We are anonymous, we are legion

Millions of kids in India access the Net on their parents’ devices, says study

Varun Aggarwal — 2019-09-28T10:01:04Z

Experts raise concern over exposing kids to predators, phishing and bullying.

The article by Varun Aggarwal published in Hindu Businessline quotes Sunil Abraham.

Youtube’s recent fine of $170 million in the US for illegally collecting personal information of children without parental consent should ring alarm bells back in India. Similar violations may be going unnoticed here as millions of kids use Internet on their parents’ devices.

A new study conducted by the Internet and Mobile Association of India (IAMAI) states 66 million Internet users in the country are in the age bracket of 5 to 11 years and they are viewing it on the devices of family members.

In today's age when adults are finding it hard to understand the extent of physical, mental, financial risk they are exposing themselves to, kids need special treatment as they are more vulnerable and not capable of making decisions for themselves.

This could be exposing young children to predators, bullying, phishing, or even malware attacks, experts feel.

“India does not have clear laws equivalent to COPPA (Children's Online Privacy Protection Act) but adhoc executive rulings, court cases and discussions. We don't have formal ways of ensuring responsible behaviour,” said Mishi Choudhary, technology lawyer and online civil liberties activist.

Social networks Tiktok was recently pulled up by the Indian government for allowing ‘inappropriate content’ being available on the platform. A BusinessLine investigation later revealed that Tiktok was not alone. Many other social media platforms had similar, if not more inappropriate, content easily accessible without any restrictions or age verification.

Moreover, no serious efforts have been taken by either the government or the social media platforms to ensure that kids are not exposed to ‘inappropriate content’ or if they are collecting any private information about the kids.

“Several apps have children-directed content, targeted ads are regularly served on these platforms to kids younger than 13 years of age. There needs to be clear requirement for verifiable parental consent before collecting personal information and clear information about parental control,” Choudhary said.

Parents and kids are equally required to be reminded that online actions have consequences.

“Internet today is a dangerous place for children. Parents should ensure that all access is supervised till the child in well into their teens and demonstrate safe practices online,” said Sunil Abraham, Executive Director at the Centre for Internet and Society.

For more details visit https://cis-india.org/internet-governance/news/hindu-business-line-varun-aggarwal-september-27-2019-millions-of-kids-in-india-access-the-net-on-their-parents-devices-says-study

Millions of Indians Slam Facebook's ‘Free Basics’ App

subha — 2015-12-30T14:37:09Z

It has been less than two months since the nationwide launch of the Free Basics app in India. The smart phone application (formerly known as Internet.org) offers free access to Facebook, Facebook-owned products like WhatsApp, and a select suite of other websites for users who do not pay for mobile data plans.

This was published in Global Voices on December 29, 2015.

But the app has already been suspended, at least temporarily, as the Telecommunications Regulatory Authority considers new rules governing network neutrality. Depending on how they're written, the rules could render Free Basics a violation of the policy.

Free Basics, which has been deployed in 30 developing countries across the globe, gives users free access to websites that meet Facebook's technical standards for the application. The application does not give users access to the Internet at large. For open Internet advocates, this undercuts consumer choice and violates the principle of network neutrality, under which Internet providers are to treat all Internet traffic equally. Net neutrality allows users equal access to any website they want to visit, and gives website operators equal opportunities to attract visitors.

Facebook has responded to the pending regulation with an aggressive ad campaign both online and off. Over the last week, Facebook users across India (and some in the US) upon logging into the site have been greeted with notifications urging them to take action. The Free Basics page on Facebook now leads to a pleading form that asks users to contact the Telecom Regulatory Authority of India (TRAI) and voice their support for making Free Basics available in India. The company has also purchased a smattering of billboard advertisements across the country and taken out numerous two-page ads in leading national newspapers, as seen above.

The Indian Internet bites back

Indian netizens and activists have spoken out against the company's actions en masse, protesting heavily on social media, blogs and newspapers.

The grassroots open Internet group, SavetheInternet.in, that has been advocating for net neutrality in India throughout 2015, has launched an email campaign asking users to send letters to TRAI explaining how Free Basics violates net neutrality principles and propagates an inaccurate picture of the Internet for new users by placing it inside the confines of Facebook's application.

Multiple stand-up comedy groups have created videos explaining the regulatory debate and supporting net neutrality, which have gone viral:

Above, the third in a series of videos created by All India Bakchod, in partnership with SavetheInternet.in. Below, a video by East India Comedy.

The issue has also been hotly debated on Twitter, with technology and law experts leading the way.

Internet policy expert and lead staff member of the Center for Internet and Society in Bengaluru Pranesh Prakash tweeted:

New Delhi-based technology lawyer Mishi Choudhary, who leads the legal team at the Software Freedom Law Center, tweeted:

The Free Software Movement of India, a non-profit promoting use of free software and its philosophy in India via their local chapters, also has taken the campaign to the streets where the volunteers raised public awareness about Free Basic's adverse side.

Apart from local experts and activists, companies like Reddit, Truecaller and Indian e-commerce platform Paytm have publicly shared their opposition to Facebook's actions.

Facebook targets open Web activists

Facebook is paying close attention to civil society opposition to its activities in India. Across the globe, the company's Free Basics page now opens to a plea for users to contact TRAI, and includes a statement that directly targets open Internet advocates, suggesting that their motives are somehow driven by financial incentives:

…Free Basics is in danger in India. A small, vocal group of critics are lobbying to have Free Basics banned on the basis of net neutrality. Instead of giving people access to some basic internet services for free, they demand that people pay equally to access all internet services – even if that means 1 billion people can't afford to access any services.

SavetheInternet.in explicitly states in their About page that they are entirely volunteer-run and have no affiliation with any political party in India or elsewhere.

Users also have tweeted screenshots alleging that Facebook is restricting access for individuals sending messages opposing Free Basics. This has not been confirmed, but the tweets have only further stoked public frustration with the company.

Zuckerberg vs. SavetheInternet

On December 28, Facebook CEO Mark Zuckerberg penned a piece in the Times of India arguing that Free Basics will help “achieve digital equality for India,” and claiming that the initiative “isn’t about Facebook’s commercial interests.” India represents the world's largest market of Internet users after the US and China, where Facebook remains blocked.

In response, Nikhil Pawa, founder of online portal MediaNama and a volunteer with Savetheinternet.in, authored a critical opinion piece in the same newspaper:

[…] Why hasn’t Facebook chosen the options that do not violate Net Neutrality? For example, in India, Aircel has begun providing full internet access for free at 64 kbps download speed for the first three months….In Bangladesh, Grameenphone users get free data in exchange for watching an advertisement. In Africa, Orange users get 500 MB of free access on buying a $37 handset…

[…]

Facebook is being disingenuous — as disingenuous as the company’s promotional programmes for Free Basics to its Indian users — when it says that Free Basics is in conformity with Net Neutrality.

Pawa also quoted Naveen Patnaik, Chief Minister of Indian state of Odisha, who wrote to TRAI supporting net neutrality. “If you dictate what the poor should get, you take away their right to choose what they think is best for them,” he wrote.

“If you dictate what the poor should get, you take away their right to choose what they think is best for them.”

Writing for Quartz, technology critic Alice Truong expressed similar sentiment: “Zuckerberg almost portrays net neutrality as a first-world problem that doesn’t apply to India because having some service is better than no service.”

For Mahesh Murthy, an Indian venture capitalist and self-described net neutrality activist, it all comes down to revenue. On the Wire, Murthy offered untempered criticism of Facebook and Zuckerberg's efforts to appease the country's leaders:

[..] Unlike Facebook, who tried to silently slime this thing through last year when it was called Internet.org, and then are spending about Rs. 100 crores on ads – a third of its India revenue? – to try and con us Indians this year again. This is after we’d worked hard to ban these kind of products, technically called “zero rating apps” last year.[..] This Facebook ad [spread] doesn’t include the full-on Mark Zuckerberg love event put up for our Prime Minister when he visited the US, aimed again at greasing the way for this Free Basics thing through our government.

For more details visit https://cis-india.org/telecom/blog/millions-of-indians-slam-facebooks-2018free-basics2019-app

Millions of Indians move from cash to digital payments. But some ask whether it’s safe

praskrishna — 2017-01-16T02:52:33Z

Minutes after Indian Prime Minister Narendra Modi began an ambitious new mobile-phone-payment application in December, several clones of the app popped up at Android smartphone stores.

The article by Rama Lakshmi was published by Washington Post on 14 January 2017, Sunil Abraham was quoted. Annie Gowen contributed to this report.

In the first few days, users were flooded with spam requests for money.

The Bhim app sponsored by the government was rushed out after Modi’s abrupt withdrawal of large currency bills two months ago. More than 10 million people downloaded it in just 10 days, but in a country where awareness and regulation of privacy, data protection and digital security are low, the number of cyberattacks is rising.

“We are rushing toward launching and using these plethora of financial tech apps without the exhaustive security testing and education that is needed,” said Sunil Abraham, executive director of the Center for Internet and Society. “We are operating in a bit of a regulatory vacuum.”

Modi’s ambitious move to swap old bills for new was intended to fight the hoarding of illicit cash reserves. But it was derailed by shoddy implementation, left citizens in Asia’s third-largest economy without cash for weeks, slowed manufacturing and sent workers home, and is now likely to significantly affect the country’s economic growth this year, economists say. It was acutely painful for a country where 80 percent of transactions were conducted with cash.

Modi quickly responded by turning the adversity into a call for Indians to kick their overwhelming dependence on cash and opt for digital payments overnight. The Bhim app is just one of many available. But in this leap, experts say, security concerns are being overlooked.

The new payment apps and e-wallet companies are governed by India’s outdated information technology law of 2008 and central bank guidelines.

“India urgently needs a new digital payment law that regulates all these mobile payment apps that have sprung up overnight,” said Pavan Duggal, a cyber-law expert. “We are right now in a completely uncharted and unsupervised territory legally. The norms for wallet companies are undefined. If I lose my money due to a fraud, I can go round and round in circles with no remedy.”

The central bank recently issued guidelines asking payment banks to carry out security audits, but Duggal said “there is no penalty or punishment for noncompliance.”

The problem is compounded by the fact that education about security risks online is abysmally sparse, especially in India’s small towns and villages. Indians are complacent about cyber risks in their online behavior, according to the Norton Cyber Security Insights Report. India does not have a privacy law.

India reported more than 39,000 incidents of cyberattacks in the first nine months of 2016, according to the government, including phishing, scanning and probing, website intrusions, defacements, virus and malicious code, and denial-of-service attacks.

“The Pentagon got hacked, right? You haven’t closed down the Pentagon as yet,” said Piyush Goyal, a minister. “These things will happen, and we have to be one step ahead of the hackers and the so-called security breaches and continuously improving and improvising as they do in America or other developed economies.”

In October, top banks had to fix the security codes of about 3.2 million debit cards in one of the biggest data breaches in India. Some users complained that their cards had been used in China.

Last month, hackers attacked Twitter and email accounts of prominent politicians and journalists and defaced the website of the National Security Guard, an elite commando force.

“The focus of global hackers has shifted to India. The cyber risk is a direct fallout of the growth in the number of digital users,” said Saket Modi, the chief executive of Lucideus Tech, the firm that conducted the security audit of the government’s Bhim app.

Since the cash crunch began, the largest private e-wallet company, Paytm, has experienced a 400 percent jump in new downloads.

But only 342 million people access the Internet on their mobile phones. The government has introduced dial-in service for those who have basic cellphones to make digital payments.

The government is airing radio jingles telling citizens not to share their personal identification numbers and has a toll-free helpline to teach people how to make online payments.

“Officials understand how security worries can be a big dampener in their campaign to get people to go digital,” said Vinayak Godse, senior director at the Data Security Council of India, an industry body that advises the government.

But in a trade-off between convenience and security, the central bank recently waived the mandatory two-factor authentication for transactions less than $30 online.

Some cybersecurity experts say that Indians are not ready for this step.

The police recently arrested a gang in the eastern state of Jharkhand; operators were calling people posing as bank executives and tricking them into sharing their card details. They used the cards to do online shopping and transferred money into their e-wallet accounts.

“People are gullible and can be threatened or lured to part with their bank details easily. We need as many safeguards as we can have,” said Surendra Kumar, a senior police officer in New Delhi who busted the gang.

But the biggest problem people face is that police in one state get very little cooperation from those in another state in digital-crime complaints, said Rakshit Tandon, a cybersecurity expert who trains police, military members and school students.

“Only in big-ticket frauds will police departments from different states coordinate their investigations,” Tandon said. “If a person loses a relatively smaller amount digitally, the case won’t go far. Even though that amount may mean a lot in that person’s life.”

For more details visit https://cis-india.org/internet-governance/news/washington-post-january-14-2017-rama-lakshmi-millions-of-indians-move-from-cash-to-digital-payments

Microsoft says WannaCry ransomware must be a wake-up call for governments

praskrishna — 2017-06-07T00:55:40Z

Computer security experts said the current attack could have been much worse but for the quick action of a young researcher in Britain who discovered a vulnerability in the ransomware itself, known as WanaCryptor 2.0. It has, however, retweeted a blog post by Brad Smith, president and chief legal officer at Microsoft, who directs much of the blame toward the USA government, arguing that it should have alerted the $524 billion tech titan about the problem.

The article was published in Journaldu Maghreb on May 20, 2017

"This is an emerging pattern in 2017", he continued. "We have seen vulnerabilities stored by the Central Intelligence Agency show up on WikiLeaks, and now this vulnerability stolen from the NSA has affected customers around the world", wrote Smith in a blog post on Sunday. Then there's the US government, whose Windows hacking tools were leaked to the internet and got into the hands of cybercriminals.

"An equivalent scenario with conventional weapons would be the U.S. military having some of its Tomahawk missiles stolen", Mr Smith wrote. Brad Smith, Microsoft's top lawyer, criticized US intelligence agencies for "stockpiling" software code that can be used by hackers. In February, Smith first called for the creation of what he has dubbed a Geneva Convention for cyberspace, which would outlaw nation-state cyberattacks on critical infrastructure and tech companies.

Cyber-security firm HumanFirewall said that on account of high use of pirated Windows operating system in India, it was more susceptible to the attack. Microsoft has connected previous exploits of its products released by the mysterious Shadow Brokers group to tools which were stolen from NSA cyber warfare operations. "All our systems are updated as required". This sophisticated, self-propagating malware was created to spread to all other computers on the same network after infecting one machine.

Estimates by law enforcement agency Europol estimated yesterday that more than 200,000 computers in 150 countries were infected, but with the worm continuing to spread to vulnerable Windows machines, that number will surely rise. When 22 year olds are the heroes of the anti-cyber attack fight, rather than the agencies tasked to defend countries against these types of threats, it is perhaps time to question what these organisations have been doing all this time? NHS staff shared screenshots of the WannaCry programme, which demanded a payment of $300 (£230) in virtual currency Bitcoin to unlock the files for each computer. That dump included a vulnerability codenamed EternalBlue, which preys on a flaw in Microsoft Word to transmit malicious software from one Windows Computer to another. Usually used by cyber criminals, ransomware is a popular means of making illicit money from victims who have to pay the criminals in order to have their data decrypted.

Today is likely to be painful for many organizations all over the world that took the weekend off and are returning to the work-week to find hundreds or thousands of computers on their networks encrypted by WannaCry ransomware, which surfaced Friday and has been propagating ever since. It was a stress-filled weekend for many IT workers this past weekend as the WannaCry ransomware attack spread, crippling Windows systems worldwide.

Security firm BinaryEdge, which specializes in internet-wide scans, has detected more than 1 million Windows systems that have the SMB service exposed to the internet. "Otherwise they're literally fighting the problems of the present with tools from the past", he said. However, a cyber security expert working with the Centre for Internet and Society, Udbhav Tiwari working on vulnerabilities such as these, said as most ATMs in the country especially of the public-sector banks run on outdated operating systems, or are not updated regularly, they can be easily compromised. This allowed users of the older systems to secure their computers without requiring an upgrade to the latest operating software.

For more details visit https://cis-india.org/internet-governance/news/journaldu-maghreb-may-20-2017-microsoft-says-wannacry-ransomware-must-be-a-wake-up-call

Microsoft releases its first report on data requests by law enforcement agencies around the world

maria — 2013-07-12T12:19:31Z

In this post, the Centre for Internet and Society presents Microsoft´s report on law enforcement requests, with a focus on data requested by Indian law enforcement agencies.

This research was undertaken as part of the 'SAFEGUARDS' project that CIS is undertaking with Privacy International and IDRC.

Last week, Microsoft released its first report with data on the number of requests received from law enforcement agencies around the world relating to Microsoft online and cloud services. Microsoft´s newly released 2012 Law Enforcement Requests Report depicts the company's willingness to join the ranks of Google, Twitter and other Web businesses that publish transparency reports.

As of 30 June 2012, 137 million Indians are regular Internet users, many of which use Microsoft services including Skype, Hotmail, Outlook.com, SkyDrive and Xbox Live. Yet, until recently, it was unclear whether Indian law enforcement agencies were requesting data from our Skype calls, emails and other Microsoft services. Thus, Microsoft's release of a report on law enforcement requests is a decisive step in improving transparency in regards to how many requests for data are made by law enforcement agencies and how many requests are granted by companies. Brad Smith, an executive vice president and Microsoft´s general counsel, wrote in his blog post:

“As we continue to move forward, Microsoft is committed to respecting human rights, free expression and individual privacy.”

Microsoft 2012 Law Enforcement Requests

Democratic countries requested the most data during 2012, according to Microsoft´s report. The law enforcement agencies in the United States, the United Kingdom, Germany, France and Turkey accounted for 69 percent of the 70, 665 requests Microsoft (excluding Skype) received last year. Although India did not join the rank of the countries which made the fewest requests from Microsoft, it did not join the top-five league which accounted for the most requests, despite the country having one of the world´s highest number of Internet users.

Out of the 70,665 requests to Microsoft by law enforcement agencies around the world, only about 0.6 percent of the requests were made by Indian law enforcement agencies. These 418 requests specified 594 accounts and users, which is significantly low in comparison to the top-five and other countries, such as Taiwan, Spain, Mexico, Italy, Brazil and Australia. Indian law enforcement requests accounted for about 0.5 percent of the total 122, 015 accounts and user data that was requested by law enforcement agencies around the world.

Content data is defined by Microsoft as what customers create, communicate and store on or through their services, such as words in an e-mail or photographs and documents stored on SkyDrive or other cloud offerings. Non-content data, on the other hand, refers to basic subscriber information, such as the e-mail address, name, location and IP address captured at the time of registration. According to Microsoft´s 2012 report, the company did not disclose any content data to Indian law enforcement agencies. In fact, only 2.2 percent of requests from law enforcement agencies around the world resulted in the disclosure of content data, 99 percent of which were in response to warrants from courts in the United States. Microsoft may have not disclosed any of our content data, but 370 requests from Indian law enforcement agencies resulted in the disclosure of our non-content data. In other words, 88.5 percent of the requests by India resulted in the disclosure of e-mail addresses, IP addresses, names, locations and other subscriber information.

Out of the 418 requests made to Microsoft by Indian law enforcement agencies, only 4 were rejected (1 percent) and no data was found for 44 requests (10.5 percent). In total, Microsoft rejected the disclosure of 1.2 percent of the requests made by law enforcement agencies around the world, while data was not found for 16.8 percent of the international requests. Thus, the outcome of the data shows that the majority of the requests by Indian law enforcement agencies resulted in the disclosure of non-content data, while very few requests were rejected by Microsoft (excluding Skype). The following table summarizes the requests by Indian law enforcement agencies and their outcome:

Total number of requests	418 (0.6%)
Accounts/Users specified in requests	594 (0.5%)
Disclosure of content	0 (0%)
Disclosure of non-content data	370 (88.5%)
No data found	44 (10.5%)
Requests rejected	4 (1%)

Skype 2012 Law Enforcement Requests

Microsoft acquired Skype towards the end of 2011 and the integration of the two companies advanced considerably over the course of 2012. According to the Microsoft 2012 report, Indian law enforcement agencies made 53 requests for Skype user data and 101 requests for specified accounts on Skype. In other words, out of the total 4,715 requests for Skype user data by law enforcement agencies around the world, the requests by Indian law enforcement accounted for about 0.1 percent. 15,409 international requests were made for specified accounts on Skype, but Indian law enforcement requests only accounted for about 0.6 percent of those.

The report appears to be extremely reassuring, as it states that Skype did not disclose any content data to any law enforcement agencies around the world. That essentially means that, according to the report, that all the content we created and communicated through Skype during 2012 was kept private from law enforcement. Although Microsoft claims to not have disclosed any of our content data, it did disclose non-content data, such as SkypeID, name, email account, billing information and call detail records if a user subscribed to the Skype In/Online service, which connects to a telephone number. However, Microsoft did not report how many requests the company received for non-content data, nor how much data was disclosed and to which countries.

Microsoft reported that data was not found for 47 of India´s law enforcement requests, which represents 88.6 percent of the requests. In total, Microsoft reported that data was not found for about half the requests made by law enforcement agencies on an international level. Out of the 53 requests, Microsoft provided guidance to Indian law enforcement agencies for 10 requests. In particular, such guidance was provided either in response to a rejected request or general questions about the process for obtaining Skype user data. Yet, the amount of rejected requests for Skype user data was not included in the report and the guidance provided remains vague. The following table summarizes the requests by Indian law enforcement agencies for Skype user data and their outcome:

Total of requests	53 (0.1%)
Accounts/identifiers specified in requests	101 (0.6%)
Requests resulting in disclosure of content	0 (0%)
No data found	47 (88.6%)
Provided guidance to law enforcement	10 (18.8%)

The Centre for Internet and Society (CIS) supports the publication of Microsoft´s 2012 Law Enforcement Requests Report and encourages Microsoft (including Skype) to continue releasing such reports which can provide an insight on how much user data is being shared with law enforcement agencies around the world. In order to ensure that such reports adequately provide transparency, they should be broadened in the future to include more data, such as the amount of non-content data requests disclosed by Skype, the type of guidance provided to law enforcement agencies and the amount of requests rejected by Skype. Nonetheless, this report is a decisive first step in increasing transparency and further, more detailed reports are strongly encouraged.

For more details visit https://cis-india.org/internet-governance/blog/microsoft-releases-first-report-on-data-requests-by-law-enforcement-agencies

MHRD IPR Chair Series: Information Received from Delhi University

nehaa — 2016-05-15T12:18:40Z

This post provides a factual description about the operation of Ministry of Human Resource Development IPR Chair’s Intellectual Property Education, Research and Public Outreach (IPERPO) scheme in Delhi University.

The author has analysed all the data received through which, the author seeks to trace the presence of unjustified underutilisation of funds by the aforementioned university as provided by the MHRD during the period of 2013-2014. To collect the information for the given study, an RTI application was filed to Delhi University on 09/02/2015 by the Centre for Internet and Society. The reply to RTI application was received on 25/02/2015.

These are the documents received by CIS from Delhi University:

For the response to the RTI application click here

Hereinafter, in order to receive any information about Delhi School of Economics, Delhi University’s RTI reply, kindly refer to the above mentioned links. Following are the queries mentioned in the RTI application along with their replies.

Reports on the implementation of the IPERPO scheme of the Ministry of Human Resource Development and the implementation of the MHRD IPR Chair funded under the scheme at the Delhi School of Economics.
Reply: The University submitted that there are no reports on the implementation of the IPERPO scheme or the MHRD IPR Chair funded under the same. Additionally, the implementation of the scheme commended at Delhi University w.e.f 20th Feb., 2014. Dr. Rekha Chaturvedi joined as the IPR Chair (Technical) on the same date.
Documents on the release of grants to the MHRD IPR Chairs under the IPERPO scheme at the Delhi University, Delhi School of Economics for the year 2013-14.
Reply: The University submitted that there has been no release of grants by the Human Resource and Development Ministry under the IPERPO Scheme.
Documents relating to receipts of utilization certificates and audited expenditure statements and matters related to all financial sanctions with regard to funds granted to the MHRD IPR Chair established under the IPERPO Scheme for the year 2013-14 at the Delhi University, Delhi School of Economics.
Reply: The University replied that as there has been no release of grants under the IPERPO scheme, the question of utilization certificates and audited expenditure or any other matter related to financial sanctions with regard to the funds does not arise.
Documents regarding all matters related to finance and budget related to the MHRD IPR Chair under the IPERPO scheme 2013-14 established at Delhi University, Delhi School of Economics.
Reply: The University did not submit any documents in this regard and asserted that the information sought is not specific.

Comparative Analysis between University Response and the guidelines of MHRD Scheme Document
The Scheme Document of MHRD (http://copyright.gov.in/Documents/scheme.pdf) is a comprehensive document which consists of guidelines regarding Intellectual Property Education, Research and Public Outreach. It talks about a list of objectives, purposes, conditions and eligibility criteria for a University to ensure in order to implement IPERPO in a truest sense. This document provides the procedural as well as qualifying conditions for an Institute to ensure or fulfil before applying for the MHRD grant. Some of these conditions include maintenance of utilization certificates, audit reports, expenditure statements and event information which would be open to access on demand by MDHR or Comptroller and Auditor General of India.

A. Objectives
The University has not provided any documents detailing any activities undertaken to further the objectives of the IPERPO scheme.

B. Eligibility
Delhi School of Economics, Delhi University is recognized by the University Grants Commission. Therefore, it fulfils the eligibility criteria mentioned in the scheme document.

Financial Analysis

The University has not provided any documents on this subject.

For more details visit https://cis-india.org/a2k/blogs/mhrd-ipr-chair-series-information-received-from-delhi-university

MHA snoop order & bid to amend IT rules: China-like clampdown or tracking unlawful content?

Admin — 2018-12-30T10:08:31Z

An MHA order last week authorised 10 government agencies to scan data on computers. This was followed by the Modi government’s proposal to amend the Information Technology rules for social media platforms like WhatsApp, Facebook and Twitter to “proactively identify, remove or disable access to unlawful information or content” in order to curb fake news online.

The article by Fatima Khan was published in the Print on December 28, 2018. Amber Sinha was quoted.

No concrete steps taken by either NDA or UPA to enact laws for surveillance reform

The MHA order which gives 10 government agencies the power to intercept, monitor and decrypt ‘any information’ generated, transmitted, received, or stored in any computer, reaffirms the sorry state of communication surveillance law in India. This is reflected in the lack of judicial review, minimal legislative oversight and no regard for the principles of necessity, proportionality, user notification and transparency.

Despite detailed recommendations by the Committee of Experts led by Justice AP Shah back in 2013, there have been no concrete steps taken by either the current NDA government or the previous UPA government to enact laws for surveillance reform. The draft bill by the committee led by Justice Srikrishna does refer to the principles of necessity and proportionality, but stops short of recommending an overhaul of the surveillance regime. This notification is but merely the logical next step in the existing framework for communications surveillance.

On the other hand, the draft amendments to the IT Act regulations seek to address the problem of ‘unlawful content’ and seem to stem largely from concerns about the use of platforms like Facebook and WhatsApp to spread disinformation and impact electoral processes in India. To that extent, these steps are misguided and betray a failure to engage with the actual problem. Already, the powers of content moderation exercised by online platforms suffer from problems of transparency and accountability. The draft regulations will only serve to compound this problem while unreasonably expecting the platforms to exercise powers which should require judicial determination.

For more details visit https://cis-india.org/internet-governance/news/the-print-december-28-2018-mha-snoop-order-bid-to-amend-it-rules-china-like-clampdown-or-tracking-unlawful-content

Metrolife: Brutality porn has sadly many takers in India

Admin — 2018-04-19T13:15:57Z

The name of the eight-year old Kathua rape victim is trending not just on social media but also on a porn site.

On Monday it had topped the list of the most-searched names on a porn site, triggering surprise and outrage. An official at the Centre for Internet & Society, Bengaluru attributes the curiosity to a "depraved, messed-up" mind.

Swaraj Barooah, senior programme manager at the centre, says, "It takes numbers to make something trend online." He attributes the unhealthy curiosity in rape footage to a lack of proper sex education in schools.

Violent acts are ingrained in the power politics and hierarchy of our society, he observes.

"There are two categories that are searched online...revenge and brutality porn. While revenge porn is usually uploaded by couples who break up, brutality porn is done without recognising the humanity of the person involved," Barooah says.

Psychiatrists think people who search for rape videos have a "sick and deviant mind".

The article by Nina C. George was published in Deccan Herald on April 18, 2018.

For more details visit https://cis-india.org/internet-governance/news/deccan-herald-nina-c-george-april-17-2018-sad-truth-brutality-porn-has-many-takers-in-india

Messaging apps find another foe in India’s market regulator

praskrishna — 2013-06-05T10:46:32Z

Paranoid governments and mobile operators aren’t the only one that dislike messaging apps. Regulatory bodies aren’t crazy about them either. The Securities and Exchange Board of India (SEBI) is worried that attempts to pass on confidential information or manipulate markets are originating from within services like WhatsApp and Blackberry Messenger.

This blog post was published in Quartz on May 8, 2013. Elonnai Hickok is quoted.

The regulator already analyzes data from trades for irregularities through its “integrated market surveillance system”. That gives it an idea of what stocks are being manipulated. Now it wants to expand its horizons. The Press Trust of India reports that SEBI has looked into tracking Twitter and Facebook and is grappling with messaging apps—though as yet it has no systems in place for doing either, according to Elonnai Hickok of the Center for Internet Studies in Bangalore. A SEBI spokesperson could not be reached for comment.

Even if SEBI did start following you on Twitter, it cannot snoop on your WhatsApp messages. That sort of power is the preserve of intelligence and police authorities. And there is good reason for SEBI’s restricted powers. Keeping the markets clean may be an honorable pursuit, but the regulator hasn’t always used honorable means.

India’s finance minister last year said that SEBI would be allowed to request call records, which are the data kept by operators about who called whom, for how long and from where. Such information can help investigators discover sources of leaked information. It can also be used to figure out whether traders are trying to influence other investigators. But a freedom-of-information request recently revealed that SEBI had been requesting—and receiving—such data from carriers at least since 2009, well before it was supposedly allowed to do so.

For more details visit https://cis-india.org/news/quartz-may-8-2013-leo-mirani-messaging-apps-find-another-foe-in-indias-market-regulator

Meeting on Proactive Disclosure and Personal Data (Delhi, May 13, 5:30 pm)

sumandro — 2017-05-13T04:32:41Z

CIS is organising an informal discussion on topics related to proactive disclosure and personal data thrown up by the recently published report by Amber Sinha and Srinivas Kodali titled "Information Security Practices of Aadhaar (or lack thereof)". Please join us at 5:30 pm today, May 13, at the CIS office.

Read the report: PDF

Location

For more details visit https://cis-india.org/internet-governance/events/meeting-on-proactive-disclosure-and-personal-data-delhi-may-13

Meeting on Net Neutrality and Related Issues

praskrishna — 2016-08-02T15:56:10Z

A meeting was convened by the Telecom Regulatory Authority of India on July 15, 2016 in New Delhi to discuss Net Neutrality and related issues. Sunil Abraham attended this meeting.

Click to view the Invitation Letter sent by the Telecom Regulatory Authority of India.

For more details visit https://cis-india.org/internet-governance/news/meeting-on-net-neutrality-and-related-issues

Meeting of the two Sub-Groups on Privacy Issues under the Chairmanship of Justice AP Shah in Delhi

praskrishna — 2012-06-14T08:31:39Z

The next meeting of the two Sub-Groups on privacy issues under the Chairmanship of Justice A.P. Shah, former Chief Justice of Delhi High Court is scheduled to be held on June 27, 2012 at 11.00 a.m. in the Committee Room No. 228, Yojana Bhawan, Planning Commission.

Members of both the Sub-Groups are requested to send their final write-ups as decided in the last meeting, by June 20, 2012 so that those could be circulated to all concerned for obtaining feedback and for discussions/ deliberations on June 27, 2012.

Shri S. Bose, Under Secretary (CIT & I) communicated this through notice No. M-13040/47/2011-CIT&I.

The notice was e-mailed to the following individuals:

Justice A.P.Shah, Chairman
Dr. Kamlesh Bajaj
Usha Ramanathan
Sunil Abraham
Prashant Reddy
Prof. Arghya Sengupta
Som Mittal
Shri Gulshan Rai
Mala Dutt

For more details visit https://cis-india.org/news/meeting-of-two-sub-groups-in-delhi

Meeting of the Network of Internet & Society Centers

praskrishna — 2012-12-11T10:18:41Z

The Berkman Center for Internet & Society at Harvard University together with the Alexander von Humboldt Institute for Internet & Society in Berlin, in collaboration with the Centre for Internet and Society Bangalore, the Center for Technology & Society at the Fundação Getulio Vargas (FGV) Law School, KEIO University SFC, the MIT Media Lab, the MIT Center for Civic Media, and the NEXA Center for Internet & Society, will host a highly interactive and participatory meeting of representatives from these and other research centers focused on Internet and society issues.

Taking place on December 6-8 in Cambridge, Massachusetts, this gathering will serve as the inaugural event for a nascent global network and create an opportunity for participants to scope and identify mechanisms for collaboration, research, and informal coordination.

Theme

Internet-driven Developments: Structural Changes and Tipping Points As a starting point, the December meeting will focus on the theme of “Internet-driven Developments: Structural Changes and Tipping Points,” provoking both substantive questions to facilitate ideas for collaboration, as well as process-oriented questions regarding the structure, governance, and composition of the network of centers. This topic is intended to provide a conceptual lens for the meeting itself, and to enable myriad connections to the diverse research areas and interests of the participating organizations; however, it is not meant to frame the thematic areas of the network writ large. Rather, we hope that the theme stimulates conversations about future areas of collaboration within and beyond the topic areas outlined in this concept note.

With this goal in mind and building upon the research interests of the participants, the two proposed overarching “horizontal” questions of the meeting are:

What are the structural changes (as opposed to hype, fashion, spikes, etc.), from societal, economic, legal, and educational perspectives, promoted by the Internet and related technological advancements? What do we know about these tectonic shifts and where are knowledge gaps? How do these shifts compare to earlier changes facilitated by new technologies? What further changes do we anticipate?
2 What are the forces and tipping points that have catalyzed these structural changes— including the actions of individuals (such as users, citizens, and individual activists) and institutions (such as government, business, and civil society)? Where do we currently see or anticipate tipping points? As a research community that seeks to inform advocacy efforts, policymaking, civic discourse, and other societal interests, how can these concepts inform or drive our activities?

We hope to discuss these guiding (“horizontal”) questions in the context of exploring two areas of research or use cases (“verticals”), which might inspire future activities of the network itself as well as collaboration among participants:

Political participation: Various research efforts over the past decade have focused on the question of if and how the Internet changes political participation, from new forms of electronic voting to the broader question of potential changes in political discourse in the digitally networked public sphere. During the meeting, we will take stock of the current landscape, with a particular focus on recent elections and political movements around the globe, and explore open questions, future research directions, questions, emerging tools and methodologies.

Production modes: Digital technologies in general and the Internet in particular have changed the ways in which goods are produced and services provided. Within this context, new modes of production — most prominently “peer-based” models — have emerged, accompanied by innovative organizational models and set-ups. Questions we hope to explore include: How relevant are these shifts from an economic, organizational, societal, business, and creative perspective? Has recent empirical research confirmed the theory of commons-based peer production, or challenged it? What conditions facilitate new modes of Internet-based production and what are the benefits and challenges from a public policy perspective? What do interesting case studies in the field, from collaborative online journalism to crowd-funding, tell us about the direction of this trend?

In a number of learning calls leading up to the meeting, we hope to further specify the proposed substantive areas, identify core issues of mutual interest for discussion, nominate speakers and rapporteurs, and learn about each other’s work in respective areas.

Key Objectives

The meeting will not only focus on substantive issues within the proposed themes, but also seek to provide a foundation for discussions regarding structural and process-oriented objectives for the network.

Substantive goals include: based on the proposed themes and topics, becoming familiar with each other’s work; facilitating the exchange of information regarding current and future projects, research areas, and innovative methods; identifying connection points, concrete ideas for initial and continued institutional collaborations on projects, and tools to support sustained and future efforts; and building a shared vocabulary and structure for collaboration among Internet & society centers, including existing and potential actors in the Global South.

Structural/process-oriented objectives include: defining the scope and core DNA of the network; exploring initial structures for governance, shared research, exchange programs, and mechanisms for collaboration; and identifying tools and practices for communication among teams, within the network, and externally.

From Ideas to Action

Using the substantive discussion as a jumping-0ff point, we will collectively explore how to apply lessons learned from the process of conducting interdisciplinary and international research into a network that embodies those same values. What analytical frames and empirical indicators can researchers offer to better inform policy makers and citizenry? How can we make public debates more rational and informed? What are methodological and data issues we should consider in research projects? What role do we envision for advocacy and broader communication for greater societal impact? How do these discussions inform and scope the potential areas of activity of the network? Through what specific mechanisms, such as research, tool development, convenings, or teaching, will Centers address these challenges? Invited colleagues, collaborators, and guests will provoke discussions and pose questions that challenge current assumptions and encourage experimentation.

Mode of Engagement

We are committed to leveraging the tremendous diversity of the participants to develop novel understandings — and approaches to reaching them — by actively embracing differences in geography, discipline, organizational approach, culture and context, among many other facets. Not only must we consciously address the more straightforward challenges of translation (language and discipline), but we must proactively develop ways to meaningfully and efficiently engage the deeper divisions we identify among us. Allowing differences to become splits would be unfortunate, but more importantly, it is at precisely these gaps where new perspectives are possible, and great gains are within reach.

Fulfilling this commitment will be a real challenge because it requires behavior change on our part. We must avoid or explain terms of art, make explicit and explore our assumptions, explain our methods, perform necessary translations, and otherwise take steps to maximize hospitality and genuine understanding. Because this work is interactive in nature, it is essential that we are economical in our group discussion, leaving as much time for the interactions that will highlight and address gaps, rather than making extended monologues that risk losing other participants and sacrifice the provocative stimuli offered by our diversity. In short, let us be clear, brief and to the point. Let us listen to each other closely and encourage new voices, rather than inadvertently privileging only a few dominant ones. Let us be aware that participants will have different styles of engagement, and that we need to collectively find ways to embrace them, even as they adapt to this special environment. Above all, let us have enjoy this rare opportunity to gather and engage on issues we care about with this unique group of colleagues.

Draft Agenda

Thursday, December 6
9:30-1:00 pm (Optional) Cyberscholars Forum For those meeting participants who arrive in Cambridge early, we welcome them to attend a half day meeting of the Cyberscholars Working Group, which includes fellows from the Berkman Center for Internet & Society, Yale Information Society Project, MIT Media Lab / Center for Civic Media, and other institutions.
3:00 Opening Exercise: Mapping Collaboration The opening session of the symposium on “Structural Changes and Tipping Points” will include participants of the Cyberscholars forum, and will highlight the landscape of existing collaborations among researchers, as well as generate ideas for new modes and methods for collaboration to be considered over the course of the meeting. This early convening will allow the opportunity for representatives to bring the unique strengths of their institutions to the table and consider ways we can take advantage of coordinated efforts.
5:30 Opening Session Structural Change: Understanding Structural Changes, Tipping Points, and their Effects on Systems Historical examples of significant structural change, and the events and conditions leading up to those dramatic shifts, will offer a lens for the meeting where societal advancements catalyzed by technological innovation can be analyzed and understood. As digital technologies increasingly intersect with and support institutions, industries, and individuals, what cautionary tales does history reveal regarding how to study and engage important tipping points? What lessons from history will enable societal development? And what structures are currently changing or are ripe for change (and research) in the next decade?
6:45 Joint Reception with Cyberscholars Participants The reception will include displays from the Harvard metaLAb and the Harvard Library community.
Friday, December 7
8:30 am Breakfast
9:00 Welcome
9:15 Foundations: Key Ingredients for Structural Change in the Digital Ecosystem: Data, Algorithms, Intermediaries This opening session will set the stage by exploring the key elements that facilitate current and the next generation of structural shifts in the digitally networked information ecosystem and discuss both drivers and inhibitors of change from social, economic, legal, and educational perspectives. Instead of providing a holistic overview of all factors that are in play, the session will focus on three particularly important elements: the power of “big data”, the importance of algorithms, and the role of new intermediaries. Beyond phenomenological stock-taking, the participants will discuss the next generation of legal, ethical, economic and other issues that arise in the context of these key elements and the need for collaboration - and potentially intervention – with regard to these and related factors of change. The discussion will help orient the relationship between structural change and associated tipping points, and will be further explored throughout the day via participant-organized breakout sessions and use case discussions.
10:15 Use Case #1 Political Participation: New Orders, Democracy, Governance, and Civic Engagement Various research efforts over the past decade have focused on the question of if and how the Internet changes political participation, from new forms of electronic voting to the broader question of potential changes in political discourse in the digitally networked public sphere. During the meeting, we will take stock of the current landscape, with a particular focus on recent elections and political movements around the globe, and explore open questions, future research directions, questions, emerging tools and methodologies. Examples we could examine, and potentially consider as “tipping points,” may range from SOPA, PIPA, and ACTA to the Arab Spring and the post-election crisis in Kenya in 2008 to many other major political events. These examples may also highlight the limits, challenges, and dangers of the new media environment.
11:15 Coffee Break
11:30 Morning Breakout Sessions & Afternoon Proposals Semi-moderated discussion sessions proposed by participants in advance of the meeting (such as sessions on Internet & democracy, research methods, region specific issues, and other projects) will take place, with an eye towards developing contributions to the final session on future directions.
Additionally, participants will brainstorm and propose sessions to lead during the unconference sessions in the afternoon, with a preference for more exploratory topics. Anyone at the meeting can suggest, lead, or participate in the discussions, and topics can range from those relevant to the substantive themes of the symposium to ideas for networking, shared research, and anything beyond.
12:30 pm Lunch
1:30pm Use Case #2 Economic and Production Modes: New Models for Innovation & Entrepreneurship Digital technologies in general and the Internet in particular have changed the ways in which goods are produced and services provided. Within this context, new modes of production — most prominently “peer-based” models — have emerged, accompanied by innovative organizational models and set-ups. Questions we hope to explore include: How relevant are these shifts from an economic, organizational, societal, business, and creative perspective? Has recent empirical research confirmed the theory of commons-based peer production, or challenged it? What conditions facilitate new modes of Internet-based production and what are the benefits and challenges from a public policy perspective? What do interesting case studies in the field, from collaborative online journalism to crowd-funding, tell us about the direction of this trend? Examples of market and industry shifts, institutional changes, and individual impact may serve as illustrations of tipping points where new models of production have fostered true innovation, and reveal paths for what to expect in the future.
2:30 Participant-Led Unconference Sessions Meeting participants who proposed sessions will lead discussions around topics related to the main theme of the symposium or around ideas related to the formation of a network of centers.
3:30 Break
4:00 Reflections and Future Directions A rapporteur from each center will offer brief reflections and key takeaways based on their experience during the meeting. A shortlist of “low hanging fruit” (i.e. things that we can immediately start to collaborate on) will be developed in advance and serve as the basis for the session, so the group can make progress towards developing a substantive agenda and initial workplan for the network at the meeting.
7:00 Reception and Party
Saturday, December 8
9:00-12pm Breakfast session: Action plan for the next year In the Food for Thought mode, representatives will meet to discuss an innovation and collaboration agenda for the inaugural year of the network. Using inputs from learning calls and the previous days of the meeting, participants will work to identify existing or new projects where researchers, faculty, and staff can immediately begin collaborating. We will also create a rough plan for addressing action items that are “low hanging fruit” for the launch of the network.

For more details visit https://cis-india.org/internet-governance/events/meeting-of-network-of-internet-and-society-centers

Meeting of Information Systems Security and Biometrics Sectional Committee

Admin — 2018-09-19T14:08:23Z

Gurshabad Grover attended the 14th meeting of the Information Systems Security and Biometrics Sectional Committee (LITD 17) of the Bureau of Indian Standards (BIS), which was held at the BIS office in New Delhi on 14 September 2018.

This was Gurshabad's first LITD 17 meeting. The committee noted my co-option in the committee and registration in Working Group 1 (Information security management systems) and WG5 (Identity management and privacy technologies) of ISO JTC 1 / SC 27 / “IT Security Techniques”. Some of the items discussed included proposed standards for biometric information protection, mobile phone security, and data privacy engineering & management practices.

For more details visit https://cis-india.org/internet-governance/news/meeting-of-information-systems-security-and-biometrics-sectional-committee

Meeting of Coalition for an Inclusive Approach on the Trafficking Bill

Admin — 2018-08-18T09:21:36Z

Gurshabad Grover attended a meeting of the Coalition for an Inclusive Approach on the Trafficking Bill at the Alternative Law Forum, Bangalore on May 3, 2018.

The coalition is working on a report highlighting the various concerns in the recently Cabinet-approved Trafficking of Persons (Prevention, Protection and Rehabilitation) Bill, 2018.

Swaraj Barooah had written a blogpost about some provisions in the Bill that could potentially impact freedom of expression. These inputs have been incorporated into the report the Coalition is preparing.

Clarification (18th August, 2018): A letter sent to the Ministry of Women and Child Development mentioned the Centre for Internet & Society as instituionally endorsing a critique of the The Trafficking of Persons (Prevention, Protection and Rehabilitation) Bill, 2018. We seek to clarify that the Centre for Internet & Society did not endorse the letter to the Ministry.

For more details visit https://cis-india.org/internet-governance/news/meeting-of-coalition-for-an-inclusive-approach-on-the-trafficking-bill