Russia Expands Critical Infrastructure Scope to TV Broadcasting and State Security

The Russian Ministry of Digital Development, Telecommunications and Mass Media is preparing a formal document that would treat television broadcasting topics as objects of critical information infrastructure (CII). This development was reported by the TASS news agency, citing a message from Deputy Minister Bella Cherkessova. The ministry is aiming to clarify and codify how broadcast topics fall within CII categories, a move that would shape governance, security standards, and oversight across the broadcasting ecosystem. The implications extend to risk management, incident response planning, and the allocation of resources to protect essential services that rely on television distribution and related digital platforms. The information was presented during discussions at the VII annual TeleMultiMedia Forum 2023, where leaders of the Digital Media Space engaged in the plenary session on the future of broadcasting, media convergence, and national information resilience. Cherkessova emphasized that the ministry is actively designing criteria, procedures, and enforcement measures to ensure consistent interpretation and implementation across agencies and operators. The announcement underscores a broader government effort to align broadcast operations with nationwide information security objectives and to establish clear governance outlines for critical infrastructure in the media sector, including oversight of equipment, software, and distribution networks connected to television services. In practical terms, this would mean formalizing risk-based classifications, setting minimum security requirements, and coordinating with other state bodies to address potential vulnerabilities in the transmission chain and content delivery systems. The broader policy background includes the March 2022 presidential decree that declared Russia’s technological sovereignty and introduced restrictions on the use of foreign software within objects designated as CII. This framework is intended to promote domestic software and services, while ensuring that critical public and commercial facilities operate under robust, officially sanctioned configurations. It is important to note that the decree also restricts the use of foreign software at such facilities without explicit authorization from the competent executive body, with a transitional period set to fully take effect on January 1, 2025. Analysts interpret this as a signal that state authorities will increasingly require localization of software, ongoing certification, and periodic validation of dependencies to uphold national information resilience and autonomy in essential sectors, including media and broadcasting. In parallel, the State Duma has begun examining proposals to classify owners and operators of information systems involved in the state registration of real estate as entities that fall under the CII framework at first reading. These legislative steps reflect a unified strategy to extend critical infrastructure protections beyond traditional utilities into sectors like real estate records, which rely on digital information systems and secure data handling practices. Taken together, the current discussions indicate a sustained policy push toward stronger oversight, standardized security baselines, and clearer accountability for anyone who manages or controls information systems integral to public communication, regulatory compliance, and national security objectives. Critics and industry observers stress the importance of balancing security requirements with operational practicality, ensuring that broadcasting services remain reliable and accessible while administrators implement the necessary safeguards. The evolving framework suggests a multi-layered approach that combines regulatory clarifications, technical standards, supplier due diligence, and governance mechanisms designed to minimize risk without stifling innovation or complicating legitimate media activities. Attribution: reporting based on official statements from the ministry and coverage by TASS, with context provided by observers familiar with Russia’s information security policy landscape.