China: National Cybersecurity Standardisation Technical Committee opened consultation on draft national standard on security configuration baselines for government cloud platforms

On 30 May 2025, the National Cybersecurity Standardisation Technical Committee (TC260) opened a public consultation on the draft national standard Cybersecurity Technology—Baseline Requirements for Security Configuration of Government Clouds. The consultation remains open until 29 July 2025. The draft sets out baseline security configuration requirements for government cloud platforms, covering components such as cloud management systems, virtual machines, containers, databases, host operating systems, and cloud security tools. The draft is structured into 8 sections, including general requirements, identity and access management, network security, data protection, and operational security. Stakeholders are invited to review the draft and submit comments to the TC260 Secretariat.