摘要
小程序作为一种简单便捷的移动应用形态,应用数量和用户量快速增长。与此同时,小程序存在的一些用户个人信息安全风险也逐渐凸显,如:非法获取、超范围收集、过度索取个人信息等,直接威胁移动终端用户权益,逐渐成为业界关注的焦点。文章从架构、代码和数据三个层面分析小程序用户个人信息安全风险,对问题存在的原因进行了剖析,并提出针对性的意见和建议,以期提升移动应用行业整体个人信息保护水平。
As a simple and convenient form of mobile application,mini programs have a rapid increase in the number of applications and users.At the same time,some personal information security risks of users in mini programs are gradually becoming prominent,such as illegal acquisition,excessive collection,and excessive solicitation of personal information,which directly threaten the rights and interests of mobile terminal users and gradually become the focus of industry attention.This paper analyzes the personal information security risks of mini program users from three aspects of architecture,code,and data,analyzes the reasons why the problems exist,and proposes targeted opinions and suggestions to improve the overall level of personal information protection in the mobile application industry.
作者
宋恺
刘陶
杨萌科
贾宝国
SONG Kai;LIU Tao;YANG Mengke;JIA Baoguo(Key Laboratory of Mobile Application Innovation and Governance Technology,Ministry of Industry and Information Technology,Beijing 100191,China;CTTL Terminal Labs,China Academy of Information and Communications Technology,Beijing 100191,China)
出处
《现代信息科技》
2024年第21期73-77,共5页
Modern Information Technology
关键词
小程序
运行框架
数据处理流程
个人信息保护
mini program
operational framework
data processing process
personal information protection
