China revises cybersecurity standard for randomness testing

China’s National Information Security Standardisation Technical Committee (TC260) has opened a consultation to revise its national standard GB/T 32915-2016 on binary sequence randomness detection methods, a key component for ensuring cryptographic security. TC260, under the National Standardization Management Committee, is central to setting cybersecurity standards across China and has been actively expanding its influence into areas like AI and blockchain security.

The standard GB/T 32915-2016, originally based on an earlier industry standard (GM/T 0005-2012) and upgraded in 2016, defines methods for testing the randomness of binary sequences – a vital process for assessing the reliability of random number generators used in cryptography. The proposed revision aims to enhance detection modes and calculation methods, aligning with newer advancements such as improved statistical evaluations like Q-value analysis over the previously used P-value, inspired by updates seen in related standards like GM/T 0005-2021.

The consultation reflects China’s broader strategy to strengthen its cryptographic foundations. Ensuring the strength of random number generators is critical for securing encryption, authentication, and wider national information infrastructures. TC260’s ongoing adjustments, including potential changes to its scope, show its responsiveness to emerging technological and security challenges.