Three departments issued the "Management Measures for Network Security Signs".

The Cyberspace Administration of China, Ministry of Industry and Information Technology, and Ministry of Public Security have issued the "Management Measures for Network Security Identification". According to the measures, the levels of network security capabilities corresponding to network security identification are classified from low to high as basic level, enhanced level, and leading level, with corresponding identification levels of one star, two stars, and three stars. The basic level requires products to meet basic security requirements of relevant national standards, such as no weak passwords or common default passwords, establishing a vulnerability management mechanism and dynamically fixing vulnerabilities, and keeping software updated; the enhanced level requires products to have network security capabilities at an advanced level compared to similar products; the leading level requires products to have network security capabilities at a leading level compared to similar products, and also to pass penetration testing to detect ability to resist high-level network attacks.