China: TC260 opened consultation on Information Technology Security Assessment Guideline

On 30 September 2022, China's National Information Security Standardisation Technical Committee (TC260) opened a public consultation on the five-part "Information Technology Security Assessment Guideline", as well as on the related "Information Technology Security Evaluation Method". This consultation covers Parts I to V, which lay out the framework and procedure for the security assessment of IT products. Part I includes an introduction, definition of terms, and an explanation of the general model. Parts II and III cover security functional and security assurance components. Part IV includes the normative framework for assessment methods and activities. Part V outlines the required predefined security components for future products. Finally, the Security Evaluation Method provides guidance for IT security assessors and certifiers. The consultation closes on 29 November 2022.