By Tim Stratford and Yan Luo
China’s National Information Security Standardization Technical Committee (“NISSTC”), a standard-setting committee jointly supervised by the Standardization Administration of China (“SAC”) and the Cyberspace Administration of China (“CAC”), released seven draft national standards related to cybersecurity and data privacy for public comment on December 21, 2016. The public comment period runs until February 2, 2017.
These new draft standards are:
- Information Security Technology – Personal Information Security Specification
- Information Security Technology – Implementation Guide for Cybersecurity Classified Protection
- Information Security Technology – Security Capability Requirements for Big Data Services
- Information Security Technology – Guide for Security Risk Assessment of Industrial Control Systems
- Information Security Technology —Security Technique Requirements and Test Evaluation Approaches for Industrial Control Network Monitoring
- Information Security Technology — Technique Requirements and Testing and Evaluation Approaches For Industrial Control System Vulnerability Detection
- Information Security Technology – Testing and Evaluation Methods for the Security of Hardcopy Devices