You are here: Home » Current Affairs » News » National
Business Standard

Experts call cyber security policy too vague

The policy has proposed to set up different bodies to deal with various levels of threat in country along with a national nodal agency

Surabhi Agarwal  |  New Delhi 

Kapil Sibal
Kapil Sibal

In order to better arm itself in the wake of rising threat of cyber crime, the government on Tuesday announced the Cyber Security Policy 2013. The policy, which was approved in May this year recognises the need to put in place a comprehensive action plan to address the issue from sides.

The policy has proposed to set up different bodies to deal with various levels of threat in the country along with a nodal agency to cordinate all matters related to cyber security in the country.

While a body called the Critical Information Infrastructure Protection Centre (NCIIPC) will act as a 24*7 centre to ward off cyber security threats in strategic areas such as aircontrol, nuclear, space etc and will be under the NTRO, the existing agency CERT will handle all public and private infrastructure. Union Minister of Communications and IT Kapil Sibal said that India is one of the few countries to have a cyber policy in place.

''Security of tge country's cyber infrastructure ensures its economic security as well''.

The policy also aims to provise fiscal benefits to businesses to adopt best security practices, create a workforce of around 5,00,000 people trained in cyber security along with periodically reviewing legal frameworks around it. Gulshan Rai, director general of CERT-IN said that the government will also set up testing labs to regularly check the safety of equipment being used.

''Putting the security framework is a complex task and we will now begin to follow it up with detailed action plans.''

However, industry representatives and experts present there said that though the policy is a good starting point, it needs to be more detailed.

''While the government has talked about various agency who will deal with cyber threats, but it has neither described their structure, nor said anything about what will happen to existing agencies. In my view, the policy is not very granular compared to what say a country like United States has in place,'' said a senior executive with a technology firm who did not wish to be identified.

The person added that the policy also does not say anything about how the government will balance the privacy needs of the citizens while ensuring the safety of the country's infrastructure.

Dear Reader,

Business Standard has always strived hard to provide up-to-date information and commentary on developments that are of interest to you and have wider political and economic implications for the country and the world. Your encouragement and constant feedback on how to improve our offering have only made our resolve and commitment to these ideals stronger. Even during these difficult times arising out of Covid-19, we continue to remain committed to keeping you informed and updated with credible news, authoritative views and incisive commentary on topical issues of relevance.
We, however, have a request.

As we battle the economic impact of the pandemic, we need your support even more, so that we can continue to offer you more quality content. Our subscription model has seen an encouraging response from many of you, who have subscribed to our online content. More subscription to our online content can only help us achieve the goals of offering you even better and more relevant content. We believe in free, fair and credible journalism. Your support through more subscriptions can help us practise the journalism to which we are committed.

Support quality journalism and subscribe to Business Standard.

Digital Editor

First Published: Tue, July 02 2013. 13:56 IST