Economic news

China’s draft cybersecurity rules pose risks for financial firms, lobby group warns

2022.06.02 13:06

2/2
China's draft cybersecurity rules pose risks for financial firms, lobby group warns
FILE PHOTO: A Chinese national flag flutters outside the China Securities Regulatory Commission (CSRC) building on the Financial Street in Beijing, China July 9, 2021. REUTERS/Tingshu Wang

2/2

By Selena Li

HONG KONG (Reuters) – China’s proposed cybersecurity rules for financial firms could pose risks to operations of western companies by making their data vulnerable to hacking, among other things, a leading lobby group has said in a letter seen by Reuters.

The latest regulatory proposal comes at a time when a string of western investment banks and asset managers are expanding their presence in China, either by setting up wholly-owned units or by taking a bigger share in existing joint ventures.

The China Securities Regulatory Commission (CSRC) released the draft Administrative Measures for the Management of Network Security in the Securities and Futures Industry on April 29, and offered a month-long public consultation on the proposals.

The draft rules seek to make it mandatory for investment banks, asset managers, and futures companies with operations in China to share data with CSRC, allow regulator-led testing, and help set up a centralised data backup centre.

Morgan Stanley (NYSE:MS) and HSBC are among those who have benefited in recent months from China’s opening up of financial sector for foreigners, following Goldman Sachs (NYSE:GS) and JPMorgan (NYSE:JPM), which won nods to run local units last year.

Lobby group, the Asia Securities Industry and Financial Markets Association (ASIFMA), in a letter addressed to the CSRC and dated May 27, expressed concerns of its members about the draft rules as they anticipate risks in sharing sensitive data.

The letter’s content, which has been reviewed by Reuters, has not been reported before.

ASIFMA, which has more than 160 members comprising leading financial institutions from both the buy and sell side, banks, law firms, and market infrastructure service providers, did not confirm the letter and declined to comment on its content.

In response to Reuters request for comment, the CSRC said that ASIFMA submitted its opinion on May 31, two days after the consultation period ended.

“However, we still highly value the feedback forwarded by relevant associations,” it said, adding the regulator was “carefully studying the opinions and suggestions” and will continue to communicate with them.

The proposed new data rules for financial firms also comes against the backdrop of Beijing’s tightened oversight of data security mainly in the tech sector as part of a wider regulatory crackdown, which has roiled the country’s stock markets and stalled offshore company listings.

‘HUGE RISKS’

The draft rules require the sharing of data by financial firms for various purposes, but the lobby group is concerned passing on sensitive data will makes companies in the sector vulnerable to “hackers and other bad actors”.

Global banks and asset managers are also pushing back on a requirement to introduce a sector-wide data backup centre.

“This not only poses huge risks to all core institutions and operating institutions on an individual basis, but also brings significant systemic risks for the sector in China and globally given the inter-connectedness of the global financial sector, if the data is compromised or leaked,” the ASIFMA letter said.

The draft rules also stipulates that the CSRC could conduct penetration-testing — a simulated cyber attack against the operational system — and system scanning on securities, futures and fund firms.

However, ASIFMA flagged concerns of global banks that regulator-led or regulator-commissioned penetration testing pose “real risks to firms due to the potentially disruptive nature of penetration testing and the sensitivity of testing results”.

“Testing systems and applications without operational context could create significant disruption to firm operations,” the lobby group added.

The regulator has not set any timeline for the issuance of the final rules or for their implementation.

Source

Related Articles

Leave a Reply

Back to top button
bitcoin
Bitcoin (BTC) $ 98,576.41 0.12%
ethereum
Ethereum (ETH) $ 3,429.60 2.49%
tether
Tether (USDT) $ 1.00 0.06%
solana
Solana (SOL) $ 257.17 0.62%
bnb
BNB (BNB) $ 670.77 0.62%
xrp
XRP (XRP) $ 1.47 5.17%
dogecoin
Dogecoin (DOGE) $ 0.438343 4.96%
usd-coin
USDC (USDC) $ 1.00 0.11%
cardano
Cardano (ADA) $ 1.07 2.09%
staked-ether
Lido Staked Ether (STETH) $ 3,427.58 2.44%
tron
TRON (TRX) $ 0.216641 3.51%
stellar
Stellar (XLM) $ 0.585075 34.46%
avalanche-2
Avalanche (AVAX) $ 42.36 1.62%
the-open-network
Toncoin (TON) $ 6.44 14.08%
shiba-inu
Shiba Inu (SHIB) $ 0.000027 0.44%
wrapped-steth
Wrapped stETH (WSTETH) $ 4,063.50 2.54%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 98,241.32 0.17%
polkadot
Polkadot (DOT) $ 9.10 18.83%
chainlink
Chainlink (LINK) $ 17.80 4.87%
bitcoin-cash
Bitcoin Cash (BCH) $ 513.41 3.22%
weth
WETH (WETH) $ 3,432.31 2.63%
sui
Sui (SUI) $ 3.47 4.36%
pepe
Pepe (PEPE) $ 0.000021 1.78%
near
NEAR Protocol (NEAR) $ 6.67 4.37%
leo-token
LEO Token (LEO) $ 8.68 0.95%
litecoin
Litecoin (LTC) $ 101.82 0.22%
aptos
Aptos (APT) $ 12.95 1.43%
uniswap
Uniswap (UNI) $ 11.12 6.01%
wrapped-eeth
Wrapped eETH (WEETH) $ 3,612.89 2.56%
hedera-hashgraph
Hedera (HBAR) $ 0.152347 1.71%
internet-computer
Internet Computer (ICP) $ 11.70 5.02%
crypto-com-chain
Cronos (CRO) $ 0.198212 3.50%
usds
USDS (USDS) $ 1.00 0.52%
polygon-ecosystem-token
POL (ex-MATIC) (POL) $ 0.580002 7.27%
ethereum-classic
Ethereum Classic (ETC) $ 30.29 2.84%
render-token
Render (RENDER) $ 8.10 2.13%
bittensor
Bittensor (TAO) $ 543.11 1.70%
fetch-ai
Artificial Superintelligence Alliance (FET) $ 1.52 12.48%
kaspa
Kaspa (KAS) $ 0.155344 3.32%
ethena-usde
Ethena USDe (USDE) $ 1.00 0.15%
arbitrum
Arbitrum (ARB) $ 0.886909 7.17%
whitebit
WhiteBIT Coin (WBT) $ 24.76 0.61%
bonk
Bonk (BONK) $ 0.000047 4.80%
filecoin
Filecoin (FIL) $ 5.93 14.42%
vechain
VeChain (VET) $ 0.043951 2.84%
cosmos
Cosmos Hub (ATOM) $ 9.04 13.24%
dai
Dai (DAI) $ 1.00 0.13%
mantra-dao
MANTRA (OM) $ 3.84 1.54%
dogwifcoin
dogwifhat (WIF) $ 3.30 2.36%
okb
OKB (OKB) $ 54.24 9.07%