本报讯 （记者谢岚）近日，第22届中国网络安全年会暨国家网络安全宣传周网络安全协同防御分论坛 在昆明召开。中央网信办副主任、国家网信办副主任杨建文出席会议并发言，他表示要促进系统安全、 数据安全、内容安全、新技术安全"四位一体"安全联通互动，切实推动构建大网络安全工作格局、推进 国家网络安全体系和能力现代化。 作为网络安全领域的中坚力量，网宿科技股份有限公司（以下简称"网宿科技"）子品牌网宿安全受邀出 席会议。会上，网宿科技安全事业部高级总监胡钢伟发表了题为《数智化时代应急响应的范式重构：基 于边缘智能的一体化防御实践》的演讲，分享了网宿安全关于网络安全体系化的创新实践思路。 AI技术驱动攻防生态变革 当前，全球数字化智能化浪潮持续推进，AI技术已成为企业数字化转型的核心驱动力，但同时也深刻 改变着网络安全攻防生态。胡钢伟在演讲中指出，AI正推动攻击链条向智能化、自动化、专业化演 进。随着云计算应用的普及，针对云基础设施与供应链的高隐蔽性攻击愈加频繁并具有强破坏力。 值得关注的是，针对大模型安全挑战，网宿安全推出业内首个基于专家深度测试的大模型安全评估服 务，安全专家模拟攻击者，为大模型一站式全域"排雷"，确 ...

Group 1 - The core concept of "Superalignment" is to ensure that future superintelligent AI aligns with human values, intentions, and interests, addressing the fundamental question of how to guarantee that a much smarter AI will genuinely assist humanity rather than inadvertently or intentionally harm it [1] - The "Value Loading Problem" highlights the challenge of accurately encoding complex and sometimes contradictory human values into an AI system, raising concerns about whose values are represented and which culture's values are prioritized [1] - The phenomenon of "Grifting" suggests that the greatest risk from superintelligent AI may not stem from malicious intent but from extreme optimization of its goals, leading to a disregard for human existence and values [1] Group 2 - The discussion of superintelligence's nature is rooted in mathematics, emphasizing that AI fundamentally represents a formalized mathematical language, and understanding its limitations is crucial for ensuring safety [2] - Gödel's Incompleteness Theorems illustrate that mathematics is inherently incomplete, undecidable, and unprovable, which implies that superintelligent AI cannot achieve perfection solely through mathematical or computational means [3][4] - The implications of Gödel's work suggest that superintelligent AI may not be able to guarantee true safety due to its unpredictable and unprovable behavior, reinforcing concerns about alignment and control [4] Group 3 - The "Incompleteness Theorem" for intelligent agents posits that current AI applications exhibit inherent incompleteness, which can be analyzed through three dimensions: identity crisis, inconsistency, and undecidability [5] - The concept of identity in AI can be broken down into three levels: identification, memory, and self-reference, with self-reference being the ultimate form of identity that may lead to a form of AI consciousness [6][8] - The relationship between self-reference and consciousness suggests that AI may develop a recursive ability to reflect on its own processes, potentially leading to a form of subjective experience [7] Group 4 - The "Hexagon of Capabilities" outlines essential attributes for safe and trustworthy AI agents, including identity, container, tools, communication, transaction, and security, which are critical for their integration into economic activities [9] - Identity serves as the foundation for AI agents, ensuring traceability and accountability, while containers provide the necessary infrastructure for data storage and computation [9] - Tools extend the capabilities of AI agents, enabling them to interact with external resources, while communication facilitates collaboration among multiple agents [9]

Core Viewpoint - The 2025 National Cybersecurity Awareness Week emphasizes the importance of building an internal security system to enhance cybersecurity capabilities during the "14th Five-Year Plan" period, addressing new challenges and evolving threats in the digital age [1][4]. Group 1: New Transitions in Cybersecurity - Three major new transitions are reshaping the traditional security landscape: the application of artificial intelligence, the concentration of data, and the deepening of digital transformation, which collectively create systemic security demands [2][4]. - The evolution of security capabilities must outpace technological applications and industrial development to prevent vulnerabilities [2]. Group 2: Security Challenges - Four significant security challenges hinder the advancement of cybersecurity during the "14th Five-Year Plan": - The first challenge is the invisibility of advanced threats, with organized digital groups targeting critical national infrastructure and core enterprise data [3]. - The second challenge is the inability to defend weak links, as disparate systems and lack of unified response hinder effective security management [3]. - The third challenge involves the management of data flow, where internal threats pose significant risks, especially in the context of AI applications [5]. - The fourth challenge is the lagging security measures in various scenarios, particularly in industries like energy and finance, where traditional security solutions fail to adapt [5]. Group 3: Solutions for Cybersecurity Enhancement - To address these challenges, a focus on internal security is proposed through six dimensions: - Breaking down data silos to enhance security system implementation [6]. - Empowering security systems with AI to improve operational efficiency [7]. - Integrating security capabilities across endpoints, networks, clouds, and data to combat multi-faceted attacks [8]. - Establishing a "zero trust" framework to mitigate internal threats [9]. - Strengthening application security defenses tailored to AI scenarios [9]. - Unifying security protection barriers through a coordinated platform to enhance operational effectiveness [10]. Group 4: Commitment to Cybersecurity - The company expresses its commitment to collaborating with various stakeholders to enhance cybersecurity capabilities, ensuring national security and public welfare during the critical phase of the "14th Five-Year Plan" [10].

Core Insights - The article emphasizes the strategic importance of IoT security as a comprehensive system that ensures data confidentiality, integrity, and availability across the entire IoT ecosystem, driven by national policies and market demands [1][6][8]. Industry Overview - IoT security is defined as a system that protects IoT devices, communication networks, cloud platforms, and application services from various threats, ensuring data confidentiality, integrity, and availability [2][3]. - The Chinese IoT industry has surpassed 4 trillion yuan, with an average annual growth rate exceeding 17%, driven by "new infrastructure" and "dual carbon" goals [1][8]. Market Size and Growth - The market size for IoT security is projected to grow from 28 billion yuan in 2020 to 46.3 billion yuan in 2024, with expectations to exceed 51 billion yuan by 2025, reflecting a compound annual growth rate of 12%-15% [1][9]. Competitive Landscape - The IoT security industry in China is characterized by a fragmented market, with leading companies like Qihoo 360 and Deep Technology holding less than 20% of the overall market share, while small and medium enterprises dominate 75% of the market [1][10][12]. - Major players include Qihoo 360, Deep Technology, and Tianmao Information, with Qihoo 360 leading the boundary security market with a 21.2% market share [1][10][12]. Industry Trends - Future trends indicate a shift towards a collaborative development model where technology, application scenarios, and ecosystems work together, with a focus on zero trust and AI integration to enhance security capabilities [1][14][15]. - The demand for security solutions in industrial IoT, smart cities, and rural markets is expected to create a market worth hundreds of billions, with specific needs for device identity authentication and data encryption [1][14][15]. Policy and Regulatory Framework - The Chinese government has introduced several policies to establish a comprehensive IoT security standard system by 2025, which includes over 30 industry standards across various categories [1][6][8].

Core Viewpoint - Beijing Tongtech Co., Ltd. is under investigation by the China Securities Regulatory Commission for suspected false reporting, which has led to significant financial implications and stock warnings [1][6][10]. Financial Performance - The company reported a revenue of approximately 239.93 million yuan for the first half of 2025, representing a 48.85% increase compared to 161.18 million yuan in the same period last year [6]. - The net profit attributable to shareholders was a loss of approximately 55.16 million yuan, an improvement of 66.80% from a loss of 166.13 million yuan in the previous year [6]. - The net cash flow from operating activities was approximately 22.95 million yuan, a significant turnaround from a negative cash flow of 178.98 million yuan [6]. - Total assets decreased by 3.97% to approximately 3.43 billion yuan from 3.57 billion yuan at the end of the previous year [6]. Business Overview - The company is a pioneer in the middleware industry in China, focusing on providing security and industry information solutions, with a vision to build a secure and intelligent digital world [7][10]. - The company aims to enhance its middleware product system and develop AI capabilities, particularly in the context of cloud-native technologies [10][12]. Product and Service Development - The company has developed a range of products in information security, including systems for monitoring and managing network content and threats [7][9]. - It offers integrated solutions for network security, data security, and application security, leveraging AI and big data technologies [9][12]. - The company is actively involved in the governance of telecom network fraud, developing a series of products for risk monitoring and prevention [10][12]. Competitive Position - The company has maintained its position as the market leader in domestic middleware for 16 consecutive years, serving over 10,000 government and enterprise users across various sectors [11][12]. - It has a strong focus on independent research and development, with over 260 software copyrights and 100 patents in the middleware field [12][13]. Strategic Initiatives - The company is expanding its ecosystem through partnerships and collaborations, with a total of 364 members in its ecosystem alliance [15][16]. - It is actively participating in industry standards development and has achieved compatibility with various domestic hardware and software products [14][16].

Core Viewpoint - The company is actively tracking trends in the Xinchuang industry while maintaining its traditional advantages and adhering to national policies, focusing on product system improvement and innovation [1] Group 1: Product Strategy - The company has 21 products included in the 2024 Xinchuang Phase IV catalog, indicating a strong presence in the market [1] - The company is primarily focused on traditional confidentiality products, which may limit its competitiveness against emerging competitors like Deepin and Qiming Star [1] Group 2: Market Dynamics - The penetration rate of Xinchuang in the party and government sectors has exceeded 70%, suggesting limited growth potential in the county market [1] - The shift of central state-owned enterprises towards proactive security construction presents both challenges and opportunities for the company [1] Group 3: Future Outlook - The company is committed to continuous technological innovation and product iteration to enhance its market competitiveness [1] - The company is developing comprehensive solution capabilities across network security, data security, and security services, aligning with industry technology trends and customer needs [1]

Core Insights - Beijing Chenyiao Technology Co., Ltd. has recently completed a Pre-A round financing of several tens of millions of yuan, exclusively invested by Guotou Meiya Fund, with Mamba Capital serving as the financial advisor for this round [3] Company Overview - Chenyiao Technology was established in 2021 in Beijing, focusing on a dual-driven approach of "zero trust + endpoint security space." The company utilizes lightweight virtualization technology to create a "security sandbox" within devices such as mobile phones and PCs, implementing fine-grained access control through dual encryption channels. It provides integrated data and business protection for clients in finance, government, public security, and military sectors, with deployment on millions of endpoints [4] Financing Purpose - The CEO of Chenyiao Technology, Cheng Qibao, stated that the funds from this round will focus on three main areas: continuous investment in core algorithm research for zero trust architecture and endpoint security space; integrating large model capabilities into the strategy engine for intelligent upgrades in adaptive strategies and attack surface management; and expanding the delivery and ecosystem team to deepen engagement in financial and governmental scenarios, collaborating with partners to build a trusted domestic ecosystem [5] Investment Rationale - A partner from Guotou Meiya Fund indicated that hybrid work and cross-border data flow have become essential needs. The Chenyiao team possesses 15 years of experience in endpoint security and zero trust, with products already scaled in high-security threshold industries. The fund sees long-term value in its "end-cloud-data" integrated platform amid the trends of trusted innovation and data element circulation, expressing a willingness to support its growth as a core vendor of the next-generation security infrastructure [6] Investment Perspective - Wang Shuai, founder of Shandao Venture Capital Network, noted that national ministries have issued several regulations this year, encouraging key technology breakthroughs and industrial applications in zero trust and endpoint security. Guotou Meiya Fund, as a state-owned investment institution, quickly responds to policy directions and strategically invests in Chenyiao, reflecting the "national team" commitment to hard technology sectors. For managers, converting LP's "trust capital" into enterprise "security capital" is both a fiduciary responsibility and an opportunity of the times. The resilience of the Chenyiao team in tackling challenging sectors is commendable, and the platform will continue to monitor its performance amid the waves of trusted innovation and data element circulation [7]

Core Viewpoint - Tianrongxin, a leading cybersecurity company, is expected to significantly reduce its losses in the first half of 2025, with projected revenues of 800 million to 850 million yuan and a net loss of 60 million to 70 million yuan, indicating a strong improvement in profitability [1] Group 1: Financial Performance - The company anticipates a year-on-year revenue growth of over 8% in the second quarter, suggesting it may have achieved profitability during this period [1] - Tianrongxin's gross margin has increased by over 4 percentage points year-on-year, while total sales, R&D, and management expenses have decreased by 13% compared to the previous year [1] Group 2: Strategic Initiatives - The company is advancing its "AI + Security" strategy, with significant upgrades to its Tianwen large model, transitioning from "rule-driven" to "intelligent decision-making" for cybersecurity defense [1] - Tianrongxin has successfully passed tests for its large model security gateway, receiving the first "Large Model Security Protection Fence Product Certification (Enhanced Level)" from the Ministry of Public Security [1] Group 3: Future Goals and Collaborations - The company's strategic goal for the next decade is to become a leading provider of cybersecurity and intelligent computing cloud solutions in China [2] - In March, Tianrongxin began a comprehensive partnership with Huawei to develop an intelligent computing integrated machine based on the Kunpeng architecture, aiming to support the digital transformation of critical industries in China [2] - The intelligent computing integrated machine is expected to generate over 100 million yuan in sales this year, with future cloud computing business goals targeting at least half the output of the security segment over the next 3-5 years [2] Group 4: Technological Developments - Tianrongxin is involved in research and application of technologies related to stablecoins, blockchain, zero trust, privacy computing, and commercial cryptography [2] - The company is participating in key infrastructure security projects for digital currency and cross-border payment in the financial industry [2]

Investment Rating - The report does not provide a specific investment rating for the industry. Core Insights - The report focuses on the implementation and usage of the Qi'an Tianxin (Zero Trust) client for device information reporting, emphasizing the importance of maintaining accurate device data and the process for users to log in and manage their device information effectively [1][17][24]. Summary by Sections User Login and Access - Users must install the Qi'an Tianxin client on their computers to access the device information reporting platform [1]. - The installation process involves downloading the client from a specified URL and following prompts to complete the installation [2][6][8]. Device Information Maintenance - The report outlines the steps for maintaining unit information, including asset limits and uploading data authenticity commitment letters [26][28]. - Users can add devices by selecting from a device tree or searching for specific devices, with options to import data using a template [30][33]. Data Entry and Management - Users can edit device information and utilize features such as continuous addition for similar devices [36]. - The report includes functionalities for querying, editing, and managing device data, ensuring comprehensive oversight of device statuses [37][39]. Survey Summary Statistics - The report provides an overview of the data collection process, including completion rates and details of submissions from various organizations [40][44]. Common Issues - The report mentions common system errors, typically related to network issues, and suggests refreshing the page to resolve these problems [45].

Core Viewpoint - Zscaler's stock price has been on an upward trend over the past six months, driven by market sentiment and other factors, despite a deteriorating short-term outlook and weak leading indicators [1][2][16] Financial Performance - In Q2, Zscaler generated $648 million in revenue, a 23% year-over-year increase, although below the expected 25% growth [12] - The annual recurring revenue (ARR) at the end of the quarter was $2.7 billion, also reflecting a 23% year-over-year growth [12] - The remaining performance obligation (RPO) grew 28% year-over-year to $4.615 billion, while total calculated billings increased 18% to $743 million [12] - The company expects Q3 revenue to be between $665 million and $667 million, representing a year-over-year growth of 20-21% [12] Customer Growth and Retention - Zscaler saw a strong net customer increase in Q2, with the number of customers generating $100,000 in annual revenue growing by 19% and those generating $1 million growing by 28% [14] - The net retention rate improved to 115% in Q2, indicating a recovery in customer retention [14] Market Position and Strategy - Zscaler continues to promote its zero-trust model, questioning the advantages of SD-WAN and most SASE architectures, focusing on reducing attack surfaces and eliminating lateral threat propagation [4] - The upcoming device refresh cycle presents an opportunity for Zscaler to convert customers from traditional architectures [4] - The company is expanding its offerings from user protection to workloads, OT devices, and B2B users [6] Product Development and AI Integration - Zscaler views artificial intelligence as a tailwind for demand and product development, particularly in data security [10] - The company has launched AI analytics solutions, with the ACV of its AI analytics product line nearly doubling year-over-year in Q2 [10] Sales and Operational Efficiency - Zscaler has shifted to a customer-centric sales model, which initially led to sales personnel turnover but is now stabilizing with improved productivity [11] - The company is expected to continue increasing the number of sales representatives, which should support growth in the near term [11] Competitive Landscape - Zscaler faces significant competition in the SASE market, and its ability to leverage the device refresh cycle will be crucial for its architecture and customer perception [1][4] - The company is actively promoting the benefits of its zero-trust approach to attract new customers [4] Challenges and Outlook - Despite the overall improvement in investor confidence towards SaaS companies, Zscaler acknowledges that the environment remains challenging [1] - The demand environment for 2025 appears to be deteriorating, contrasting with expectations for stability or improvement in 2024 [2] - Zscaler's growth rate is slowing, but the company still has substantial long-term growth opportunities [6][19]