China: National Cybersecurity Standardisation Technical Committee opened consultation on Network Security Standards Practice Guide on Database Network Security Requirements (TC260-PG-202517A)

On 18 December 2025, the National Cybersecurity Standardisation Technical Committee opened a public consultation on the Network Security Standards Practice Guide on Database Network Security Requirements (TC260-PG-202517A), until 1 January 2026. The Practice Guide sets out technical requirements for identity authentication, access control, encryption, boundary protection, secure network transmission, and logging and auditing, and management requirements for operations and maintenance, personnel, outsourcing, and supply-chain security. It applies a risk-based model distinguishing basic and enhanced requirements according to data volume, data sensitivity, and business importance, and includes an annex on security requirements for cloud-based object storage.