Кримінальні правопорушення проти інформаційної безпеки: нотатки на берегах проєкту нового КК

Abstract

Стаття присвячена проблемам вдосконалення правового забезпечення охорони безпеки електронних комунікаційних систем, електронних мереж та комп’ютерних даних, як частини інформаційної безпеки. Здійснено аналіз положень розділу 7.7 Проєкту нового Кримінального кодексу України на предмет їх системної узгодженості між собою, з іншими положеннями Проєкту та регулюючим законодавством у сфері інформаційної безпеки, а також їх відповідності існуючим доктринальним підходам.

The article is devoted to the problems of improving the legal security of electronic communication systems, electronic networks and computer data, as part of information security. An analysis of the text of section 7.7 of the Project of the new Criminal Code of Ukraine was carried out in relation to the following aspects: systematic coordination with each other, coordination with other articles of the Project and regulatory legislation in the field of information security, as well as their compliance with existing doctrinal approaches. The scope of the term «information security» used in the title of the section is much narrower than that traditionally defined in normative and doctrinal sources. Information security, however, is harmed or threatened by many information actions provided for in other sections of the Special Part of the Project, not only by computer crimes and misdemeanors. It seems questionable to establish criminal liability for the dissemination of false news by the person responsible for the release of the news, due to the high risk of a chilling effect on freedom of expression. The weak differentiation of responsibility for both intentional and negligent crimes on the basis of harm (consequences of the act) and the complete absence of such differentiation for misdemeanors also gives rise to criticism. The article on dealing with malicious software or hardware, which is an analogue of conventional «misuse of devices», needs improvement. «Action regarding computer data» has a complex structure (illegal interference + other action). There is a need to ensure the punishment of illegal interference in the work of information, electronic communication, information and communication systems and electronic communication network, which was committed with the aim of destroying, blocking or distorting computer data, violating the order of their routing or processing, but if such aim is not was achieved.