A preparation work seminar on Mobile Internet Application SDK Security Guide was recently held in Beijing.
The Guide mentioned will be the first national standard for SDK security in China.
Prior to this, the National Information Security Standardization Technical Committee publicized a list of projects for the development of national standards for cybersecurity in 2020.
The national standard project of Information Security Technology Mobile Internet Application SDK Security Guide applied by Zhejiang Merit Interactive Network Technology, China Electronic Standardization Institute (CESI), China Cybersecurity Review Technology and Certification Center and others, was formally approved.
Merit Interactive is the lead drafter of this SDK security standard.
Participated in the preparation work are China Electronics Standardization Institute, China Cyber Security Review Technology and Certification Center, Zhejiang University, Fudan University, Chongqing University of Posts and Telecommunications, Baidu Netcom, Didi, Iflytek, Ke.com, National Computer Virus Emergency Response Center, Shanghai Hehe Information Technology (INTSIG), Xiaomi, iJiami, Huazhu Hotels Group, OPPO, Alibaba , Ant Group, Umeng, Huawei, 360, Tencent, etc.
With the advancement of APP's personal information protection and management work, the related issues and industry regulations of third-party SDKs that are closely related to each APP have also received increasing attention.
The "Guide" will, in accordance with relevant laws, propose principles and safety measures that the SDK controllers in development, operation, personal information processing, data security management, cross-border management and other aspects that should be follow in terms of SDK security development, SDK personal information security, and APP integration security.