On May 24 the National Technical Committee 260 on Cyber-security of Standardization Administration of China (TC260) issued the Cyber-security Technology - Basic Security Requirements for AIGC Services (Draft for Comment) (the "Draft") to solicit public opinions by July 22, 2024.

The Draft aims to help service providers clarify the cyber-security baseline of AIGC services and improve the security level in their services; in response to the key challenges faced by AIGC services, such as cyber-security, data security, and personal information protection, the Draft introduces comprehensive  security requirements covering the entire life cycle of the service. These requirements are designed to  prevent and mitigate security risks in application scenario, software and hardware environment, content generation, and rights protection during the service process. Regarding the model development process before the launch of AIGC services, the Draft focuses on the security of training data sources, training data content security, data annotation security, and model security. Regarding the service provision process after a service is open to the public, the Draft focuses on the security measures that shall be taken during the service provision process.

(Source: National Technical Committee 260 on Cyber-security of Standardization Administration of China)