Cybersecurity

by Pranav M B last modified Aug 13, 2018 11:32 AM

Improving the Processes for Disclosing Security Vulnerabilities to Government Entities in India

by Karan Saini, Pranesh Prakash and Elonnai Hickok — last modified Apr 01, 2019 12:02 PM

The aim of this policy brief is to recommend changes pertaining to current legislation, policy and practice to the Government of India regarding external vulnerability reporting and disclosure. The changes we recommend within this brief aim to strengthen the processes around voluntary vulnerability and bug disclosure by third parties.

Improving the Processes for Disclosing Security Vulnerabilities to Government Entities in India - Read More…

Comments on the Draft Second Protocol to the Convention on Cybercrime (Budapest Convention)

by Vipul Kharbanda — last modified Feb 25, 2019 04:48 PM
February 25, 2019

Following consultations with data protection, civil society, industry and others, during the Cybercrime Convention Committee (T-CY) meeting from 29 November 2018 onwards, the Cybercrime Convention Committee has sought additional contributions regarding the provisional draft text for a Second Additional Protocol to the Budapest Convention on Cybercrime (“Budapest Convention”).

Comments on the Draft Second Protocol to the Convention on Cybercrime (Budapest Convention) - Read More…

Response to GCSC on Request for Consultation: Norm Package Singapore

by Arindrajit Basu, Gurshabad Grover and Elonnai Hickok — last modified Jan 27, 2019 03:43 PM

The GCSC opened a public comment procedure to solicit comments and obtain additional feedback. CIS responded to the public call-offering comments on all six norms and proposing two further norms.

Response to GCSC on Request for Consultation: Norm Package Singapore - Read More…

Leveraging the Coordinated Vulnerability Disclosure Process to Improve the State of Information Security in India

by Pranesh Prakash, Karan Saini and Elonnai Hickok — last modified Jan 23, 2019 04:48 PM

This policy brief recommends several changes pertaining to current legislation, policy and practice to the Government of India regarding coordinated vulnerability disclosure (“CVD”) for improving the overarching information and cyber security posture of the country.

Leveraging the Coordinated Vulnerability Disclosure Process to Improve the State of Information Security in India - Read More…

Economics of Cybersecurity: Literature Review Compendium

by Natalia Khaniejo — last modified Dec 31, 2018 01:57 AM
December 31, 2018

The twenty first century has witnessed an unprecedented conflation of everyday experiences and technosocial practices. The emergence of technologies like the Internet of Things, Cloud Computing, Digital Payment infrastructures are all emblematic of this conflation of technology with economic, social and political modes of existence.

Economics of Cybersecurity: Literature Review Compendium - Read More…

Is the new ‘interception’ order old wine in a new bottle?

Is the new ‘interception’ order old wine in a new bottle?

by Elonnai Hickok, Vipul Kharbanda, Shweta Mohandas and Pranav M. Bidare — last modified Dec 29, 2018 04:02 PM

The government could always authorise intelligence agencies to intercept and monitor communications, but the lack of clarity is problematic.

Is the new ‘interception’ order old wine in a new bottle? - Read More…

India-China Tech Forum 2018

by Admin — last modified Dec 26, 2018 03:32 PM
December 26, 2018

Arindrajit Basu spoke at the India-China Tech Forum 2018 organised by ORF and Peking University at the Ji Xianlin Centre for India-China Studies, Mumbai on December 11 - 12, 2018. The event functioned as a bi-annual dialogue that fosters co-operation in this space between the two countries.

India-China Tech Forum 2018 - Read More…

Private-public partnership for cyber security

Private-public partnership for cyber security

by Arindrajit Basu — last modified Dec 26, 2018 03:02 PM
December 26, 2018

Given the decentralised nature of cyberspace, the private sector will have to play a vital role in enforcing rules for security.

Private-public partnership for cyber security - Read More…

Mapping cybersecurity in India: An infographic

by Arindrajit Basu, Karan Saini, Aayush Rathi and Swaraj Barooah — last modified Dec 23, 2018 04:57 PM
December 23, 2018

This infographic maps the key stakeholder, areas of focus and threat vectors that impact cybersecurity policy in India. Broadly, policy-makers should concentrate on establishing a framework where individuals feel secure and trust the growing digital ecosystem. The infographic therefore serves as a ready reference point for the research that we have done and hope to continue through our cybersecurity work at CIS.

Mapping cybersecurity in India: An infographic - Read More…

European E-Evidence Proposal and Indian Law

by Vipul Kharbanda — last modified Dec 23, 2018 04:45 PM
December 23, 2018

In April of 2018, the European Union issued the proposal for a new regime dealing with cross border sharing of data and information by issuing two draft instruments, an E-evidence Regulation (“Regulation”) and an E-evidence Directive (“Directive”), (together the “E-evidence Proposal”). The Regulation is a direction to states to put in place the proper legislative and regulatory machinery for the implementation of this regime while the Directive requires the states to enact laws governing service providers so that they would comply with the proposed regime.

European E-Evidence Proposal and Indian Law - Read More…

Document Actions