Development and suggestions for manufacturing cybersecurity under the background of digital transformation

doi:10.12267/j.issn.2096-5931.2024.08.002

Abstract

Abstract:

Against the backdrop of digital transformation, cybersecurity threats are becoming increasingly serious, and the potential threats of systemic cyber risks are constantly increasing. However, current digital product designers and manufacturers often fail to fully recognize the importance of cybersecurity, leading to significant flaws in the quality management of cybersecurity during the manufacturing process. To tackle this challenge, the United States and Europe have emphasized the role of government intervention when market mechanisms are ineffective, swiftly enacting a series of policies and regulations to enhance the security quality management of digital products in the production phase. Therefore, China must adhere to independent innovation, leverage its first mover advantage in endogenous security theory and mimetic construction technology in the manufacturing industry, and propose a solution that balances cybersecurity responsibilities and risks to avoid falling behind.

Key words: digital transformation, cybersecurity threats, manufacturing-side cybersecurity, endogenous security, mimetic construction

CLC Number:

F49
TP393.08

GENG Jinbu, HE Lei, NIU Yukun. Development and suggestions for manufacturing cybersecurity under the background of digital transformation[J]. Information and Communications Technology and Policy, 2024, 50(8): 9-16.

Add to citation manager EndNote|Ris|BibTeX

URL:

http://ictp.caict.ac.cn/EN/10.12267/j.issn.2096-5931.2024.08.002

http://ictp.caict.ac.cn/EN/Y2024/V50/I8/9

Figures/Tables 4

References 15

[1]	余建川. 欧盟网络安全建设的新近发展及对我国的启示:基于《欧盟数字十年网络安全战略》的分析[J]. 情报杂志, 2022, 41(3):87-94.
[2]	NAI FOVINO I, BALDINI G, CHAUDRON S, et al. Cybersecurity, our digital anchor[R]. Luxembourg: Publications Office of the European Union, 2020.
[3]	ANDERSON R, PRICE J. Cyber-informed engineering: the need for a new risk informed and design methodology[EB/OL]. (2015-06-01)[2024-07-01]. https://www.osti.gov/biblio/1236850.
[4]	美国白宫, 李天婴. 2023年《国家网络安全战略》(译文)[J]. 信息安全与通信保密, 2023(3):51-63.
[5]	CISA. Shifting the balance ofcybersecurity risk: principles and approaches for secure by design software[EB/OL]. (2023-10-25)[2024-07-01]. https://www.cisa.gov/sites/default/files/2023-10/SecureByDesign_1025_508c.pdf.
[6]	陈炳昊, 孔勇, 张昊. 美国《国家网络安全战略实施计划》解读[J]. 中国信息化, 2023(8):25-28.
[7]	NSA. NSA releases guidance on how to protect against software memory safety issues[Z/OL]. 2022[2024-07-01]. https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/3215760/nsa-releases-guidance-on-how-to-protect-against-software-memory-safety-issues/.
[8]	陈磊, 单博深, 左晓栋. 美国《网络安全框架》2.0概念文件研究[J]. 中国信息安全, 2023(8):88-92.
[9]	CISA. CISA open source software security roadmap[EB/OL]. (2023-09-12)[2024-07-01]. https://www.cisa.gov/sites/default/files/2024-02/CISA-Open-Source-Software-Security-Roadmap-508c.pdf.
[10]	董国伟. 从美行政令看软件供应链安全标准体系的构建[J]. 中国信息安全, 2022(2):84-87.
[11]	李超, 柴智. 美国《系统和组织网络安全供应链风险管理实践》概述与启示[J]. 保密科学技术, 2022(11):52-59.
[12]	CISA. A Hardware Bill of Materials (HBOM) framework for supply chain risk management[EB/OL]. (2023-09-25)[2024-07-01]. https://www.cisa.gov/sites/default/files/2023-09/A%20Hardware%20Bill%20of%20Materials%20Framework%20for%20Supply%20Chain%20Risk%20Management%20%28508%29.pdf.
[13]	SCHMITTNER C, MA Z, SCHOITSCH E. Combiner safety and security development lifecycle[C]// IEEE 13th International Conference on Industrial Informatics (INDIN), Cambridge: IEEE Press, 2015: 1408-1415.
[14]	ASSANTE M, MICHEL C S, FREEMAN S G, et al. Consequence-driven cyber-informed engineering and related systems and methods:US11483331[P]. 2022-10-25.
[15]	邬江兴. 网络空间拟态防御研究[J]. 信息安全学报, 2016, 1(4):1-10.