[Purpose/significance] Aimed at the personal data security risk sources caused by enterprises in the mobile network environment, this paper intends to promote the awareness of personal data protection by analyzing the security risks of personal data from the aspects of collection subjects, collection objects, collection time and collection methods, and provide reference for establishing a sound personal data security system in China.[Method/process] Literature investigation method is adopted to understand the domestic and foreign research status of personal data security risk. Website research method and case analysis method are adopted to understand the cases of personal data risk caused by enterprises at different collection period with different collection methods. [Result/conclusion] This paper sorts out the personal data risk sources caused by enterprises in the mobile network environment from the aspects of collection subjects, collection objects, collection period and collection methods, and sums up the risk categories.
Huang Guobin
,
Liu Xinran
. An Analysis of Personal Data Security Risks Caused by Enterprises in Mobile Network Environment[J]. Library and Information Service, 2017
, 61(10)
: 57
-67
.
DOI: 10.13266/j.issn.0252-3116.2017.10.008
[1] 中国互联网络信息中心CNNIC.中国互联网络发展状况统计报告[EB/OL].[2017-02-06].http://cnnic.cn/hlwfzyj/hlwxzbg/hlwtjbg/201701/P020170123364672657408.pdf.
[2] DCCI互联网数据中心.2016中国Android手机隐私安全报告[EB/OL].[2017-02-06].http://www.dcci.com.cn/media/download/2716b7369ac4a744c842683ec1a89e718c74.pdf.
[3] 罗冰眉. 网络环境下个人数据与其隐私权的保护[J]. 现代情报,2003 (9):54-56,59.
[4] 黄国彬,张莎莎,闫鑫.个人数据的概念范畴与基本类型研究[J].图书情报工作,2017,61(5):41-49.
[5] 徐旭光. 论网络时代个人数据及保护[J]. 图书情报工作,2003 (5):87-90,104.
[6] 熊保娇,李法运. 大数据环境下个人数据保护问题探析[J]. 信息安全与通信保密,2014 (9):136-139.
[7] 田桂兰. 网络环境下个人信息安全问题及其保护[J]. 信息化建设,2007 (6):42-44.
[8] CHUN S A, ATLURI V. Risk-based access control for personal data services[J].Algorithms, architectures and information systems security,2008(11):263-283.
[9] 罗力. 我国移动互联网用户个人信息安全风险和治理研究[J]. 图书馆学研究,2016 (13):37-41.
[10] 李卓卓,马越,李明珍. 数据生命周期视角中的个人隐私信息保护——对移动APP服务协议的内容分析[J]. 情报理论与实践,2016,39(12):63-68.
[11] 谢丰. 移动互联网隐私泄露及危害研究[C]//中国通信学会.虚拟运营与云计算——第十八届全国青年通信学术年会论文集(上册).北京:中国通信学会,2013:8.
[12] SMITH H J, MILBERG S J, BURKE S J. Information privacy: measuring individuals' concerns about organizational practices[J]. MIS quarterly, 1996, 20(2): 167-196.
[13] 机锋论坛[EB/OL].[2017-02-06]. http://bbs.gfan.com/.
[14] 安卓网[EB/OL].[2017-02-06]. http://bbs.hiapk.com/.
[15] 威锋网[EB/OL].[2017-02-06]. https://www.feng.com/.
[16] 看雪论坛[EB/OL].[2017-02-06]. http://bbs.pediy.com/.
[17] 工信部.工业和信息化部关于印发《移动智能终端应用软件预置和分发管理暂行规定》的通知[EB/OL].[2017-02-06].http://www.miit.gov.cn/n1146285/n1146352/n3054355/n305 7709/n3057714/c5436811/content.html.
[18] 文艳霞. 移动互联环境下的App与期刊App[J]. 出版发行研究,2012 (9):82-85.
[19] 工信部.工业和信息化部关于加强移动智能终端进网管理的通知[EB/OL].[2017-02-06].http://www.gov.cn/zwgk/2013-10/31/content_2518541.htm.
[20] 中国消费者报."金立"、"ViVo"等手机涉嫌"偷"用户隐私[EB/OL].[2017-02-06].http://news.china.com/socialgd/10000169/20170114/30174650.html.
[21] 360互联网安全中心.2016年中国手机安全状况报告[EB/OL].[2017-02-06].http://zt.360.cn/1101061855.php?dtid=1101061451&did=490260073.
[22] 百度百科.无线应用通讯协议. [EB/OL].[2017-02-06].http://baike.baidu.com/link?url=xEnhhFjc78y2l7I7K18H0zo XQXp6OYhXwxOyffDaOVkUeY-CfD_iRVGlZheMaDH0bmEG0Us DVFvN9FoX_erCmWp9XVx1HIuQl271yk7_IGdtKEKpNfD9RoaR Jey1u5ZoRGmVcaPtpOHMzyEKMqgmyzH_qYZfT4L-fwihFI4yub UInbJmk86y21sFgrf5vWYDagjZ_z7bbieb44eEB4nSDa.
[23] 红黑联盟. 浅谈WAP网站安全[EB/OL].[2017-02-06]. http://www.2cto.com/article/201101/82112.html.
[24] 龚璇. 移动网络个人信息安全研究[D].武汉:华中科技大学,2013.
[25] 南婷. 苹果承认留"后门",可不知不觉"偷"隐私[N]. 新华每日电讯,2014-07-29(5).
[26] 新华网.中共中央办公厅国务院办公厅印发《关于促进移动互联网健康有序发展的意见》[EB/OL].[2017-02-06].http://news.xinhuanet.com/2017-01/15/c_1120315481.htm.
[27] 腾讯科技.苹果iOS曝安全漏洞开发者可复制用户图片[EB/OL].[2017-02-06].http://tech.qq.com/a/20120229/000302.htm.
[28] 搜狐新闻.一部手机、几行代码,你的生活可能就被直播了!八成家用摄像头有问题![EB/OL].[2017-02-06].http://mt.sohu.com/20160511/n448881319.shtml.
[29] 网易新闻. 倒卖200万条个人信息 6人受审- 均从事教育培训工作受害人收到大量垃圾短信[EB/OL].[2017-02-06]. http://news.163.com/15/0312/01/AKFI7RMH00014AED.html.
[30] 新华网. 我们的"个人信息"是如何泄露的[EB/OL].[2017-02-06]. http://news.xinhuanet.com/tech/2016-08/30/c_1119475792.htm.
[31] 孟晓明,张军,谢少群. 个人隐私信息安全现状调查与分析[J]. 图书情报工作,2012,56(21):72-76.
[32] 新华网.安卓App霸王条款遭质疑[EB/OL].[2017-02-06].http://news.xinhuanet.com/tech/2014-06/07/c_126589826.htm.
[33] 搜狐新闻.对APP恶意勒索个人信息的"霸王条款"说不[EB/OL].[2017-02-06].http://mt.sohu.com/20161015/n470336411.shtml.
[34] 童拿云. 大数据时代的个人隐私保护[D].上海:上海师范大学,2015.
[35] NARAYANAN A, SHMATIKOV V.How to break anonymity of the Netflix prize data set[EB/OL].[2017-02-06].https://arxiv.org/pdf/cs/0610105.pdf.
[36] McAfee. Apps sending plain http put personal data at risk[EB/OL].[2017-02-06].https://securingtomorrow.mcafee.com/mcafee-labs/apps-sending-plain-http-put-personal-data-risk/.
[37] 新浪科技.当心手机出卖你:手机数据能"复活"会泄密[EB/OL].[2017-02-06].http://tech.sina.com.cn/it/2014-09-05/09499597255.shtml.
[38] 腾讯网. WiFi万能钥匙是如何收集用户数据的? [EB/OL].[2017-02-06]. http://xian.qq.com/a/20150227/014600_all.htm.
[39] 搜狐资讯.不同意就不能安装微软"霸王条款"被判无效[EB/OL].[2017-02-06]. http://roll.sohu.com/20110707/n312738412.shtml.
[40] 沈旭红. 浅议网络个人数据的隐私权保护[J]. 法制与经济(下旬),2011(2):91-92.
[41] 中国法院网.个人信息买卖到赃款套现一条龙宾阳8被告人被控诈骗等多项犯罪[EB/OL].[2017-02-06].http://www.chinacourt.org/article/detail/2017/01/id/2512742.shtml.
[42] 网易科技.数据过度解读就是滥用数据[EB/OL].[2017-02-06].http://tech.163.com/15/0927/06/B4GGTRL900094ODV.html.
[43] 新浪财经.央视曝光网易邮箱偷窥用户邮件内容[EB/OL].[2017-02-06].http://finance.sina.com.cn/consume/puguangtai/20130315/221514850109.shtml.
[44] 中国大数据网.全球每年有7.07亿条数据记录被盗用[EB/OL].[2017-02-06].http://www.thebigdata.cn/YeJieDongTai/29771.html.
[45] 新浪科技.光缆挖断影响支付宝、支付宝2个小时完成修复[EB/OL].[2017-02-06].http://tech.sina.com.cn/i/2015-05-27/doc-iavxeafs8200893.shtml.
[46] 新华网. 浙江慧达驿站2000W开房数据被泄北京人信息22万条[EB/OL].[2017-02-06]. http://news.xinhuanet.com/fortune/2014-01/21/c_126038862.htm.
[47] 360互联网安全中心.2015年中国手机安全状况报告[EB/OL].[2017-02-06].http://zt.360.cn/1101061855.php?dtid=1101061451&did=1101593997.
[48] 证券时报网.央视315晚会:招行工行内部员工泄露出售客户信息[EB/OL].[2017-02-06].http://kuaixun.stcn.com/content/2012-03/15/content_5048997.htm.