The much awaited national cyber security policy of India has been finally declared by Indian government. It has incorporated many good policy decisions that can go a long way in improving the cyber security of India.
However, till it is made operational and is actually implemented, it would remain mere paper work. Thus, the real challenge is to make the National Cyber Security Policy 2013 operational at the ground level. Similarly, there are many more techno legal issues that a good and holistic cyber security policy must incorporate. Indian cyber security policy is still deficient on many counts. Nevertheless this is a good effort in the right direction.
Some of the areas covered by the policy include cyber security skills development, cyber crisis management plan, critical infrastructure protection, preferential treatment to domestic hardware software, security issues of IT equipments, engaging in public private partnerships to strengthen cyber security of India, etc.
The National Cyber Security Policy 2013 also aims at protecting information and building capabilities to prevent cyber attacks. It has also rightly touched the aspects of global cooperation and coordination in the cyber security field.
The objectives of the NCSP 2013 include creation of a cyber ecosystem in the country, encouraging open standards, strengthening of regulatory framework, securing e-governance services, critical infrastructure protection, promotion of research and development in cyber security, spreading cyber security awareness, providing fiscal benefits to businesses for adoption of standard security practices and processes, developing effective public private partnerships and collaborative engagements through technical and operational cooperation.
The policy calls for developing a dynamic legal framework and periodically reviewing it to address the cyber security challenges arising out of technological developments in cyber space.
The policy plans to operate a 24X7 national level computer emergency response team to function as a nodal agency for coordination of all efforts for cyber security emergency response and crisis management.
We would cover various aspects of NCSP 2103 in great detail in our subsequent posts.