December 20, 2019, the NPC Standing Committee law workers to hold a third press conference, the spokesman Yue Zhongming legislation will be disclosed next year Personal Information Protection Act included in the plan. Personal Information Protection Law will be forthcoming in 2020 and entered into force on January 1 of the "People's Republic of China cryptography" as a common legal basis for information security, protecting personal information of citizens.
Personal information leakage incident after another attention
1.APP illegal collection of personal information
With the rapid development of mobile Internet era, using APP has become a necessity of life, these APP make our lives more convenient, but also leakage of personal information "culprit." According to August 29, 2018 China Consumer Association released the "App leakage of personal information survey report" shows that more than eighty percent of respondents there have been leakage of personal information; "100 models App 2018 Nian 11 Yue 28 release of personal data collection and Privacy policy assessment report "shows that in 100 funds app statistics, there exist as many as 91 models of behavior App excessive collect personal information.
Today, the situation and the serious leakage of personal information, to a large extent threatens the security of personal assets. Information security risks have become increasingly prominent, therefore, the Personal Information Protection Act legislation is of great significance.
2. *** prevalence of the major sites platforms bad data leakage
According to the China Internet Network Information Center, CNNIC "44th China Internet Development Statistics Report Network" in the first half of 2019, 44.4% of Internet users suffer network security issues. Intelligent speakers, charging treasure, surveillance cameras ... these common things are likely to steal our privacy.
Criminals to steal user information through illegal means to enter the major sites of platforms, including account passwords, photos, videos, etc., data privacy, criminals will use to obtain confidential business documents to profit.
In recent years, due to information leakage lead to serious consequences of events after another. 2016, Yahoo announced during 2013-2014 and 15 million users of personal information was leaked. The incident directly caused Yahoo shares fell more than 6 percent, and eventually led to Yahoo's core Internet business was acquired, once vast empire eventually collapsed the Internet. Our times 12306 disclose user information, account numbers, passwords, social security, and mail and other information circulate freely on the Internet. After this year, Facebook because of privacy issues was fined $ 5 billion, again involving leaks scandal. and many more......
Protection of personal information security needs the joint efforts of all parties
Today, the illegal collection of personal information theft phenomenon after another, in addition to relying on the future of the Personal Information Protection Act legislation, enterprises and users should also strengthen information security, information security awareness training and vigilance.
1. The enterprises should strengthen the website data security
In addition to the conventional firewalls, DDoS protection and malware detection and other security tools also need to pay attention to data security with encryption. Today, most corporate Web site uses insecure http protocol, and http protocol does not provide any data encryption. Data transmission between the Web browser and the Web server is that anyone can identify plaintext, in the Internet equivalent of "streaking."
To address this security flaw, in 1994, Netscape devised Secure Sockets Layer (SSL) protocol, security of all communications over SSL and its successor, Transport Layer Security TLS encryption protocols two protectors Internet. SSL / TLS can be established between the Web browser and the Web server is a secure channel for data transmission is encrypted to ensure data eavesdropping and leakage in transit, ensure the security and integrity of the data. Add to the HTTP protocol SSL / TLS is https https, the site has become the most effective security solutions available.
SSL certificates can be upgraded to an insecure HTTP protocol HTTPS protocol to encrypt transmissions. Currently, the most popular international brand SSL Certificates Symantec, Geotrust, Comodo, Thawte and RapidSSL, etc., on EMC certificate can learn about the brand and its issuance of these certificates certificate-related information.
2. Personal information should develop a sense of security
Each of us should cultivate awareness of protecting the privacy of information security: Do not point links from unknown sources, especially text messages and e-mail link; telephone involving privacy, property, be sure to check the information, do not be fooled; the Internet "surfing" to Be careful, the timely removal of traces of browsing, carefully fill in personal information, do not easily scan two-dimensional code; express takeout orders not to be thrown away, do not forget to erase personal information; try not to use WiFi in public places, pay attention to turn off the automatic connection WiFi capabilities.
Protection Information security is everyone's responsibility, let us look forward to the advent of the Personal Information Protection Act, to protect our common security of personal information.
Disclaimer: This article published by "Shun certificate" original content shall not be reproduced without permission!