《保险研究》20230504-《数字经济时代保险参与网络安全治理的制度困境与纾解之道》（赵亚宁）

［摘   要］保险是数字经济时代之网络安全治理的重要制度工具。网络安全风险的广泛性和严重性、传统企业保险在保障网络安全风险上的内在不足，以及网络安全保险在网络安全风险管理方面的独特优势，决定了应当发展用于网络安全治理的网络安全保险。但制度模式及承保范围的不明确，以及信息不对称引发的逆向选择和道德风险，极大地制约了我国网络安全保险未来的发展。对此，可从三个方面构建应对之道：其一，网络安全保险不仅适用于企业也适用于政府机关等公共机构，针对公共机构和某些重要企业应当实行网络安全强制责任保险，且政府应当在保险信息获取和赔付能力强化以及网络安全法规完善等方面履行相应职责；其二，网络安全保险的保险标的为被保险人因网络安全受损而遭受的经济损失，过失及意外所致的损失应当属于承保范围，罚款则应被排除在外；其三，对于逆向选择、反逆向选择和道德风险之难题，应当通过保险法上的规范机制和保险业中的实践机制综合予以应对。

［关键词］数字经济；网络安全保险；网络安全治理；逆向选择；道德风险

［作者简介］赵亚宁，清华大学法学院博士研究生，研究方向：商法、保险法。

Obstacles and Solutions of Insurance Participation in Cybersecurity Governance in the Era of Digital Economy

ZHAO Ya-ning

Abstract：Insurance is an important institutional tool for cybersecurity governance in the digital economy.The breadth and severity of cyber risks,the inherent inadequacy of traditional corporate insurance in covering cyber risks,and the significant and unique advantages of cyber insurance in cyber risk management dictate that cyber insurance should be developed for cybersecurity governance.The lack of clarity in the system model and scope of coverage,as well as adverse selection and moral hazard caused by information asymmetry,has greatly restricted the future development of cyber security insurance in China.In this regard,solutions can be constructed from three aspects.Firstly,cyber insurance is not only applicable to enterprises but also to government agencies and other public institutions.Compulsory cyber liability insurance should be implemented for public institutions and certain important enterprises.And the government should perform corresponding responsibilities in terms of insurance information acquisition and payout capacity strengthening as well as cyber security regulations improvement.Secondly,the subject matter of cyber insurance is the economic loss suffered by the insured due to the damage of cyber security.Negligence and accidental losses should be covered,but fines should be excluded.Thirdly,the problems of adverse selection,reverse adverse selection and moral hazard should be addressed through a combination of regulatory mechanisms in insurance law and practical mechanisms in the insurance industry.

Key words：digital economy;cyber insurance;cybersecurity governance;adverse selection;moral hazard