This afternoon, October 31, continuing the National Assembly's working program, National Assembly deputies group 6 (National Assembly delegations of Lang Son, Dong Nai provinces, and Hue city) discussed the draft Law on Cyber Security.
Comprehensive consideration of structure and compatibility
Commenting on the draft Law, the National Assembly Deputies of Group 6 commented: in the context of widespread digital transformation, the internet and social networking platforms have become an essential part of life. However, along with that are many risks of losing network security, data breaches, system attacks, spreading false information, insulting organizations and individuals, and even violating state secrets. There is a risk of information leakage from activities, using free wifi networks or unsecured internet connections when officials, civil servants and public employees go abroad for work.
According to National Assembly Deputy Nguyen Thi Suu ( Hue City), the draft Law on Cyber Security has demonstrated efforts to consolidate and streamline the provisions of the 2018 Law on Cyber Security and the 2015 Law on Network Information Security. However, in order for the law to be truly feasible, transparent, internationally compatible and consistent with national digitalization practices, it is necessary to continue to deeply review the chapter structure, scope of regulation and feasibility of technical regulations.
Specifically, delegate Nguyen Thi Suu said that: some concepts still overlap, especially between "network", "cyberspace", "information system", "cyber security". Therefore, it is proposed to standardize the concept system in the direction: "Cyber security" is an overarching concept; "Cyber information security" and "Data security" are two components. Concepts such as "malware", "cyber terrorism", "cyber espionage" should be included in specialized chapters to help the law be flexible, easy to update according to the development of technology, avoiding duplication of content between articles.
According to delegate Nguyen Thi Suu, Article 24 of the draft Law on Protection of the Vulnerable in Cyberspace stipulates that the scope of “vulnerable” is too broad and inconsistent with specialized laws. Therefore, it is recommended to refer to and harmonize with the Law on the Elderly, the Law on Gender Equality and the Law on Children to ensure compatibility and avoid legal overlap.
VPN control and clearly define IP management responsibilities
One of the technological issues of concern is the operation of virtual private networks (VPN). National Assembly Delegate Luu Ba Mac ( Lang Son ) analyzed that although VPN is a technological solution to protect information and encrypt data, the draft Law currently does not have provisions directly regulating this service.
Therefore, the delegate suggested that the drafting agency consider Add to Article 9 - "Prohibited acts", clearly stipulates: "It is prohibited to use, provide or rent virtual private network (VPN) services to conceal identity to bypass firewalls, illegally access or disseminate information that violates national security and social order and safety".
Regarding the name of the draft Law, National Assembly Deputy Trinh Xuan An (Dong Nai) proposed to review the name of this Law, and suggested using the name "Law on Cyber Security and Information Security" to ensure comprehensiveness.
Regarding Article 55 related to Internet address (IP) management, delegate Trinh Xuan An clarified: The State is not the subject that directly manages the IP of people and businesses, but assigns responsibility to network businesses. This means that businesses have the obligation to provide IP information to the specialized force for network security protection when necessary, not to intervene arbitrarily, but to serve the work of ensuring security. In particular, the delegate suggested that it is necessary to separate the system of businesses serving national defense and security from the general scope of application of this Article because this is a system of a special nature, requiring separate regulations to ensure absolute safety.
In addition, delegates also said that, in addition to technical measures of state agencies, businesses must establish technical measures and procedures for receiving and handling user feedback on infringements such as cutting and pasting, insulting, in order to strengthen management and monitoring of content on social networks, especially groups and accounts that show signs of exploitation for propaganda and incitement, ensuring social safety and order.
Source: https://daibieunhandan.vn/ro-trach-nhiem-chu-the-quan-ly-truc-tiep-ip-10393854.html
Comment (0)