As of March 1, 2026, the Requirements for protecting information contained in state information systems and other information systems of state bodies, state unitary enterprises, and state institutions have been updated.

Order of the Federal Service for Technical and Export Control dated April 11, 2025, No. 117 "On Approval of the Requirements for Protecting Information Contained in State Information Systems and Other Information Systems of State Bodies, State Unitary Enterprises, and State Institutions" (Registered with the Ministry of Justice of the Russian Federation on June 16, 2025, No. 82619)
The requirements are applied to ensure the protection (by non-cryptographic methods) of information, to prevent unauthorized access to information, and to prevent special effects on information (information carriers) in order to extract, destroy, distort, or block access to information contained in information systems operating on the territory of the Russian Federation.

The order of the Federal Service for Technical and Export Control dated February 11, 2013, No. 17, which approved similar requirements, is recognized as invalid, with the amendments made to it.

It is provided that certificates of compliance for state information systems and other information systems issued before the date of entry into force of this item