The following document is a draft Chinese national standard for the security of machine learning (ML) algorithms. Drafted by Chinese government entities and tech companies, the standard provides security guidelines for developers of ML models and procedures for assessing ML algorithms’ susceptibility to cyberattacks.

The Chinese source text is available online at: https://www.tc260.org.cn/file/2021-08-04/6b530404-858b-4c9d-8d89-a83239ec5712.pdf

An archived version of the Chinese source text is available online at: https://perma.cc/Y5WL-56NJ

National Standard of the People’s Republic of China

Information security technology-Security specification and assessment methods for machine learning algorithms

(Draft for Comments)

(Draft Completed on: July 27, 2021)

When submitting feedback, please include relevant patents that you are aware of along with supporting documentation.

Preface

This document is drafted in accordance with the provisions of GB/T 1.1-2020 Directives for standardization — Part 1: Rules for the structure and drafting of standardizing documents.

This document is proposed and administered by the National Information Security Standardization Technical Committee (SAC/TC 260).

Drafting organizations of this document: Beijing CESI Technology Co., Ltd., Tsinghua University, Beijing RealAI Intelligent Technology Co., Ltd. (北京瑞莱智慧科技有限公司), the National Research Center for Information Technology Security (国家信息技术安全研究中心), Guangzhou University, the National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT/CC; 国家计算机网络应急技术处理协调中心), Huawei Technologies Co., Ltd., Beijing Megvii Technology Co., Ltd., China Academy of Information and Communications Technology (CAICT), Beijing Baidu Netcom Science and Technology Co., Ltd., Institute of Information Engineering – Chinese Academy of Sciences (CAS), Alibaba (Beijing) Software Services Co., Ltd., Shenzhen Tencent Computer Systems Co., Ltd., Beijing Qihoo Technology Co., Ltd., Chongqing University of Posts and Telecommunications, Shenzhen Research Institute of Big Data, Beijing Research Institute for Computer Technology and Applications (北京计算机技术及应用研究所), and China Electronics Standardization Institute (CESI).

Drafted by: Shangguan Xiaoli, Hu Ying, Hao Chunliang, Zhang Yuguang, Su Hang, Hu Songzhi, Yang Tao, Jing Huiyun, Zhang Xudong, Xu Xiaogeng, Gu Zhaoquan, Wu Yuesheng, Meng Guozhu, Li Shi, Fu Yingbo, Mei Jingqing, Wang Le, Dong Yinpeng, Liu Xize, Wang Zhelin, Zhao Yunwei, Han Han, Zhang Xia, Peng Juntao, Xu Yongtai, Zhang Yi, Xu Yuqing, Wu Baoyuan, Han Lei, and Wang Bingzheng.

For rest of this translation, download the PDF below.