08/04/2020

In March 2020, the National Information Security Standardization Technical Committee (TC260) published its List of Key Working Tasks for 2020, which are outlined below.

  1. Develop new cybersecurity national standards to improve the National Cybersecurity Standardization System. The development work will focus on the cybersecurity standards which are important and urgently needed by the market. The standards include:
  • Basic requirements for security protection of critical information infrastructure
  • Technical security requirements for critical network equipment
  • General requirements for network security products
  • Data classification standards
  • Identification of important data standards
  • Network platform data security standards (including online car booking, online payment, online shopping, instant communication, express logistics, online broadcasting, etc.)
  • Personal information security standards for apps
  • Identification of critical information infrastructure standards
  • Network security situational awareness evaluation indicators
  • Network security situational awareness evaluation capability requirements
  • Cybersecurity information sharing standards
  • Information technology product supply chain security standards
  • Network security audit standards

In addition to the horizontal cybersecurity standards, TC260 will also develop security standards for vertical sectors like 5G security, artificial intelligence security, IoT security, blockchain security, edge computing security, etc.

25 national standards and 4 white papers will be published in 2020. The detailed information about the standards and white papers were not mentioned in the list.

  1. Set up application pilots of cybersecurity standards in different cities to evaluate the effectiveness of the implementation of cybersecurity standards.
  2. Participate in international cybersecurity standardization.
    • A new working group will be established under TC260. The new working group will focus on the work for project proposals of international standards for data security.
    • Improve the China-Germany cybersecurity standardization cooperation in 5G, artificial intelligence, and data security, etc.
    • Improve cooperation in cybersecurity standardization with countries in the Belt and Road Initiative.
  3. Shorten the standard development cycle to within 2 years.
  4. Prepare for the transition of committee members.