縣域數(shù)據(jù)安全治理體系建設(shè)與挑戰(zhàn)
網(wǎng)絡(luò)安全與數(shù)據(jù)治理
呂秋云1,2 ,,婁肖琦1,任一支1,,趙程遙3,,張紀(jì)林4
1.杭州電子科技大學(xué)網(wǎng)絡(luò)空間安全學(xué)院,; 2.杭州電子科技大學(xué)平湖數(shù)字技術(shù)創(chuàng)新研究院有限公司; 3.浙江省大數(shù)據(jù)發(fā)展中心,; 4.浙江省數(shù)據(jù)局
摘要: 縣域數(shù)據(jù)逐漸成為地方治理和社會(huì)發(fā)展中不可或缺的要素,。近年來(lái),,全國(guó)各縣級(jí)政府積極建設(shè)數(shù)據(jù)管理平臺(tái)并探索數(shù)據(jù)安全治理模式,但是,,當(dāng)前縣域數(shù)據(jù)安全工作仍然面臨合規(guī)性和新技術(shù)帶來(lái)的挑戰(zhàn),,無(wú)法滿足縣域信息系統(tǒng)的安全發(fā)展需求。對(duì)此,,為確??h域數(shù)據(jù)安全,推動(dòng)數(shù)據(jù)資源的有序開發(fā)利用,,構(gòu)建了面向數(shù)據(jù)全生命周期安全處理的縣域數(shù)據(jù)安全治理體系,,包括數(shù)據(jù)安全管理制度規(guī)范、數(shù)據(jù)安全技術(shù)防護(hù),、數(shù)據(jù)安全運(yùn)營(yíng)管理三大子體系,。然而,數(shù)據(jù)安全治理過(guò)程是動(dòng)態(tài)的,,在當(dāng)前數(shù)據(jù)要素化轉(zhuǎn)型的背景下,,縣域數(shù)據(jù)安全治理能力亟需進(jìn)一步提升。因此,,為幫助縣級(jí)政府更好地應(yīng)對(duì)未來(lái)數(shù)據(jù)安全風(fēng)險(xiǎn),,在基于數(shù)據(jù)要素化本質(zhì)特征的基礎(chǔ)上,分析了數(shù)據(jù)分類分級(jí)自動(dòng)化及精準(zhǔn)化亟待解決的問題,、數(shù)據(jù)安全治理過(guò)程中面臨的數(shù)據(jù)流動(dòng)管控及追蹤溯源難以及用戶行為異常檢測(cè)誤報(bào)率高的挑戰(zhàn),,以期為縣域構(gòu)建更完善的數(shù)據(jù)安全治理體系提供參考。
中圖分類號(hào):TP309.2文獻(xiàn)標(biāo)識(shí)碼:ADOI:10.19358/j.issn.2097-1788.2024.08.014
引用格式:呂秋云,,婁肖琦,,任一支,等.縣域數(shù)據(jù)安全治理體系建設(shè)與挑戰(zhàn)[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,,2024,,43(8):82-90.
引用格式:呂秋云,,婁肖琦,,任一支,等.縣域數(shù)據(jù)安全治理體系建設(shè)與挑戰(zhàn)[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,,2024,,43(8):82-90.
County data security governance system construction and challenges
Lv Qiuyun1,2,Lou Xiaoqi1,,Ren Yizhi1,,Zhao Chengyao3,Zhang Jilin4
1.School of Cyberspace Security, Hangzhou Dianzi University,; 2.Pinghu Digital Technology Innovation Research Institute, Hangzhou Dianzi University,; 3.Zhejiang Big Data Development Center;4.Zhejiang Provincial Data Bureau
Abstract: County data has gradually become an indispensable element in local governance and social development. In recent years, county governments across the country have actively constructed data management platforms and explored data security governance models, but the current county data security work is still facing challenges posed by compliance and new technologies, and is unable to meet the security development needs of county information systems. In this regard, in order to ensure county data security and promote the orderly development and utilization of data resources, a county data security governance system has been constructed for the secure handling of the entire life cycle of data, including three major subsystems: data security management system specification, data security technology protection, and data security operation and management. However, the process of data security governance is dynamic, and in the context of the current transformation of data elementalization, the county data security governance capability needs to be further improved. Therefore, in order to help county governments better cope with future data security risks, based on the essential characteristics of data factorization, the challenges of data classification and grading automation and precision that need to be solved, the difficulty of data flow control and tracking and tracing, and the high rate of false alarms in detecting anomalies in user behaviors are analyzed with a view to providing references for the construction of a more complete data security governance system for counties.
Key words : data security,;county governance,;data security governance;data elements,;data security capabilities
引言
(無(wú))
本文詳細(xì)內(nèi)容請(qǐng)下載:
http://forexkbc.com/resource/share/2000006111
作者信息:
呂秋云1,2 ,,婁肖琦1,,任一支1,趙程遙3,,張紀(jì)林4
(1.杭州電子科技大學(xué)網(wǎng)絡(luò)空間安全學(xué)院,,浙江杭州310018;
2.杭州電子科技大學(xué)平湖數(shù)字技術(shù)創(chuàng)新研究院有限公司,,浙江嘉興314299;
3.浙江省大數(shù)據(jù)發(fā)展中心,,浙江杭州310007,;
4.浙江省數(shù)據(jù)局,浙江杭州310007)
此內(nèi)容為AET網(wǎng)站原創(chuàng),,未經(jīng)授權(quán)禁止轉(zhuǎn)載,。