在技治与法治之间:数据安全标准治理的逻辑及其展开
Between Technology Governance and Rule of Law:The Logic and Development of Data Security Standard Governance
刘姝君1
作者信息
摘要
数据安全的标准治理是指运用标准的方式对数据进行规制,以保障数据安全.数据安全的标准规制作为保护数据的必要举措,同时对于实现"安全保障、技术为基、标准先行"的网络安全规制框架以及数据安全管理具有重要意义.然而,我国数据安全标准规制还面临自身的局限性、缺乏相配套的制度建设以及标准实施过程中异化等问题.因此,为实现数据安全的有效治理,应充分把握数据在采集、使用、加工、传输等环节的技术特性,立足于标准"自下而上"生成的本质,遵循技治(标准)支撑法治,法治保障技术治理实现的法治逻辑.具体而言,数据安全标准规制,应从标准基本法、数据标准规范以及配套规范方面来完善规范依据;建立多元的数据安全标准规制主体结构;从传统规制方式革新、理顺运行程序以及厘清主体责任的角度健全数据安全标准的运行机制.
Abstract
Standard governance of data security refers to using standard methods to regulate data to ensure data security.The standards and specifications of data security is a necessary measure to protect data,and it is also of great significance to realize the network security regulatory framework of"security guarantee,technology-based,standard first"and data security management.However,the regulation of data security standards in China still faces many problems such as its own limitations,lack of supporting system and alienation in the process of standard implementation.Therefore,in order to realize the effective governance of data security,the technical characteristics of data in the links of collection,use,processing and transmission should be fully understood,to follow the rule of law logic and use standards to support laws and technical governance based on the nature of standards.Specifically,the standards and specifications of data security should improve the normative basis from the aspects of standard basic law,data standard norms and supporting norms;establish a diversified data security standard regulatory body structure;improve the operating mechanism of data security standards from the perspective of reforming traditional regulatory methods,rationalizing operating procedures,and clarifying the main responsibilities.
关键词
数据安全/标准化/法治/技治Key words
data security/standardization/rule of law/technical governance引用本文复制引用
出版年
2024
国家科技期刊平台
NSTL
万方数据