China: National Information Security Standardisation Technical Committee opened consultation on standard security requirements for cryptographic modules

National Information Security Standardisation Technical Committee opened consultation on standard security requirements for cryptographic modules

On 12 December 2025, the National Information Security Standardisation Technical Committee (TC260) opened a consultation on its standard on security requirements for cryptographic modules. The standard sets out security requirements for cryptographic modules, which include hardware, software, and embedded firmware. The standard establishes a tiered system with four safety levels, functional safety objectives, and security requirements for specific components.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

software provider: other software, infrastructure provider: network hardware and equipment

Implementation Level

national

Government Branch

executive

Government Body

other regulatory body

Complete timeline of this policy change

Hide details

2025-12-12

in consultation

On 12 December 2025, the National Information Security Standardisation Technical Committee (TC260) …

2026-02-10

processing consultation

On 10 February 2026, the National Information Security Standardisation Technical Committee (TC260) …

Description

National Information Security Standardisation Technical Committee opened consultation on standard security requirements for cryptographic modules

Scope

Complete timeline of this policy change