Journal of Information Security Reserach ›› 2022, Vol. 8 ›› Issue (12): 1192-.

Previous Articles     Next Articles

Research on Customers Information Detection and Security Analysis for ISP

  

  • Online:2022-12-03 Published:2022-12-01

运营商用户信息检测与安全分析研究

于文良1马田良2黄鹏3邱杰3   

  1. 1(中国电信集团有限责任公司北京100029) 
    2(北京易华录信息技术股份有限公司北京100043)
    3(中电信数智科技有限公司北京100035))
  • 通讯作者: 于文良 高级工程师.主要研究方向为数据安全、信息安全、个人信息保护、密码应用. yuwl@chinatelecom.cn
  • 作者简介:于文良 高级工程师.主要研究方向为数据安全、信息安全、个人信息保护、密码应用. yuwl@chinatelecom.cn 马田良 工程师.主要研究方向为大数据、智慧城市及产业化. matl01@ehualu.com 黄鹏 高级工程师.主要研究方向为等级保护、密码学、数据安全、网络与信息安全. huangp12@chinatelecom.cn 邱杰 高级工程师.主要研究方向为等级保护、数据安全、5G安全、网络与信息安全. qiuj12@chinatelecom.cn

Abstract: Mobile Internet has been integrated into each aspects of our life. With the rapid development of digital economy, the value of researching ISP customers information is increasing and its importance is also increasing. Under the background of the official implementation of the Data Security Law of the People’s Republic of China and the Personal Information Protection Law of the People’s Republic of China, the security of ISP customers information has been increasingly concerned by the whole society. According to the relevant requirements of the security protection of ISP customers information, through the practice and analysis of the security detection combining dynamic detection and static detection, this paper proposes the innovative detection scheme of “one scene, one case” for the detection of ISP customers information. Aiming at the weak points of the security of customers information, the scheme proposes the idea of strengthening the detection intensity, frequency and supervision and rectification, so as to tighten the string of the customers information security of ISP and escort the accelerated development of enterprises.

Key words: user informarion, personal information protection, information leakage, safety testing, privacy protection

摘要: 当前,移动互联网已融入到人们生活的方方面面.随着数字经济的快速发展,运营商用户信息的研究价值越来越大,重要性也随之不断提高.在《中华人民共和国数据安全法》和《中华人民共和国个人信息保护法》正式实施的大背景下,运营商用户信息的安全性越来越被全社会关注.根据运营商用户信息安全保护的相关要求,通过动态检测、静态检测相结合的安全检测实践和分析,提出对运营商用户信息的检测采用“一景一案”的创新检测方案.该方案针对用户信息的安全薄弱点,提出增强检测力度、频度和督促整改的思路,崩紧运营商用户信息安全的弦,为企业加速发展保驾护航.


关键词: 用户信息, 个人信息保护, 信息泄露, 安全检测, 隐私保护