Saturday, May 2, 2009

Cyber Security In India

Indian government is stubborn and non-citizen centric when it comes implementing valuable public suggestions and inputs. However, exceptions are found everywhere. The public initiatives by Perry4Law like legal enablement of ICT systems in India and working group on cyber law in India are proving decisive for formulating Indian cyber law and cyber security policies and strategies. The Department of Information Technology (DIT) has been following many crucial suggestions of Mr. Praveen Dalal and implementing them one by one. What is disturbing is that they have not acknowledged his valuable contributions in this regard. It would not be surprising if his suggestions are incorporated unacknowledged as ICT Policies and Strategies of India.

As an individual I had very less faith in the fact that government of India (GOI) listens to public suggestions and inputs. However, the recent activities in the governmental corridors have surprised me. It seems the wakes up calls are working for India. I also observed that public initiatives like legal enablement of ICT systems in India and working group on cyber law in India have a great tendency and potential to influence the minds of even the most stubborn people in the government circles.

Some of the recent developments reaffirm this stand of mine. The Department of Information Technology (DIT) has been following many crucial suggestions of Mr. Praveen Dalal and implementing them one by one.

Firstly, DIT talked about enhanced encryption use that would not only strengthen public trust in online transactions but also would prevent unauthorised e-surveillance by the State. However, there would be an inevitable conflict of interests and opinion between DIT and Department of Telecommunications (DOT) in this regard. This is so because DOT has not been uniform in its stand against encryption standards in the Blackberry services in India. The security agencies of India are insisting upon weak encryption standards in India so that they can monitor the electronic communications of Indian citizens.

Secondly, the data security and data protection issues have also forced the DIT to propose forming an IT Regulatory Body which will monitor the security and privacy aspects of IT and BPO companies. This is again an acceptance of the public demands for a strong data protection law in India.

Thirdly, the cyber crimes and cyber terrorism are increasing at a rapid rate in India. In all terrorists attacks the terrorists used Information and Communication Technology (ICT) to strengthen their attack. There was a growing stress upon a good Crisis Management Plan as well as a sound Critical Infrastructure Protection Policy in India. These suggestions have once again been accepted by government departments.

It would not be surprising if the suggestions of Mr. Praveen Dalal are incorporated as ICT Policies and Strategies of India. Though I really appreciate the steps taken by various government departments yet I am also little bit skeptical about the existence of techno-legal expertise in these departments. It would be a good idea to seek help of good experts in this regard who can in fact execute these ambitious plans.

AUTHOR: RAM K KAUSHIK