Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

The Ministry of Industry and Information Technology organizes the pilot work of network security insurance service, which can be compensated for data leakage and service interruption.

2024-07-21 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > IT Information >

Share

Shulou(Shulou.com)12/24 Report--

CTOnews.com news on December 21, the Ministry of Industry and Information Technology today issued a notice on organizing the pilot work of network security insurance services to speed up the implementation of a new model of network security insurance.

According to the notice, through the organization to carry out pilot cyber security insurance services:

First, promote enterprises to enhance the ability to deal with network security risks, promote enterprises to enhance their awareness of network security insurance, actively use network security insurance to prevent network security risks, and improve the network security risk management system. Enhance network security awareness and ability.

The second is to establish and improve the process mechanism of network security insurance, establish network security insurance standards and norms, and improve process standards and requirements for key links such as underwriting, underwriting and claims settlement, so as to promote the healthy development of network security insurance norms.

The third is to speed up the development of network security service new business type, accumulate practical experience in network security insurance, innovate a number of network security insurance products, cultivate a number of high-quality network security insurance institutions, and form a number of replicable and popularizable network security insurance solutions to promote the high-quality development of the network security industry.

CTOnews.com learned from the notice that combined with the existing types of network security insurance in China at the present stage, this pilot insurance mainly includes two categories: network security property insurance and network security liability insurance.

Network security property insurance mainly protects the direct losses of the first party caused by network security incidents and the resulting technical service fees, including direct physical losses, business interruption losses, data asset replacement costs, hardware improvement costs, emergency disposal costs, as well as public relations fees and legal fees caused by network security incidents.

Network security liability insurance mainly protects liability for compensation to third-party individuals or institutions caused by network security incidents, including liability for data disclosure, liability for network security incidents, liability for media tort, liability for subcontractors, product liability or professional liability for technical services, etc.

Combined with the reality of the development of network security insurance in China, the pilot contents include enterprise insurance and network security products, information technology products, and network security service insurance for key industries such as telecommunications and Internet, industrial Internet, vehicle networking, and so on. The main pilot contents are as follows.

(1) the enterprise category takes the enterprise legal person as the insured, which mainly protects the property loss or liability for compensation caused by the network security incident.

1. Telecommunications and Internet companies. For telecom and Internet enterprises such as basic telecom operators, Internet enterprises, cloud service providers and other telecom and Internet enterprises, in view of the risk scenarios such as platform service interruption caused by network attacks or improper operation of internal personnel, such as servers, websites and platforms, and the malicious tampering and utilization of data, it mainly covers business interruption losses, data asset replacement costs, third-party claim losses, emergency disposal expenses, and so on.

two。 Industrial Internet enterprises. For industrial Internet enterprises such as networked industrial enterprises, industrial Internet platform enterprises, identification parsing enterprises and other industrial Internet enterprises, in view of the failure of networked industrial equipment or industrial control systems caused by network attacks or improper operation of insiders, automatic production lines stop operation, important data are encrypted and locked, and other risk scenarios, mainly cover business interruption losses, data asset replacement costs, emergency disposal costs, and so on. For enterprises in important industries such as raw materials industry, equipment industry, consumer goods industry and electronic information manufacturing industry, in view of the failure of production and manufacturing systems caused by network attacks or improper operation, office automation and other risk scenarios such as system interruption and management data damage mainly cover business interruption losses, data asset replacement costs, emergency disposal costs, and so on.

3. Car networking enterprise. For vehicle manufacturing enterprises, vehicle electronic system manufacturing enterprises, electronic parts enterprises, intelligent vehicle operators and other vehicle networking related enterprises, aiming at the risk scenarios such as assembly line operation failure, vehicle design sensitive data leakage caused by network attacks, system design defects, improper operation, etc. It mainly underwrites the claim losses of car owners, vehicle personnel and third parties, data asset replacement costs, hardware improvement costs, business interruption losses, emergency disposal expenses, and so on.

4. Enterprises in other industries. For enterprises in health care, finance, energy and other industries, combined with the characteristics of network security risks in the industry, focus on risk scenarios such as component anomalies, system outages, service interruptions, and data leaks caused by network attacks, improper operations, and code defects, and determine the scope of insurable first-party losses and third-party liability.

(2) the product and service category takes the purchaser of the product and service as the protection object, and mainly protects the property loss or liability for compensation caused by the network security incident.

1. Network security products. It mainly underwrites property losses and third-party liability that may occur during the provision or operation and maintenance of network security products. It mainly protects the first-party losses caused by network security incidents, such as emergency disposal costs, business interruptions, or third-party claims caused by data leakage, so as to increase the trust of network security products. Network security products include, but are not limited to, anti-DDoS protection, data leakage prevention, anti-extortion software, terminal detection response, Web application firewall and so on.

two。 Network security services. It mainly underwrites the professional responsibilities of professional and technical personnel engaged in network security services. Mainly protect professional and technical personnel in the service process of negligence, errors and dereliction of duty caused by related information system paralysis, failure, collapse or data change, loss, disclosure and other third-party claims for losses. Network security services include, but are not limited to, network security risk assessment, security operation, emergency response, etc.

3. Information technology products. Mainly underwrite the network security responsibility of information technology products. It mainly protects the network security events caused by the products or services of information technology products that do not meet the explicit standards (such as contractual agreements, etc.). Including the user information system paralysis, failure, collapse or data change, loss, disclosure and other third-party claims for losses.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Share To

IT Information

Wechat

© 2024 shulou.com SLNews company. All rights reserved.

12
Report