摘要
近年来,我国网络治理成效显著,多部法律法规对检测评估作出规定,但同时也出现了重复评估、评估孤岛、资源浪费等问题。按照安全保护、安全评估、安全审查3个类别,整合8项检测评估,允许“向下兼容”,形成“查、评、改”体系,提出了运行机制,实现检测评估集约化。通过加强协同联动共享,避免重复交叉,重点开展高级可持续漏洞风险的检测评估,提升评估管理治理效能,在最优情况下每年可节省资金约为22亿元,节省比例为52.03%。
In recent years, China’s network governance has come a long way, and many laws and regulations have made provisions on detection and evaluation, but there are also problems such as repeated evaluation, evaluation islands, and resource waste and so on. According to the three categories of safety protection, safety evaluation and safety review, 8 detection and evaluation are integrated, allowing “downward compatibility” to form a “inspection, evaluation and rectification” system, and put forward an operation mechanism to realize intensification of detection and evaluation. By strengthening collaboration,linkage and sharing, avoiding duplication and crossover, focusing on the detection and evaluation of advanced sustainable vulnerability risks, and improving the evaluation management and governance efficiency, about 2.2 billion yuan can be saved every year under the optimal circumstances, with a saving ratio of 52.03%.
作者
白荣华
BAI Ronghua(Information Center of Xinjiang Uygur Autonomous Region,Urumqi Xinjiang 830001,China)
出处
《信息安全与通信保密》
2022年第4期85-95,共11页
Information Security and Communications Privacy
基金
新疆网信科创课题研究项目“大数据平台数据安全国产商用密码保障方案研究”(No.12123601)阶段性成果。
关键词
网络安全
检测评估
评估整合
网络治理
评估体系
cyber security
inspection and evaluation
assessment integration
network governance
evaluation system
