China: National Information Security Standardisation Technical Committee issued Online Certificate Status Protocol for key public cybersecurity infrastructure (GB/T 19713-2025)

On 28 February 2025, the National Information Security Standardisation Technical Committee (TC260) issued the updated national cybersecurity standard Cybersecurity Technology: Public Key Infrastructure, Online Certificate Status Protocol (GB/T 19713-2025). The standard will enter into force on 1 September 2025 and fully replaces the earlier GB/T 19713-2005 version. The revision introduces updated technical specifications for the Online Certificate Status Protocol (OCSP), including real-time certificate status verification without relying on certificate revocation lists (CRLs). It includes enhancements such as support for lightweight OCSP mechanisms, domestic cryptographic algorithms (SM2 and SM3), and optimised response structures. The standard is intended to support secure digital authentication in sectors including e-government, financial services, and e-commerce.