公共数据开放中隐性安全风险的内涵、表现及其生成逻辑  被引量：3

作　　者：周毅[1,2] 郭朗睿 Zhou Yi;Guo Langrui(School of Social Science,Soochow University,Jiangsu,215000;Institute of Intelligent Society and Data Governance,Soochow University,Jiangsu,215000;Jiangsu Jiatu Network Technology Co.,Ltd.,Suzhou,215000)

机构地区：[1]苏州大学社会学院,江苏215000 [2]苏州大学智能社会与数据治理研究院,江苏215000 [3]江苏嘉图网络科技股份有限公司,苏州215000

出　　处：《情报资料工作》2024年第3期70-77,共8页Information and Documentation Services

基　　金：国家社会科学基金一般项目“网络信息内容生态安全风险治理模式构建与实现研究”(批准号:21BTQ013)的研究成果之一。

摘　　要：[目的/意义]数据安全风险除数据本身泄密以外,更包括数据关联分析和情报生成与感知后带来的隐性安全风险。为解决公共数据开放衍生的开源情报与国家安全之间的矛盾,需要实施隐性数据安全风险治理,从而健全国家数据治理体系、保护国家数据主权。[方法/过程]基于后果主义下的风险管理建立分析框架,梳理出隐性数据安全风险治理的行为流和认知流。基于对隐性数据安全风险的本体认识,全面分析其表现形式和生成逻辑,为构建针对性治理机制提供思路。[结果/结论]隐性数据安全风险具有隐蔽性和随机性的样态特征、转移性和扩散性的运动特征、场景性和累积性的环境特征,基于认知、利益、制度和技术的生成逻辑,在暗数据、数据汇聚、数据挖掘、数据画像、数据权益、隐私计算等方面表现出安全风险。[Purpose/significance]In addition to the leakage of data itself,data security risk includes the implicit secu⁃rity risk brought about by data correlation analysis and intelligence generation and perception.In order to solve the con⁃tradiction between open source intelligence derived from public data access and national security,it is necessary to im⁃plement the governance of implicit data security risk,so as to improve the national data governance system and protect national data sovereignty.[Method/process]An analytical framework is established based on risk management under consequentialism to sort out the behavioral and cognitive flows of implicit data security risk governance.Based on the ontological understanding of implicit data security risk,its manifestations and generative logic are comprehensively sorted out,and targeted governance mechanisms are constructed.[Result/conclusion]Implicit data security risk has the existential state characteristics of concealment and randomness,the movement characteristics of transferability and diffusion,and the environmental characteristics of scenario and accumulation.Based on the generative logic of cogni⁃tion,interest,system,and technology,it exhibits security risks in dark data,data aggregation,data mining,data profil⁃ing,data rights,and privacy compute.

关 键 词：公共数据开放 隐性数据安全风险 数据安全 数据安全风险治理 

分 类 号：G203[文化科学—传播学]