After all their hard work and innovative approach the Indian government has been failing to create their own free path in the world of cyber security. A recently published one of the cyber security related policy was noteworthy. It was published during the controversy which was a result of the exposure of American electronic eavesdropping program. This published policy included all the discussed information between the Indian authorities and different delegates. The aim of this meeting was to create a strong work plan for the security of national information framework within the circumference of private – public partnership. Unfortunately the details that came into the lime light by this exposure were not appropriate in fact not even close to the list of priorities and the government had no clear strategy on how to execute the plan.
Firstly all that this document contains is definitions and just definitions. The meaning of cyber security has been explained many times without any need as “cyberspace security”. As a matter of fact the complete strategy will be wrong from the beginning in lack of a fundamental definition. To move ahead we need to set our goals and have a clear understanding of priorities. We also need to have the proper schema of the strategy we are about to work on. Some of the effective solutions have been discussed in the document such as running National Critical Information Infrastructure Protection Centre (NCIIPC) and ask every organization to hire a Chief Information Security Officer. In the rest of the solutions, normal tips have been mentioned, which are undisputed but are not effective until and unless clear executable strategies will be planned. Also there is no way out other than trusting the Indian Computer Emergency Response Team (CERT – in) which has very limited resources and there is nothing special about it. In short, the aim of this policy is to create such an ideal situation which has no clear roadmap which would tell how to achieve the goals set and neither we are ready to take any strong step.
The Government has been very cautious about the increasing challenges of cyberspace since the starting of this decade and they have been working proactively with the intention of finding a resolution. In the late 2000’s many incidents took place due to which India’s insecurity was revealed and so the government was left with no other option rather than taking cyber security as a serious issue. There have been big incidents where in India was neither able to control the impact nor had a reply such as stux net and ghost net. The result allowed New Delhi to learn a lesson and promise to be better prepared for any such problems in the future. The government has made remarkable efforts in the new decade to stand on the cyberspace stage as a universal and national entity.
As observed, the government has neither been able to take any decision on the controversies nor have come up with any working strategy. There are many reasons leading to this disappointment like government’s efforts are not unanimous. The fact is that from the initial stage of internet there always have been threats and vulnerabilities. It is so gibbered to recognize out the level of a particular threat and the consequences to be left behind. As an exception the situation of New Delhi has been misleading so far. According to the western security organizations there have been controversies in their countries as well and looking at that Indian government is feared about the threats.
Since the IT act of year 2000 up till now all of the Indian policies are influenced greatly by international model. It is better looking forward to technically advanced countries for tactical motivation but this has been misleading us. In comparison to the western countries the dependence of India over the internet is very low. The mechanization and digitization of the Indian economy is still in the child stage and due to the abundance of cheap man power in India we are not going to see any dramatic changes in the near future. India needs to concentrate on the limited vulnerability of the cyberspace rather than cope up with the extensive chances of global threat. The government was unable to make a difficult decision and face the problem as there was lack of specification due to the global view.