反思与借鉴:美国网络安全信息共享规制研究

Reflection and Reference: Research on the Regulation of Cybersecurity Information Sharing in the United States

随着网络日益成为人类信息交流的主要载体,网络安全信息的合理共享便成为各国政府不可回避的议题。作为先行者,美国对网络安全信息共享机制进行的全方位研究可谓意义深远。以“共享”为主线,通过剖析共享范围/类型、共享主体与程序、私主体信息共享责任的豁免、共享权力限制等4个方面,力图准确把握美国于2015年通过的《网络安全信息共享法案》的要旨。为此,我国应通过合理界定网络安全信息共享的范围,构建特有的信息共享行政机制,赋予私主体责任豁免,确立利益平衡的基本原则,最终保障共享信息的合理使用。

As the Internet is increasingly becoming the main carrier of human information exchange,the reasonable sharing of cybersecurity information has become an unavoidable issue for governments around the world.As a forerunner,the United States of America has conducted a comprehensive study on the mechanism of cybersecurity information sharing.Therefore,it is of much significance for us to analyze the United States.With“sharing”as the main line,through the analysis of four aspects such as the sharing scope/type,sharing subject and procedure,exempting the responsibility of private subject on information sharing,and limiting sharing power,this paper tries to accurately grasp the gist of“Cybersecurity Information Sharing act of 2015”.China should reasonably define the scope of cybersecurity information sharing,build a unique information sharing administrative mechanism,exempt the private subject responsibility,establish the basic principle of interest balance so as to finally ensure the reasonable use of shared information.