On April 7, 2024, China’s SAC/TC260 (Cybersecurity) released its Annual Key Working Points 2024. The document, which was approved by the TC’s Plenary session on April 2, 2024, covers five main areas; the key takeaways include:

  • Consolidate top-level design, and strengthen strategic planning and standard prospective research on cybersecurity

The standard systems for critical areas should be optimized, including but not limited to security for critical information infrastructure, data and generative AI. Corresponding plans and implementation should be carried out in an orderly manner.

Research reports and whitepapers should be drafted on emerging technologies and future security risks and challenges. Other research and studies should be made in various forms, including seminars, on-site study etc.

  • Accelerate the formulation and revision of national standards in key cybersecurity areas

The research and formulation of urgently-needed standards should be accelerated. Specific areas include: critical information infrastructures, data security, data trade service security, personal information protection for minors, classifications of important data, interconnection system of cybersecurity products; as well as technical requirements that support security certification and inspection, security of generative AI, etc.

  • Expand promotion channels to improve the implementation of national standards

The promotion and dissemination of standards should be consolidated via all possible channels and measures, such as trainings, seminars, school events, interaction or broadcasting through all types of media, events co-organized with other regulators and stakeholders, etc.

  • Intensify research on international standard proposals and professional personnel retention

Strengthen the process of present international standard work, propose China’s international standardization roadmap in cybersecurity. Efforts will be made to ensure the approval of international standard proposals related to AI and quantum technology.

The overall capability of the experts participating in international works will be further improved, while the coordination of international standards with national ones facilitated. Actively apply to be the host of the SC27 meeting in 2025, and continue to push forward standardization engagement on cybersecurity with relevant organizations from foreign countries and regions, such as the United States, EU and Japan.

  • Optimize the working system to improve standard quality and standardization development in cybersecurity

Optimize structure and relevant working rules and regulations of the TC. More sectoral experts should be recruited to participate actively in standardization work. TC working results and status should be regularly published while upgrading TC’s working platform.

In the document, TC260 requires its WGs and members to organize their work and implement goals and assignments accordingly.