China: Implemented Cybersecurity Measures for Railway Critical Information Infrastructure

Compare with different regulatory event:

Description

Implemented Cybersecurity Measures for Railway Critical Information Infrastructure

On 1 February 2024, the Cybersecurity Measures for Railway Critical Information Infrastructure entered into full force after the grace period for implementation ended. The measures aim to strengthen the security of the railway critical information infrastructure by establishing a network security monitoring and early warning system, and they mandate regular network security inspections and testing. They further strengthen the responsibility of operators, and mandate the improvement of cybersecurity measures such as passwords and of railway key information infrastructure.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: other

Implementation Level

national

Government Branch

executive

Government Body

central government

Complete timeline of this policy change

Hide details

2023-12-01

adopted

On 1 December 2023, the Ministry of Transport of the People's Republic of China adopted the Cyberse…

2023-12-17

in grace period

On 17 December 2023, provisions of the Cybersecurity Measures for Railway Critical Information Infr…

2024-02-01

in force

On 1 February 2024, the Cybersecurity Measures for Railway Critical Information Infrastructure ente…