HOME Cart(0) Quotation About-Us Policy PDFs Standard-List
www.ChineseStandard.net Database: 189759 (26 Oct 2025)

RB/T 221-2023 English PDF

US$319.00 · In stock
Delivery: <= 4 days. True-PDF full-copy in English will be manually translated and delivered via email.
RB/T 221-2023: Evaluation specifications for security of information technology product supply chain
Status: Valid

Standard ID	Contents [version]	USD	STEP2	[PDF] delivered in	Standard Title (Description)	Status	PDF
RB/T 221-2023	English	319	Add to Cart	4 days [Need to translate]	Evaluation specifications for security of information technology product supply chain	Valid	RB/T 221-2023

PDF similar to RB/T 221-2023

Standard similar to RB/T 221-2023

GB/T 1.1 RB/T 033 GB/T 1.2 RB/T 223 RB/T 224 RB/T 212

Basic data

Standard ID	RB/T 221-2023 (RB/T221-2023)
Description (Translated English)	Evaluation specifications for security of information technology product supply chain
Sector / Industry	Chinese Industry Standard (Recommended)
Classification of Chinese Standard	A00
Classification of International Standard	03.120.20
Word Count Estimation	16,165
Date of Issue	2024-05-20
Date of Implementation	2024-07-01
Issuing agency(ies)	National Certification and Accreditation Administration

RB/T 221-2023: Evaluation specifications for security of information technology product supply chain

---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
ICS 03.120.20 CCSA00 Certification and Accreditation Industry Standards of the People's Republic of China Information technology product supply chain security evaluation specification Released on 2024-05-20 2024-07-01 Implementation The National Certification and Accreditation Administration issued Published by China Standards Press

Preface III Introduction IV 1 Scope 1 2 Normative references 1 3 Terms and Definitions 1 4 Evaluation content 2 5 Evaluation Methods 3 6 Evaluation Results 7 References 8

Foreword

This document is in accordance with the provisions of GB/T 1.1-2020 "Guidelines for standardization work Part 1.Structure and drafting rules for standardization documents" Drafting. Please note that some of the contents of this document may involve patents. The issuing organization of this document does not assume the responsibility for identifying patents. This document is proposed and coordinated by the Certification and Accreditation Administration of the People's Republic of China. This document was drafted by. China Cybersecurity Review Certification and Market Supervision Big Data Center, Shanghai Information Security Evaluation and Certification Center, China Electronics Technology Group Corporation No. 15 Research Institute (Information Industry Information Security Evaluation Center), Beijing Topsec Network Security Technology Co., Ltd., Beijing Beijing Zhongdian Huada Electronic Design Co., Ltd. and Midea Group Co., Ltd. The main drafters of this document are. Shen Yongbo, Wang Feng, Xu Tonghai, Dong Jingjing, An Gaofeng, Zhang Junyan, Zhu Zaipeng, Yang Kun, Zhang Yupeng, Xue Lugang, Yu Yi, Liu Sirong, Lan Danni.

Introduction

At present, countries around the world and the information technology industry have generally recognized that there are security risks in the information technology product supply chain, so they have strengthened information Supply chain security management of technology products and enhancing customer trust in the supply chain have become crucial. The security of IT product supply chain is an important aspect of IT product security assurance capability. During the implementation of the full certification, the security evaluation of the information technology product supply chain is still incomplete, and there is a lack of unified security evaluation standards to guide actual work. Therefore, it is urgent to study and formulate security evaluation standards for information technology product supply chain. Information Technology Product Supply Chain Security Evaluation Specification

1 Scope

This document specifies the evaluation content, evaluation methods and evaluation results of the supply chain security of information technology product suppliers. This document applies to the security evaluation of the supply chain of product suppliers by certification bodies during the process of information technology product security certification.

2 Normative references

The contents of the following documents constitute essential clauses of this document through normative references in this document. For referenced documents without a date, only the version corresponding to that date applies to this document; for referenced documents without a date, the latest version (including all amendments) applies to This document. GB/T 25069-2022 Information Security Technical Terminology GB/T 32921-2016 Information security technology Information technology product supplier code of conduct security GB/T 36637-2018 Information Security Technology ICT Supply Chain Security Risk Management Guide

3 Terms and definitions

The terms and definitions defined in GB/T 25069-2022, GB/T 32921-2016 and GB/T 36637-2018 and the following terms and definitions apply in this document. 3.1 Hardware, software, and systems that have the functions of collecting, storing, processing, transmitting, controlling, exchanging, and displaying data or information. Note. Information technology products include computers and their auxiliary equipment, communication equipment, network equipment, automatic control equipment, operating systems, databases, application software, etc. [Source. GB/T 32921-2016, 3.1, modified] 3.2 An organization that acquires information technology products from suppliers. [Source. GB/T 36637-2018, 3.1, modified] 3.3 Product Supplier An organization that provides information technology products. Note. Product suppliers mainly include information technology product suppliers, manufacturers, etc. [Source. GB/T 36637-2018, 3.2, modified] 3.4 A network chain structure that connects the demanders and suppliers of information technology products through resources and processes to meet supply relationships. [Source. GB/T 36637-2018, 3.4, modified]

Tips & Frequently Asked Questions:

Question 1: How long will the true-PDF of RB/T 221-2023_English be delivered?

Answer: Upon your order, we will start to translate RB/T 221-2023_English as soon as possible, and keep you informed of the progress. The lead time is typically 2 ~ 4 working days. The lengthier the document the longer the lead time.

Question 2: Can I share the purchased PDF of RB/T 221-2023_English with my colleagues?

Answer: Yes. The purchased PDF of RB/T 221-2023_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.

Question 3: Does the price include tax/VAT?

Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countries

Question 4: Do you accept my currency other than USD?

Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.

Refund Policy Privacy Policy Terms of Service Shipping Policy Contact Information