng)險(xiǎn),細(xì)化數(shù)據(jù)安全審查實(shí)施規(guī)范,實(shí)現(xiàn)維護(hù)國(guó)家安全的本質(zhì)目的,提出應(yīng)對(duì)數(shù)據(jù)安全審查實(shí)施困境的措施?;跀?shù)據(jù)安全審查實(shí)施的必要性,揭示現(xiàn)行數(shù)據(jù)安全審查實(shí)施在國(guó)家安全認(rèn)定和影響難以衡量、數(shù)據(jù)安全審查主體和審查范圍界定不清的困境,并對(duì)數(shù)據(jù)安全審查實(shí)施提出優(yōu)化措施。研究針對(duì)數(shù)據(jù)安全審查實(shí)施中存在的挑戰(zhàn),實(shí)現(xiàn)“國(guó)家安全”審查因素具體化與抽象化的統(tǒng)一,以重要數(shù)據(jù)和核心數(shù)據(jù)的識(shí)別與管控為審查中心,實(shí)行常設(shè)與特設(shè)審查主體并行協(xié)調(diào)治理,推動(dòng)數(shù)據(jù)安全審查的實(shí)施優(yōu)化。
中圖分類(lèi)號(hào):D912.29文獻(xiàn)標(biāo)識(shí)碼:ADOI:10.19358/j.issn.2097-1788.2025.01.019引用格式:趙麗莉,劉曉瑞. 數(shù)據(jù)安全審查實(shí)施困境與優(yōu)化措施[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,2025,44(1):118-122.
Research on the implementation dilemma of data security review and countermeasures
Zhao Lili,Liu Xiaorui
Institute of Intellectual Property, Shandong University of Science and Technology
Abstract: The study aims to prevent and control data security risks, refine the specifications for the implementation of the data security review. In order to achieve the essential purpose of the implementation of the data security review to safeguard national security, the study puts forward measures to address the dilemma of the implementation of the data security review. Based on the necessity of the implementation of data security review, the study reveals the dilemma of the current implementation of data security review in terms of the difficulty of measuring the national security identification and impact, the unclear definition of the subject and the scope of review. The study puts forward optimisation countermeasures for the implementation of data security review. In view of the challenges existing in the implementation of data security review, it is necessary to realize the unity of concretization and abstraction of national security review factors.Taking the identification and control of important data and core data as the center, the review implements parallel coordination and governance of permanent and specially established review subjects, so as to promote the implementation and optimization of data security review.
Key words : data security review; national security; Data Security Act; data security risks; data processing activities

引言

新時(shí)代的國(guó)家安全理念不斷豐富和發(fā)展,不僅包括傳統(tǒng)的軍事、外交等領(lǐng)域,還涵蓋了信息化帶來(lái)的新興領(lǐng)域安全問(wèn)題,原本與國(guó)家安全關(guān)聯(lián)不甚密切的網(wǎng)絡(luò)安全和數(shù)據(jù)安全問(wèn)題也逐漸納入國(guó)家安全保障體系[1]。在此背景下,《數(shù)據(jù)安全法》提出對(duì)影響國(guó)家安全的數(shù)據(jù)處理活動(dòng)進(jìn)行數(shù)據(jù)安全審,數(shù)據(jù)安全與國(guó)家安全的關(guān)系進(jìn)一步緊密[2]。目前,學(xué)術(shù)界對(duì)于“數(shù)據(jù)安全監(jiān)管” “數(shù)據(jù)安全調(diào)查”領(lǐng)域的探討頗為豐富,針對(duì)“數(shù)據(jù)安全審查”議題的研究則相對(duì)較為匱乏。對(duì)審查的基本目的,現(xiàn)有的數(shù)據(jù)安全審查分別從國(guó)家、政府和企業(yè)三個(gè)層面進(jìn)行剖析,數(shù)據(jù)安全審查的基本目的各有側(cè)重,國(guó)家通過(guò)立法和政策引導(dǎo),政府通過(guò)監(jiān)管和執(zhí)行,企業(yè)通過(guò)內(nèi)部管理和技術(shù)防護(hù),共同構(gòu)建起一個(gè)全方位、多層次的數(shù)據(jù)安全防護(hù)體系;對(duì)于審查的實(shí)施主體,既有研究區(qū)分了由政府部門(mén)主導(dǎo)實(shí)施、企業(yè)獨(dú)立實(shí)施或者二者聯(lián)合實(shí)施的數(shù)據(jù)安全審查,并從技術(shù)和制度等不同視角提出應(yīng)對(duì)策略,這其中包括歐盟、美國(guó)等各自制定并貢獻(xiàn)的獨(dú)特的應(yīng)對(duì)策略。然而,仍有少量學(xué)者未能對(duì)數(shù)據(jù)安全審查與網(wǎng)絡(luò)安全審查進(jìn)行充分區(qū)分,導(dǎo)致在理論探討和實(shí)踐應(yīng)用中出現(xiàn)混淆現(xiàn)象,而且現(xiàn)有研究多傾向于研究數(shù)據(jù)安全審查的基本目的、功能定位、立法價(jià)值等宏觀層面,對(duì)具體審查內(nèi)容、審查主體、審查標(biāo)準(zhǔn)等實(shí)質(zhì)性?xún)?nèi)容少有考察創(chuàng)新,基礎(chǔ)理論框架構(gòu)建存在空白,對(duì)于制度構(gòu)建的邏輯探討及實(shí)踐層面深入的研究也稍顯不足。這在一定程度上制約了數(shù)據(jù)安全審查的實(shí)施,數(shù)據(jù)安全審查規(guī)則的細(xì)化需求顯得尤為迫切。


本文詳細(xì)內(nèi)容請(qǐng)下載:

http://ihrv.cn/resource/share/2000006312


作者信息:

趙麗莉,劉曉瑞

(山東科技大學(xué)文法學(xué)院,山東青島266590)


Magazine.Subscription.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。