嵌入式治理:网络安全防御体系的制度嵌入原理

Embedded Governance:The Institutional Embedding Principle of Cybersecurity Defense System

当前频发的网络安全事件是网络空间脱嵌于社会约束的表现,将网络空间重新嵌入于法治背景中成为了重要的国家任务。基于共同的网络安全利益基础、一定的国家能力和网络安全防御体系这一适当嵌入点,国家实施了对于网络运营者的制度嵌入。这一策略通过改造网络运营者的经营架构来防范网络安全风险,是借助网络运营者自主性的治理活动所采取的间接治理措施。在此过程中,国家基于对防御体系的控制加强了国家建构。运用配套制度、模板示范和行政指导等手段,国家将网络安全等级保护制度和关键信息基础设施保护制度嵌入网络运营者,实现了以网络运营者为中介的嵌入式治理。

The currently frequent cybersecurity incidents are a manifestation of cyberspace being detached from social constraints,and it has become an important task of the state to re-embed cyberspace into the context of the rule of law.Based on common cybersecurity interests,enough state capacity,and the appropriate embedding point of the cybersecurity defense system,the state has implemented institutional embedding for network operators.This strategy prevents cybersecurity risks by modifying the business architectures of network operators,and is an indirect governance measure through the autonomous governance of network operators.In this process,the state strengthens its state-building based on the control of the defense systems.Using supporting regulations,demonstrations with templates and administrative guidance,the state embeds the cybersecurity level protection system and the key information infrastructure protection system into network operators to achieve the cybersecurity protection mediated by network operators.