Keywords: college students; Network security awareness; Countermeasures
With the rapid development of the Internet, the problem of network security has become increasingly prominent. In the network security problem, the human factor is the first. The European Network and Information Security Agency pointed out in "Improving Information Security Awareness": "In all information security system frameworks, human factors are often the weakest link. Only by innovating people's outdated security concepts and cognitive culture can we truly reduce the possible hidden dangers of information security. " College students are the new force for the future development of the country, and their awareness of network security is the first line of defense for network security. Strengthening college students' awareness of network security is directly related to the future of the country, and it is urgent to enhance college students' awareness of network security.
First, college students' awareness of network security is weak.
The 25th Statistical Report on China's Internet Development shows that despite the frequent network security incidents and huge losses, netizens' security awareness is still low. There are still 4.4% netizens who don't have any security software installed on their personal computers, and nearly 50% netizens don't pay attention to online security announcements. The author conducted a random sampling questionnaire survey on college students in our school and five other universities in Guangzhou (872 questionnaires were distributed). The survey shows that college students' awareness of network security is relatively weak.
In the survey, 65,438+0,000% students have QQ numbers, 86.54% students have published their real information on the Internet, 38.7% students like to set QQ passwords with their birthdays, phone numbers and student numbers, 26% students don't set power-on passwords for their computers, and 72% students think they won't consciously pay attention to information about network security. When answering "What measures do you think should be taken to avoid hacker attacks", most students chose legal restraint, network police management and the use of network security products. Only 44.7% students choose to improve users' safety awareness. In the minds of college students, there are hackers, viruses and Trojans on the Internet, but cyber crime is far away from them, and cyber security has little to do with them, which does not prevent them from wandering around the Internet smartly.
Second, the main reason for college students' weak awareness of network security
There are many reasons for college students' weak awareness of network security, including the whole network environment, the absence of school education and the problems of college students' own network quality.
(A) network insecurity is relatively hidden.
The concealment of network insecurity deceives college students. College students generally think that network security refers to the security of network information, but they don't feel that their network information is unsafe. Among the respondents, only 1.4% of the students' QQ numbers, MSN numbers and online banking accounts were stolen, and 90.2% of the students thought that no one attempted to steal their data. So they take it for granted that network security is not something that ordinary college students should pay attention to. Cybercriminals are only interested in sensitive information such as highly confidential and valuable data and bank accounts, and are not interested in ordinary college students because they have nothing of value. In sharp contrast, the Survey Report on Internet Information Security of Netizens in China in 2009 shows: "In 2009, 52% of netizens suffered from network security incidents. For many netizens, network information security is not just news reports or other people's remarks, but a problem that needs to be actually handled and disposed of. "
American scholar mark poster once said: "With the appearance of computer database, a new discourse and practice will operate in the social field. You can think of society as a super panoramic prison. " In his view, the database has built a super panoramic prison, where "our private actions are transformed into public notices, and our personal words and deeds are transformed into collective language". This view is not alarmist. Modern network technology can record people's every network behavior, especially with the advent of cloud computing era, more and more network services need to upload data to the server. Personal information can be easily obtained through these records if necessary.
In fact, network security not only refers to network information security, but also includes network equipment security and network software security. Due to technical reasons, there are security loopholes in the current computer operating system. Intruders can use various tools to invade other people's computers, steal other people's information, or borrow other people's computers to carry out malicious attacks on the network. Therefore, the problem of network security is not only the disclosure of personal privacy, but also the trouble of frequently reloading the system, which may lead to economic losses, and may even make itself a scapegoat for criminals and fall into legal disputes.
(B) the lack of school network security education
The current situation of college students' lack of network security knowledge and weak awareness of network law and morality is related to the lack of network security education in schools.
1. College students lack knowledge of network security. College students generally know the commonly used terms in network security, such as firewall, virus, Trojan horse, etc. 74% of them know that they should install a firewall on their computers and upgrade their anti-virus tools regularly. However, 83.6% of the students think that as long as there is a firewall, anti-virus software and other network security tools, they can ensure their own safety, but they don't know that bad online habits, improper use of network security tools, and loopholes in the system itself are all factors that endanger network security.
The reason for the above phenomenon is that college students' network security knowledge generally comes from peers or networks around them, and is rarely obtained through school education. At present, public computer courses are generally offered in colleges and universities, but the network security education of this course is seriously lagging behind, and it is impossible to impart network security knowledge to students in time.
The lack of network security knowledge makes college students walk on the edge of network danger unconsciously. With the emergence and rise of crimes such as online fraud, some college students began to realize the existence of network security problems. However, due to their lack of relevant knowledge and poor network skills, although they are very concerned about their own network security, they often can't find the endless theft and sabotage on the network, and even if they do, they can't help it.
2. College students' network legal knowledge is blank and their network moral concepts are vague. At present, colleges and universities generally don't offer special courses on network security legal education, and college students are not clear about network security laws and regulations, and the concept of network morality is also vague. In participating in network activities, most college students ignore the safety of others and their own safety, and accidentally violate morality and law. A few years ago, the "Bronze Beard Incident" and "Cat Abuse Incident" found the personal information of the parties in real life through "human flesh search", which brought them great public opinion pressure and psychological pressure, and even had a great negative impact on their lives. People who like "human flesh search" only talk about their own pleasure, but they don't realize that these behaviors have constituted an invasion of others' privacy.
(C) College students' strong dependence on the network weakened their awareness of network security.
Every college student enters the university with a dream. However, when college life comes, their dreams are "displaced", and the tense and even boring life makes them at a loss. On the contrary, the rich, free, colorful and relaxed online world deeply attracts them: convenient, fast, cheap and rich entertainment here has become the first choice for many college students; There is a lot of harmful information such as pornography, violence and superstition, which is very attractive to college students. Without the constraints of teachers, there is no complicated interpersonal relationship. As a result, they have a strong dependence on the network, and their safety awareness is gradually weakened while indulging themselves.
Third, the countermeasures to cultivate college students' awareness of network security
Network is an indispensable tool for college students in their daily study and life, and it is an important medium for them to understand the world and get in touch with the outside world. Colleges and universities should strengthen the education of college students' network use skills and network security awareness, constantly improve their network use skills and help them improve their network security awareness.
(A) make full use of the classroom to strengthen college students' network security knowledge and network security legal education.
1. Add network security knowledge to the public computer courses in colleges and universities. At present, the content of computer popularization courses in colleges and universities is mainly the use of commonly used computer software, and there is less content about computer network security. This course should increase two aspects of knowledge: First, appropriately increase the knowledge of computer system management, such as the installation and setting of computer operating system, and increase students' understanding of computer working principle, so that they can understand the security mechanism of hardware resources such as users and files managed by the system. This can improve students' self-study ability in the network world and their ability to resist network intrusion. The second is network security knowledge, which introduces the basic theoretical knowledge of network security and system security strategy, such as encryption and decryption algorithm, working principle and function of firewall, system vulnerabilities and repair methods, working principle and usage of hard disk protection card, etc. Teachers can guide students to treat the network correctly, cultivate students' good online habits and make them use the network resources correctly and safely by increasing the knowledge of correct use of the network and virus treatment in teaching.
2. Strengthen the legal education of college students' network security. At present, many colleges and universities don't offer special courses of cyber security law education, but only the compulsory course "Ideological and Moral Cultivation and Legal Basis" contains the content of healthy and safe surfing the Internet, but it hardly involves relevant laws and regulations, which easily leaves relevant legal gaps in students' minds. Therefore, while strengthening the traditional moral education of college students, colleges and universities must not ignore the legal education of network security and should include it in the category of moral education. For example, some important laws and regulations such as "Administrative Measures for Computer Virus Prevention" and "Regulations on Computer Software Protection" are added to the curriculum. Through systematic legal knowledge education, students' awareness of network security and legal system is constantly strengthened, and their awareness of online self-restraint, self-control and self-protection is improved.
(2) Actively expand extracurricular space and carry out various forms of network security education activities.
1. Seminar on Network Security Knowledge. Offering special lectures on network security knowledge is an effective supplement to classroom teaching and an effective way to guide college students to pay attention to network security issues. Lectures can be held for problems or weak links that cannot be explained in depth in classroom teaching, such as network behavior norms, personal computer security strategies, new trends of computer viruses, and the use of virus killing software. Special lectures on network security knowledge can cultivate college students' awareness of network security and guide them to pay attention to network security issues.
2. Conduct regular network security training. Schools should regularly conduct network security training for teachers and students, so that all teachers and students can jointly understand network risks and form a sense of security responsibility and behavior habits. In the training of students, we should guide students to master and abide by the terms of use of the school network, understand the risks existing in the network, know how to protect themselves, ask for help and other basic knowledge. Training can also make students realize that laws and regulations on data protection and intellectual property rights both restrict and protect their rights.
3. Organize colorful activities. For example, organizing cyber security knowledge contests, cyber security knowledge surveys, cyber security cartoon contests, etc. It can not only enrich college students' spare time, but also publicize the knowledge of network security on campus and strengthen students' awareness of network security.
(C) the establishment of school-level information security management institutions
Colleges and universities should set up special information security management institutions to be responsible for the daily security and management of campus networks, and keep abreast of the network usage of their students. Regularly release the latest network security information, so that college students can keep abreast of the dynamics of network insecurity factors. Under the guidance of information security management institutions, cultivate students' awareness of "everyone is responsible for network security".