电子政务的国际研究特点及启示——基于Government Information Quarterly期刊的分析

运用文献计量分析法和内容分析法对2007-2011年间刊载于Government Information Quarterly的学术论文和社论进行统计分析。对文章的年载分布、著者及单位、被引频次及国家地区作了文献计量分析;并对文章内容进行分析,总结出Government Information Quarterly的研究方向和主题主要包括以下五个方面:电子政务基础理论研究,电子政务的实践应用,政府信息管理,电子政务的技术基础,电子政务的发展过程和前景。

A Role-Based PMI Security Model for E-Government

We introduce the general AC( atlribure certificate), the role specificationAC and the rolt assignment AC We discuss the rolt-based PMI(Privilege Management Infrastructure)architecture. The role-based PMT(Public-Kty In-frastructure) secure model forE-govcrnment isresearehed by combining the role-bastd PMI with PKI architeclure (Public Key Infrastructure). Themodel has advantages of flexibility, convenience, less storage space and less network consumptionetc. We are going to ust iht secure modelin the E-govern-ment system.

On the Phenomenon of Information Silo in the E- government Construction in China

In the past decade,the e-government affairs keep developing,which prom otes the reform of governmental affairs and the enhancement of administrative efficiency.However,the phenomenon of inform ation silo has bad influence upon the governm ental information resources sharing and the efficiency of the e-government affairs,hindering inform ation connectivity,so that the government management cannot meet the need of society,nor can the e-governm ent develop in the long run.This paper attempts to analyze the embodiment and causes of the phenomenon of information silo,putting forward measures of solving the problem of inform ation silo.

The Challenge of Implementing Information Security Standards in Small and Medium e-Business Enterprises

The dynamic nature of online systems requires companies to be proactive with thwarting information security threats, and to follow a systematic way for managing and evaluating the security of their online services. The existence of security standards is an important factor that helps organisations to evaluate and manage security by providing guidelines and best practices that enable them to follow a standard and systematic way to protect their e-Business activities. However, the suitability of available information security standards for Small and Medium e-Business Enterprises (e-SME) is worth further investigation. In this paper three major security standards including Common Criteria, System Security Engineering-Capability and Maturity Model and ISO/IEC 27001 were analysed. Accordingly, several challenges associated with these standards that may render them difficult to be implemented in e-SME have been identified.

技术压力对公务员信息安全行为的影响机制——基于SEM和ANN的混合方法

[研究目的]新兴信息技术的发展在驱动数字政府建设的同时,也引发了严峻的安全挑战,探究技术压力对公务员信息安全行为的影响机制将有利于提升政府部门的安全管理效能。[研究方法]基于信息安全技术压力框架(技术过载-技术复杂性-技术不确定性)构建研究模型,共收集418份公务员的多阶段问卷数据并使用结构方程模型(SEM)和人工神经网络(ANN)的混合方法进行分析。[研究结论]技术过载和技术复杂性对公务员信息安全行为有显著的负向影响,其中技术复杂性的影响程度强于技术过载,但是技术不确定性的作用不显著;组织承诺显著影响公务员信息安全行为,且低承诺公务员对技术复杂性更为敏感。

Understanding trust-related factors affecting citizen adoption of e-government services

Purpose:Today,the use of e-government services is still at a low level in China.Based on the understanding that citizen trust is an important factor influencing e-government adoption,this research tries to develop a model of citizen trust in e-government in an effort to study the impacts of trust-related factors on citizen intentions to adopt e-government services.Design/methodology/approach:The data was collected from an online survey of 182Chinese users who had more than 3 years' online experiences of using government websites.Structural equation modeling analysis was used to validate the proposed model.Findings:Our survey shows that trust in e-government,perceived usefulness and perceived ease of use are critical factors that influence citizen intentions to use e-government services.The study findings also indicate that citizen trust in e-government is positively associated with trust in government,institution-based trust and perceived usefulness of e-government services.Research limitations:The survey sampled adults aged from 25 to 35 years old.Such a limited sample group cannot represent all of the population.So a larger sample involving more experienced online users will yield more useful results.Practical implications:The study results will help government agencies,especially the Chinese government agencies,find ways to improve the Chinese citizens' trust in e-government and promote their adoptions of e-government services.Originality/value:Previous researches have investigated separately the impacts of user evaluation of government websites and user trust in e-government on user intentions to engage in e-government.This study makes a theoretical contribution by integrating these two perspectives and building a model of citizen trust in e-government in understanding the impacts of trust-related factors on citizens' adoptions of e-government initiatives.

Optimum Spending on Cybersecurity Measures: Part II

The purpose of this research is to investigate the decision-making process for cybersecurity investments in organizations through development and utilization of a digital cybersecurity risk management framework. The initial article, Optimum Spending on Cybersecurity Measures is published on Emerald Insight at: https://www.emerald.com/insight/1750-6166.htm, contains the detailed literature review, and the data results from Phase I and Phase II of this research REF _Ref61862658 \r \h \* MERGEFORMAT [1]. This article will highlight the research completed in the area of organizational decision-making on cybersecurity spend. In leveraging the review of additional studies, this research utilizes a regression framework and case study methodology to demonstrate that effective risk-based decisions are necessary when implementing cybersecurity controls. Through regression analysis, the effectiveness of current implemented cybersecurity measures in organizations is explored when connecting a dependent variable with several independent variables. The focus of this article is on the strategic decisions made by organizations when implementing cybersecurity measures. This research belongs to the area of risk management, and various models within the field of 1) information security; 2) strategic management; and 3) organizational decision-making to determine optimum spending on cybersecurity measures for risk taking organizations. This research resulted in the development of a cyber risk investment model and a digital cybersecurity risk management framework. Using a case study methodology, this model and framework were leveraged to evaluate and implement cybersecurity measures. The case study methodology provides an in-depth view of a risk-taking organization’s risk mitigation strategy within the bounds of the educational environment focusing on five areas identified within a digital cyber risk model: 1) technology landscape and application portfolio; 2) data centric focus; 3) risk management practices; 4) cost-benefit analysis for cybersecurity measures; and 5) strategic development. The outcome of this research provides greater insight into how an organization makes decisions when implementing cybersecurity controls. This research shows that most organizations are diligently implementing security measures to effectively monitor and detect cyber security attacks, specifically showing that risk taking organizations implemented cybersecurity measures to meet compliance and audit obligations with an annual spend of $3.18 million. It also indicated that 23.6% of risk-taking organizations incurred more than 6 cybersecurity breaches with an average dollar loss of $3.5 million. In addition, the impact of a cybersecurity breach on risk taking organizations is as follows: 1) data loss; 2) brand/reputational impact; 3) financial loss fines; 4) increase oversight by regulators/internal audit; and 5) customer/client impact. The implication this research has on practice is extensive, as it focuses on a broad range of areas to include risk, funding and type and impact of cyber security breaches encountered. The survey study clearly demonstrated the need to develop and utilize a digital cybersecurity risk management framework to integrate current industry frameworks within the risk management practice to include continuous compliance management. This type of framework would provide a balanced approach to managing the gap between a risk-taking organization and a risk averse organization when implementing cybersecurity measures.

Assessing Factors Affecting the Adoption of E-Government Services in Developing Countries for Transport Sector, amidst the Covid-19 Pandemic

The study was looking at establishing factors that are affecting the adoption of electronic government services in the Developing Countries for Transport sector amidst the Covid-19 pandemic based on the Unified Theory of Acceptance and Use of Technology Model (UTAUT). The study first looked at the major challenges faced by the Zambian transport sector in the implementation of e-government services among the citizens. The study then proposed a model through a web-based e-commerce web portal that could be adopted to address the challenges identified in the study. The study was based on all registered motor vehicles. These were from the various transport sectors in Zambia’s capital city, Lusaka. Both qualitative and quantitative data was collected from respondents using a structured questionnaire. The questionnaire was generated based on the UTAUT conceptual model. The response rate was 57% giving 141 questionnaire responses from the four transport providers. The Chi-Square test of independence was used to analyze the data using SPSS software. The results showed that interaction between trust in government and trust in the Internet has a significant effect on the utilisation of e-government services. The test had an observed P-Value of 0.05 against the Chi-Square value of 59.535. The results further showed that e-services control and effort expectancy had a significant impact on the actual utilisation of e-government services.

Technology Acceptance Factors for Implementing the E-Government Systems in Saudi Arabia

Governments are implementing E-Government systems to match the other services due to the rapid worldwide development. Therefore, public sectors interact with many individuals;utilizing this technology lowers costs, enhances services, boosts efficiency, and saves time. The Government of Saudi Arabia has had various obstacles in serving its populace. Poor service delivery and excessive Government operating costs resulted from this manual service delivery. As a result, the Government launched the E-Government systems, which provide services more quickly. As a result, the report covered Saudi Arabia’s efforts to adopt E-Government, its difficulties, and its objectives to advance the 2030 vision. This study examined the adoption of E-Government systems using the Unified Theory of Acceptance and Use of Technology (UTAUT) in Saudi Arabia. A sample size of 200 was estimated using the Convenience approach and received 58% of the response from employees and end-users of the E-Government systems. Data were analyzed using MS-Excel and SMART PLS for testing the hypothesis and applying the Partial Least Square approach. The results of the hypothesis testing reveal several meaningful relationships, including relative benefits, compatibility, security, management support, performance expectations, perceived Usefulness of E-Government, ease of use by reducing uncertainty to E-Government, and IT infrastructure by reducing language on E-Government adoption.

Secure Socket Layer协议在电子政务系统安全建设中的应用

针对目前日益突出的电子政务安全问题,在Secure Socket Layer协议的基础上,对我国电子政务的安全问题进行探讨,并针对目前政府机构信息化建设中的数据安全传输问题提出几点改进工作方案。

Design and Development of E-Governance Model for Service Quality Enhancement

Governance is a process of establishing policies or laws and continuously monitoring their implementation in the public. Citizens are the main stakeholders in this process. To make the governance process cost effective, easy and convenient to the citizens, information and communication technologies (ICTs) are playing a vital role. Using ICTs in governance domain can be referred as e-governance. It helps citizen to participate not only in policy making but also in service quality improvements and getting government services over network. Web technology is one of the major technologies that have been used in e-governance as a major contributor. Before invention of web, citizens used to write their opinions and send to concerned body via post mail or local suggestion box for improvements of services. After the invention of the web, it became possible to post or send the opinions/comments over organization’s web sites or portals. As the number of comments increases over the web, it is very difficult to have relevant information for furthering the decision making processes. In these study, text processing and data mining techniques have been used. The prototype system classifies citizen’s opinions in one of six service categories with the precision of 87.3% and recall of 85.8%. Further, the system determines opinions as appreciation with the precision of 100% for both depression and appreciation, and average recall of 90.85% for both depression and appreciation. The results obtained from the prototype system indicate that the techniques that have been applied are promising for real world application in e-governance.

E-Governance in Rural India: Need of Broadband Connectivity Using Wireless Technology

The Information and Communication Technologies play an important role in rural development. The Empowerment of rural communities is crucial for the development of the rural region. Bringing the people in the rural region in the mainstream of the digital technologies to access and adopt modern technologies is a major concern now. Rural Development implies both, the economic development of the people and greater social transformation using electronic governance (e-governance). In order to provide the rural people in Maharashtra with better prospects and opportunities for economic development, agricultural development and management, marketing management, increased participation of rural people in usage and adoption of information and communication technologies (ICTs) is envisaged. This paper aims to explore the nature, role and relevance of the Electronic/Digital Governance using ICTs and wireless technologies for agriculture and rural development in the rural regions. It also aims to study the impact of e-governance on rural development and methods for improving local environmental governance having regard particularly to the range of interests and actors involved in e-governance. The paper examines the current status of electronic governance in Jalgaon district in India. It focuses on development of the model using ICTs/wireless technologies for e-governance of Jalgaon district in Maharashtra state, India.

Formalizing Land Administration through E-Governance Mechanism in Sri Lanka

This paper proposes a comprehensive and practical approach to implement a land administration act in Sri Lanka followed by setting up a Land Administration Commission (LAC), which is a separate entity to maintain a Land Administration Database Management System in support of the land information collected and maintained by stakeholders who deal with matters related to land and its decision-making under e-governance concept. Also, It describes the operations of the four core functions: land tenure, land valuation, land use, and land development in land administration under a single sustainable national land policy, underpinned by spatial information under the e-Governance mechanism. Further, the paper identifies the stakeholders and their main responsibilities in each of the four core functions with the current issues in sharing information across stakeholders. Finally, the paper describes setting up a Land administration entity thereby empowering the LAC and introduces spatial information layers at different resolution levels in a centralized land administration spatial database to keep track of all land transactions carried out by each stakeholder. This approach will enable the top-level decision-making authority (the central level) to manage all land-related activities under one platform to contribute towards the sustainable land development of the country. It is proposed to implement this approach as a pilot activity in the district of Colombo and expand it in the entire country gradually with its output.

企业数字化转型中信息安全治理影响因素研究——基于解释结构模型的分析

识别企业数字化转型中信息安全治理的影响因素以及影响因素间的层次结构关系,有助于企业管控数字化运营的信息安全风险。通过文献分析、案例总结和专家咨询等方式识别企业信息安全治理的影响因素,在此基础上运用解释结构模型(ISM)对企业信息安全治理的影响因素进行层次结构和运行机理分析。结果表明:企业信息安全治理以风险处置、职责明确、行为塑造、知识共享和反馈改进的治理模式为直接依赖,以合规治理、流程治理、责任治理、契约治理和关系治理的治理机制为中间保障,以CEO决策力、CIO有效性、CFO支持度、TMT凝聚力和问责制的治理结构为高层支持。

生成式人工智能个人信息安全挑战及敏捷治理

生成式人工智能秘密收集个人敏感数据,冲破“知情同意”原则和“最小必要”原则的限制,或将使信息关联违法高发。生成式人工智能信息收集行为主动、收集内容全面、泛化能力强劲,对“知情同意”原则和“最小必要”原则带来严重挑战。宏观层面,我国现有民事法律无力于数据安全治理,刑事法律缺乏明确的违法计量标准,由行政法规挑起数据法治大梁。微观层面,我国现有法律规范体系对被侵权人加以不合理的举证义务,司法救济路径单一,不利于权利救济。选择风险控制路径,从算法协议透明化、治理场景化和多方位协同化应对信息关联违法等方面展开制度构建,引入个人敏感数据单独监管制度和预防性公益诉讼制度破解该困局。

智慧校园一卡通系统安全防护策略

高校一卡通系统作为智慧校园信息化建设的重要领域,为院校的教学、管理和师生生活保驾护航。随着智慧校园一卡通系统功能的复杂化和多样化,其安全问题也日益突出,文章针对智慧校园一卡通系统应用过程中所面临的典型的信息安全问题,从校园卡结构、终端安全、数据存储安全、数据传输安全、数据库安全等几个方面构建相应的安全策略,为高校智慧校园一卡通信息系统的安全建设和管理提供理论借鉴。

全球化背景下的网络内容安全风险升级与治理

网络内容安全是网络内容治理的重要方面,也是信息安全和国家安全领域的重要命题。网络内容的内涵随着互联网技术和全球化趋势的演进发生了变化,传统的技术领域风险逐渐向认知领域拓展。在生成式人工智能出现和发展的背景下,网络内容安全风险进一步出现了隐蔽化、长线化转向,为社会带来了深层次风险与挑战。深刻认识网络内容安全的发展变化与风险挑战,厘清网络内容安全风险升级背后的基本逻辑关系,构建现代化的网络内容安全治理体系,是推进互联网治理、应对网络安全问题和维护国家安全的重要使命与目标。

元宇宙视域下个人信息保护的困境及法规重塑

元宇宙是下一代互联网的数字技术媒介。在元宇宙的中心化治理、分布式治理的场景下,个人可以实现深度媒介化的虚拟数字化生存,也伴随着数据安全的挑战,面临着个人信息外延持续扩大、个人生物信息被收集、“知情-同意”原则被冲击、传统信息监管模式被打破等个人信息保护危机。加强对元宇宙的规则建构探索,对于个人数据安全乃至国家战略安全都具有重要意义。当前,需要通过构建技术促进规则、厘清个人生物信息法律定位、重构分层—动态同意原则、平衡平台与个人权利关系等有效措施,积极解决元宇宙数字媒介空间下的个人信息保护问题。

帮信罪与拒履网安义务罪适用差异研究——以刑法网络治理模式为视角

帮助信息网络犯罪活动罪的司法案件数量和学术讨论热度远超拒不履行信息网络安全管理义务罪,教义学分析无法充分解释二罪差异。实证分析二罪理论文献及司法解释文件,发现国家对拒不履行信息网络安全管理义务罪的网络治理效能抱有期待。适当转变司法治理思维,减少直接性控制,承认社会个体治理能力,建立“共建共享公治”的多元网络治理格局,既符合我国的社会发展趋势也具备政策基础。多元治理利于调动网络安全管理义务人网络专长,及时处理信息。即使无法完全采取多元治理模式,也应对帮助信息网络犯罪活动罪的体系突破进行限缩,防止其持续膨胀。