In an era where cyberspace has become increasingly pervasive, India finds itself confronted with a myriad of threats ranging from cyber espionage to malicious hacking attempts, necessitating the establishment of a robust defense mechanism. The concept of a “Digital Armed Forces” has emerged as a viable solution to combat these evolving cyber threats and safeguard the nation’s interests. However, the effectiveness of such a defense strategy is contingent upon the comprehensive implementation of cyber security policies. The National Cyber Security Policy of 2013 was a significant step towards addressing these concerns, aiming to protect the nation’s critical information infrastructure and enhance its cyber resilience. Nevertheless, the policy faces numerous challenges in its execution, hampering its efficacy. One of the primary hurdles lies in the complex and rapidly evolving nature of cyber threats, which often outpace the policy’s adaptation and response capabilities. Additionally, the lack of adequate resources, including skilled personnel and advanced technological infrastructure, poses a significant impediment to the policy’s successful implementation. Moreover, the fragmented nature of cyber governance in India, characterized by overlapping jurisdictions and a lack of coordination among various stakeholders, further exacerbates the challenges in effectively executing the policy. Furthermore, the absence of stringent enforcement mechanisms and accountability measures undermines the deterrence value of the policy, allowing cyber criminals to operate with impunity. Therefore, while the National Cyber Security Policy of 2013 represents a crucial milestone in India’s cyber defense strategy, addressing the aforementioned challenges is imperative to ensure its effectiveness in safeguarding the nation’s digital sovereignty.
Tag: Basics of cybersecurity.
Decoding the Question:
- In Introduction, start your answer by writing data regarding India’s cybersecurity vulnerability.
- In Body,
- write in brief about cyber threats and the need for “Digital Armed Forces” to prevent cybercrimes.
- In the second part of the answer, write about the strengths and weaknesses of National Cyber Security Policy 2013.
- In conclusion, write suggestions to improve the overall cybersecurity framework in the country.
Answer:
Information technology (IT) has exposed the user to a huge data bank of information regarding everything and anything. However, it has also added a new dimension to crime and has left the sensitive and often secret information at risk of exposure. According to ‘Internet Security Threat Report’ India emerged as the third most vulnerable country in terms of the risk of cyber threats such as malware, spam, and ransomware. In 2017, moving up one place over the previous year, according to a report by security solutions provider Symantec. As per the report, India continues to be second most impacted by spam and bots, third most impacted by network attacks and fourth most impacted by ransomware.
The new age of warfare is taking place in cyber and digital space which showcased the need for “Digital Armed Forces” to prevent cyber warfare and cyber crimes:
- Saving Critical Infrastructure: Power & Energy, Banking, Financial Services & Insurance, Telecom, Transport, Government Strategic & Public Enterprises, these are very critical from the national security and economic point of view. Any cyber-attack on these critical infrastructures will be a serious blow to the national economy. For example, last year Chinese cyber-attacks caused a blackout in Mumbai.
- Protecting Individual Data: In the Digital world, people spend a significant amount of time on the internet which leads to an increase in the digital footprints of citizens. Increasing digital financial transactions made cybercriminals take out sensitive information and make financial frauds. For example, last year’s SBI’s debit card information was compromised.
- National Security: Cyber-attacks are new weapons to carry attacks and make significant damage without involving in a real conflict. As per the Government report during and after the Galwan valley incident China has carried thousands of cyber-attacks.
- Hostile Neighbours: Hostile neighbors, China and Pakistan, are now coming together to carry out cyberattacks against India. Virtual partnership for causing damage to the national economy, compromising military communications, and vital security installations are the main targets of both nations.
- Cyber Frauds: Cybercriminals steal personal information and later ask for a ransom to give up sensitive information. Cybercrimes such as pornography, blackmailing, defaming one’s image, etc. are taking place which needs to be handled very effectively and create deterrence among cybercriminals.
- Spreading Misinformation: Spreading misinformation in the digital era is becoming rampant. For example, during the Delhi riots, the CAA protest, violence in universities, etc. are spread by WhatsApp, Facebook, and various other social media sites.
National Cyber Security Policy In 2013 with the following objective:
- To create a secure cyber ecosystem in the country, generate adequate trust & confidence in IT systems and transactions in cyberspace, and thereby enhance adoption of IT in all sectors of the economy.
- To create an assurance framework for the design of security policies and for promotion and enabling actions for compliance to global security standards and best practices by way of conformity assessment (product, process, technology & people).
- To strengthen the Regulatory framework for ensuring a Secure Cyberspace ecosystem.
- To enhance and create National and Sectoral level 24 x 7 mechanisms for obtaining strategic information regarding threats to ICT infrastructure, creating scenarios for response, resolution, and crisis management through effective predictive, preventive, protective, response, and recovery actions.
- To enhance the protection and resilience of the Nation’s critical information infrastructure by operating a 24×7 National Critical Information Infrastructure Protection Centre (NCIIPC) and mandating security practices related to the design, acquisition, development, use, and operation of information resources.
- To create a workforce of 500,000 professionals skilled in cybersecurity in the next 5 years through capacity building, skill development, and training.
- To develop effective public-private partnerships and collaborative engagements through technical and operational cooperation and contribution for enhancing the security of cyberspace.
- To enhance global cooperation by promoting shared understanding and leveraging relationships for furthering the cause of security of cyberspace.
However, all these objectives are not immediately feasible and have also left certain gaps in the overall envisaged framework, such as:
- No clear regulatory framework is suggested and at present all the cyber departments under police and armed forces are working independently and often with parallel authority. Ideally a nodal body must be formed under NSA.
- In order to start with this task Computer Emergency Response Team (CERT-In) has been designated to act as a nodal agency for coordination of crisis management efforts, but it comes into picture only for crisis management and not for regular monitoring, making it further confusing.
- The provisions to take care of security risks emanating due to use of new technologies, e.g., Cloud Computing, has not been addressed.
- Another area which is left untouched by this policy is tackling the risks arising due to increased use of social networking sites by criminals and anti-national elements.
The policy should also address the need for an integrated national cybersecurity structure, with enhancing cooperation among various agencies or creating one single body to coordinate and save the country from cyber threats. The key to success of this policy lies in its effective implementation. The much talked about public-private partnership in this policy, if implemented in true spirit, will go a long way in creating solutions to the ever-changing threat landscape.
In case you still have your doubts, contact us on 9811333901.
For UPSC Prelims Resources, Click here
For Daily Updates and Study Material:
Join our Telegram Channel – Edukemy for IAS
- 1. Learn through Videos – here
- 2. Be Exam Ready by Practicing Daily MCQs – here
- 3. Daily Newsletter – Get all your Current Affairs Covered – here
- 4. Mains Answer Writing Practice – here
