政府数据开放共享安全保障问题与建议

Issues and Suggestions of Governmental Data Opening and Sharing Security Assurance

通过对国内外政府数据开放共享的需求、模式和安全现状进行调研分析,提出政府数据开放共享中政府数据权属关系需明确等安全问题,并从政策法规、标准配套、交换共享平台安全技术体系构建、数据服务能力评估等方面提出安全保障建议,同时构建了包括数据确权、数据分类分级、数据脱敏、安全标记、多级访问控制、数据族谱、安全审计、授权管理等的安全技术和安全管理防护体系,为政府数据开放共享打造"可用不可见"的安全空间。

By doing a comprehensive survey on governmental data opening and sharing requirements, model and present situation, list related security issues and challenges, and then give some suggestions about big data security assurance, from dimensions as policies and regulations, security standards, data sharing platform construction, and service- provider＇s security capabilities. At last, a big data security architecture including security techniques and management is proposed, taking data ownership, classification, security labeling, multilevel access control, data lineage, security audit, authorization management into consideration, in the purpose of providing a data ＂available but invisible＂ exchange space for governmental data sharing