Centre for Internet and Society

Development Informatics

Aayush Rathi and Ambika Tandon — 2019-09-27T15:12:01Z

For more details visit https://cis-india.org/internet-governance/files/development-informatics

DesiSec: Episode 1 - Film Release and Screening

purba — 2013-12-17T08:13:32Z

The Centre for Internet and Society is pleased to to announce the release of the first documentary film on cybersecurity in India - DesiSec. We hope you can join us for a special screening of the first episode of DesiSec, on 11th December, at CIS!

Early 2013, the Centre for Internet and Society began shooting its first documentary film project. After months of researching and interviewing activists and experts, CIS is thrilled to announce the release of the first documentary film on cybersecurity in India - DesiSec: Cybersecurity and Civi Society in India.

Trailer link: http://cis-india.org/internet-governance/blog/cis-cybersecurity-series-film-trailer

CIS is hosting a special screening of DesiSec: Episode 1 on 11th December, 2013, 6 pm and invites you to this event. The first episode is centered around the issue of privacy and surveillance in cyber space and how it affects Indian society.

We look forward to seeing you there!

RSVP: purba@cis-india.org

Venue: http://osm.org/go/yy4fIjrQL?m=

This work was carried out as part of the Cyber Stewards Network with aid of a grant from the International Development Research Centre, Ottawa, Canada.

For more details visit https://cis-india.org/internet-governance/desisec-episode-1-film-release-and-screening

DesiSec: Cybersecurity and Civil Society in India

Laird Brown — 2015-06-29T16:25:43Z

As part of its project on mapping cyber security actors in South Asia and South East Asia, the Centre for Internet & Society conducted a series of interviews with cyber security actors. The interviews were compiled and edited into one documentary. The film produced by Purba Sarkar, edited by Aaron Joseph, and directed by Oxblood Ruffin features Malavika Jayaram, Nitin Pai, Namita Malhotra, Saikat Datta, Nishant Shah, Lawrence Liang, Anja Kovacs, Sikyong Lobsang Sangay and, Ravi Sharada Prasad.

Originally the idea was to do 24 interviews with an array of international experts: Technical, political, policy, legal, and activist. The project was initiated at the University of Toronto and over time a possibility emerged. Why not shape these interviews into a documentary about cybersecurity and civil society? And why not focus on the world’s largest democracy, India? Whether in India or the rest of the world there are several issues that are fundamental to life online: Privacy, surveillance, anonymity and, free speech. DesiSec includes all of these, and it examines the legal frameworks that shape how India deals with these challenges.

From the time it was shot till the final edit there has only been one change in the juridical topography: the dreaded 66A of the IT Act has been struck down. Otherwise, all else is in tact. DesiSec was produced by Purba Sarkar, shot and edited by Aaron Joseph, and directed by Oxblood Ruffin. It took our team from Bangalore to Delhi and, Dharamsala. We had the honour of interviewing: Malavika Jayaram, Nitin Pai, Namita Malhotra, Saikat Datta, Nishant Shah, Lawrence Liang, Anja Kovacs, Sikyong Lobsang Sangay and, Ravi Sharada Prasad. Everyone brought something special to the discussion and we are grateful for their insights. Also, we are particularly pleased to include the music of Charanjit Singh for the intro/outro of DesiSec. Mr. Singh is the inventor of acid house music, predating the Wikipedia entry for that category by five years. Someone should correct that.

DesiSec is released under the Creative Commons License Attribution 3.0 Unported (CC by 3.0). You can watch it on Vimeo: https://vimeo.com/123722680 or download it legally and free of charge via torrent. Feel free to show, remix, and share with your friends. And let us know what you think!

Video

For more details visit https://cis-india.org/internet-governance/blog/desi-sec-cybersecurity-and-civil-society-in-india

Design in urban democracy: A question of survival

admin — 2008-10-11T09:49:21Z

Urban dynamics dissected by John Thackara and Sunil Abraham; questions and answers on the anatomy of cities. An article from the August issue of Cluster Magazine.

For more details visit https://cis-india.org/publications-automated/cis/sunil/Thackara.pdf

Demystifying Data Breaches in India

Pawan Singh — 2022-10-17T16:14:03Z

Despite the rate at which data breaches occur and are reported in the media, there seems to be little information about how and when they are resolved. This post examines the discourse on data breaches in India with respect to their historical forms, with a focus on how the specific terminology to describe data security incidents has evolved in mainstream news media reportage.

Edited by Arindrajit Basu and Saumyaa Naidu

India saw a 62% drop in data breaches in the first quarter of 2022. Yet, it ranked fifth on the list of countries most hit by cyberattacks according to a 2022 report by Surfshark, a Netherlands-based VPN company. Another report on the cost of data breaches researched by the Ponemon Institute and published by IBM reveals that the breach of about 29500 records between March 2021 and March 2022 resulted in a 25% increase in the average cost from INR 165 million in 2021 to INR 176 million in 2022.

These statistics are certainly a cause for concern, especially in the context of India’s rapidly burgeoning digital economy shaped by the pervasive platformization of private and public services such as welfare, banking, finance, health, and shopping among others. Despite the rate at which data breaches occur and are reported in the media, there seems to be little information about how and when they are resolved. This post examines the discourse on data breaches in India with respect to their historical forms, with a focus on how the specific terminology to describe data security incidents has evolved in mainstream news media reportage.

While expert articulations of cybersecurity in general and data breaches in particular tend to predominate the public discourse on data privacy, this post aims to situate broader understandings of data breaches within the historical context of India’s IT revolution and delve into specific concepts and terminology that have shaped the broader discourse on data protection. The late 1990s and early 2000s offer a useful point of entry into the genesis of the data security landscape in India.

Data Breaches and their Predecessor Forms

The articulation of data security concerns around the late 1990s and early 2000s isn’t always consistent in deploying the phrase, ‘data breach’ to signal cybersecurity concerns in India. The terms such as ‘data/ identity theft’ and ‘data leak’ figure prominently in the public articulation of concerns with the handling of personal information by IT systems, particularly in the context of business process outsourcing (BPO) and e-commerce activities. Other pertinent terms such as “security breach”, “data security”, and ‘“cyberfraud” also capture the specificity of growing concerns around outsourced data to India. At the time, i.e. around mid-2000s regulatory frameworks were still evolving to accommodate and address the complexities arising from a dynamic reconfiguration of the telecommunications and IT landscape in India.

Some of the formative cases that instantiate the usage of the aforementioned terms are instructive to understand shifts in the reporting of such incidents over time. The earliest case during that period concerns a 2002 case concerning the theft and sale of source code by an IIT Kharagpur student who intended to sell the code to two undercover FBI agents who worked with the CBI to catch the thief. A straightforward case of data theft was framed by media stories around the time as a cybercrime involving the illegal sale of the source code of a software package, as software theft of intellectual property in the context of outsourcing and as an instance of industrial espionage in poor nations without laws protecting foreign companies. This case became the basis of the earliest calls for the protection of data privacy and security in the context of the Indian BPO sector. The Indian IT Act, 2000 at the time only covered unauthorized access and data theft from computers and networks without any provisions for data protection, interception or computer forgery. The BPO boom in India brought with it employment opportunities for India’s English-speaking, educated youth but in the absence of concrete data privacy legislation, the country was regarded as an unsafe destination for outsourcing aside from the political ramifications concerning the loss of American jobs.

In a major 2005 incident, employees of the Mphasis BFL call centre in Pune extracted sensitive bank account information of Citibank’s American customers to divert INR 1.90 crore into new accounts set up in India. The media coverage of this incident calls it India’s first outsourcing cyberfraud and a well planned scam, a cybercrime in a globalized world, and a case of financial fraud and a scam that required no hacking skills, and a case of data theft and misuse. Within the ambit of cybercrime, media reports of these incidents refer to them as cases of “fraud”, “scam” and “theft''.

Two other incidents in 2005 set the trend for a critical spotlight on data security practices in India. In a June 2005 incident, an employee of a Delhi-based BPO firm, Infinity e-systems, sold the account numbers and passwords of 1000 bank customers to the British Tabloid, The Sun. The Indian newspaper, Telegraph India, carried an online story headlined, “BPO Blot in British Backlash: Indian Sells Secret Data,” which reported that the employee, Kkaran Bahree, 24, was set up by a British journalist, Oliver Harvey. Harvey filmed Bahree accepting wads of cash for the stolen data. Bahree’s theft of sensitive information is described both as a data fraud and a leak in the above 2005 BBC story by Soutik Biswar. Another story on the incident calls it a “scam” involving the leakage of credit card information. The use of the term ‘leak’ appears consistently across other media accounts such as a 2005 story on Karan Bahree in the Times of India and another story in the Economic Times about the Australian Broadcasting Corporation’s (ABC) sting operation similar to the one in Delhi, describing the scam by the fraudsters as a leak of the online information of Australians. Another media account of the coverage describes the incident in more generic terms such as an “outsourcing crime”.

The other case concerned four former employees of Parsec technologies who stole classified information and diverted calls from potential customers, causing a sudden drop in the productivity of call centres managed by the company in November 2005. Another call centre fraud came to light in 2009 through a BBC sting operation in which British reporters went to Delhi and secretly filmed a deal with a man selling credit card and debit card details obtained from Symantec call centres, which sold software made by Norton. This BBC story uses the term “breach” to refer to the incident.

In the broader framing of these cases generally understood as cybercrime, which received transnational media coverage, the terms “fraud”, “leak”, “scam”, and “theft” appear interchangeably. The term “data breach” does not seem to be a popular or common usage in these media accounts of the BPO-related incidents. A broader sense of breach (of confidentiality, privacy) figures in the media reportage in implicitly racial terms of cultural trust, as a matter of ethics and professionalism and in the language of scandal in some cases.

These early cases typify a specific kind of cybercrime concerning the theft or misappropriation of outsourced personal data belonging to British or American residents. What’s remarkable about these cases is the utmost sensitivity of the stolen personal information including financial details, bank account and credit/debit card numbers, passwords, and in one case, source code. While these cases rang the alarm bells on the Indian BPO sector’s data security protocols, they also directed attention to concerns around the training of Indian employees on the ethics of data confidentiality and vetting through psychometric tests for character assessment. In the wake of these incidents, the National Association of Software and Service Companies (NASSCOM), an Indian non-governmental trade and advocacy group, launched a National Skills Registry for IT professionals to enable employers to conduct background checks in 2006.

These data theft incidents earned India a global reputation of an unsafe destination for business process outsourcing, seen to be lacking both, a culture of maintaining data confidentiality and concrete legislation for data protection at the time. Importantly, the incidents of data theft or misappropriation were also traceable back to a known source, a BPO employee or a group of malefactors, who often sold sensitive data belonging to foreign nationals to others in India.

The phrase “data leak” also caught on in another register in the context of the widespread use of camera-equipped mobile phones in India. The 2004 Delhi MMS case offers an instance of a date leak, recapitulating the language of scandal in moralistic terms.

The Delhi MMS Case

The infamous 2004 incident involved two underage Delhi Public School (DPS) students who recorded themselves in a sexually explicit act on a cellular phone. After a fall out, the male student passed the low-resolution clip on to his friend in which his female friend’s face is seen. The clip, distributed far and wide in India, ended up on the famous e-shopping and auction website, bazee.com leading to the arrest of the website’s CEO Avinash Bajaj for hosting the listing for sale. Another similar case in 2004 mimicked the mechanics of visual capture through hand-held MMS-enabled mobile phones. A two-minute MMS of a top South-Indian actress taking a shower went viral on the Internet in 2004, the year when another MMS of two prominent Bollywood actors kissing had already done the rounds. The MMS case also marked the onset of a national moral panic around the amateur uses of mobile phone technologies, capable of corrupting young Indian minds under a sneaky regime of new media modernity. The MMS case, not strictly the classic case of a data breach - non-visual information generally stored in databases - became an iconic case of a data leak framed in the media as a scandal that shocked the country, with calls for the regulation of mobile phone use in schools. The case continued its scandalous afterlife in a 2009 Bollywood film, Dev D and another 2010 film, Love, Sex and Dhokha,

Taken together, the BPO data thefts and frauds and the data leak scandals prefigure the contemporary discourse on data breaches in the second decade of the 21st century, or what may also be called the Decade of Datafication. The launch of the Indian biometric identity project, Aadhaar, in 2009, which linked access to public services and welfare delivery with biometric identification, resulted in large-scale data collection of the scheme’s subscribers. Such linking raised the spectre of state surveillance as alleged by the critics of Aadhaar, marking a watershed moment in the discourse on data privacy and protection.

Aadhaar Data Security and Other Data Breaches

Aadhaar was challenged in the Indian Supreme Court in 2012 when it was made mandatory for welfare and other services such as banking, taxation and mobile telephony. The national debate on the status of privacy as a cultural practice in Indian society and a fundamental right in the Indian Constitution led to two landmark judgments - the 2017 Puttaswamy ruling holding privacy to be a constitutional right subject to limitations and the 2018 Supreme Court judgment holding mandatory Aadhaar to be constitutional only for welfare and taxation but no other service.

While these judgments sought to rein in Aadhaar’s proliferating mandatory uses, biometric verification remained the most common mode of identity authentication with most organizations claiming it to be mandatory for various purposes. During the same period from 2010 onwards, a range of data security events concerning Aadhaar came to light. These included app-based flaws, government websites publishing Aadhaar details of subscribers, third party leaks of demographic data, duplicate and forged Aadhaar cards and other misuses.

In 2015, the Indian government launched its ambitious Digital India Campaign to provide government services to Indian citizens through online platforms. Yet, data security breach incidents continued to increase, particularly the trade in the sale and purchase of sensitive financial information related to bank accounts and credit card numbers. The online availability of a rich trove of data, accessible via a simple Google search without the use of any extractive software or hacking skills within a thriving shadow economy of data buyers and sellers makes India a particularly vulnerable digital economy, especially in the absence of robust legislation. The lack of awareness around digital crimes and low digital literacy further exacerbates the situation given that datafication via government portals, e-commerce, and online apps has outpaced the enforcement of legislative frameworks for data protection and cybersecurity.

In the context of Aadhaar data security issues, the term “data leak” seems to have more traction in media stories followed by the term “security breach”. Given the complexity of the myriad ways in which Aadhaar data has been breached, terms such as data leak and exposure (of 11 crore Indian farmers’ sensitive information) add to the specificity of the data security compromise. The term “fraud” also makes a comeback in the context of Aadhaar-related data security incidents. These cases represent a mix of data frauds involving fake identities, theft of thumb prints for instance from land registries and inadvertent data leaks in numerous incidents involving government employees in Jharkhand, voter ID information of Indian citizens in Andhra Pradesh and Telangana and activist reports of Indian government websites leaking Aadhaar data.

Aadhaar-related data security events parallel the increase in corporate data breaches during the decade of datafication. The term “data leak” again alternates with the term “data breach” in most media accounts while other terms such as “theft” and “scam” all but disappear in the media coverage of corporate data breaches.

From 2016 onwards, incidents of corporate data breaches in India continued to rise. A massive debit card data breach involving the YES Bank ATMs and point-of-sale (PoS) machines compromised through malware between May and July of 2016 resulted in the exposure of ATM PINs and non-personal identifiable information of customers. It went undetected for nearly three months. Another data leak in 2018 concerned a system run by Indane, a state-owned utility company, which allowed anyone to download private information on all Aadhaar holders including their names, services they were connected to and the unique 12-digit Aadhaar number. Data breaches continued to be reported in India concurrent with the incidents of data mismanagement related to Aadhaar. Some prominent data breaches included a cyberattack on the systems of airline data service provider SITA resulting in the leak of Air India passenger data, leakage of the personal details of the Common Admission Test (CAT) applicants, details of credit card and order preferences of Domino’s pizza customers on the dark web, leakage of COVID-19 patients’ test results leaked by government websites, user data of Justpay and Big Basket for sale on the dark web and an SBI data breach among others between 2019 and 2021.

The media reportage of these data breaches use the term “cyberattack” to describe the activities of hackers and cybercriminals operating within a shadow economy or the dark web. Recent examples of cyberattacks by hackers who leak user data for sale on the dark web include 8.2 terabytes of 110 million sensitive financial data (KYC details, Aadhaar, credit/debit cards and phone numbers) of the payments app MobiKwik users, 180 million Domino’s pizza orders (name, location, emails, mobile numbers), and Flipkart’s Cleartrip users’ data. In these incidents again, three terms appear prominently in the media reportage - cyberattack, data breach, and leak. The term “data breach” remains the most frequently used epithet in the media coverage of the lapses of data security. While it alternates with the term “leak” in the stories, the term “data breach” appears consistently across most headlines in the news stories.

The exposure of sensitive, personal, and non-personal data by public and private entities in India is certainly a cause for concern, given the ongoing data protection legislative vacuum.

The media coverage of data breaches tends to emphasize the quantum of compromised user data aside from the types of data exposed. The media framing of these breaches in quantitative terms of financial loss as well as the magnitude and the number of breaches certainly highlights the gravity of these incidents but harm to individual users is often not addressed.

Evolving Terminology and the Source of Data Harms

The main difference in the media reportage of the BPO cybersecurity incidents during the early aughts and the contemporary context of datafication is the usage of the term, “data breach”, which figures prominently in contemporary reportage of data security incidents but not so much in the BPO-related cybercrimes.

THe BPO incidents of data theft and the attendant fraud must be understood in the context of the anxieties brought on by a globalizing world of Internet-enabled systems and transnational communications. In most of these incidents regarded as cybercrimes, the language of fraud and scam ventures further to attribute such illegal actions of the identifiable malefactors to cultural factors such as lack of ethics and professionalism.The usage of the term “data leak” in these media reports functions more specifically to underscore a broader lapse in data security as well as a lack of robust cybersecurity laws. The broader term, “breach”, is occasionally used to refer to these incidents but the term, “data breach” doesn’t appear as such.

The term “data breach” gains more prominence in media accounts from 2009 onwards in the context of Aadhaar and the online delivery of goods and services by public and private players. The term “data breach” is often used interchangeably with the term “leak” within the broader ambit of cyberattacks in the corporate sector. The media reportage frames Aadhaar-related security lapses as instances of security/data breaches, data leaks, fraud, and occasionally scam.

In contrast to the handful of data security cases in the BPO sector, data breaches have abounded in the second decade of the twenty-first century. What further differentiates the BPO-related incidents to the contemporary data breaches is the source of the data security lapse. Most corporate data breaches remain attributable to the actions of hackers and cybercriminals while the BPO security lapses were traceable back to ex-employees or insiders with access to sensitive data. We also see in the coverage of the BPO-related incidents, the attribution of such data security lapses to cultural factors including a lack of ethics and professionalism often in racial overtones. The media reportage of the BBC and ABC sting operations suggests that the India BPOs lack of preparedness to handle and maintain personal data confidentiality of foreigners point to the absence of a privacy culture in India. Interestingly, this transnational attribution recurs in a different form in the national debate on Aadhaar and how Indians don’t care about their privacy.

The question of the harms of data breaches to individuals is also an important one. In the discourse on contemporary data breaches, the actual material harm to an individual user is rarely ever established in the media reportage and generally framed as potential harm that could be devastating given the sensitivity of the compromised data. The harm is reported to be predominantly a function of organizational cybersecurity weakness or attributed to hackers and cybercriminals.

The reporting of harm in collective terms of the number of accounts breached, financial costs of a data breach, the sheer number of breaches and the global rankings of countries with the highest reported cases certainly suggests a problem with cybersecurity and the lack of organizational preparedness. However, this collective framing of a data breach’s impact usually elides an individual user’s experience of harm. Even in the case of Aadhaar-related breaches - a mix of leaking data on government websites and other online portals and breaches - the notion of harm owing to exposed data isn’t clearly established. This is, however, different from the extensively documented cases of Aadhaar-related issues in which welfare benefits have been denied, identities stolen and legitimate beneficiaries erased from the system due to technological errors.

Future Directions of Research

This brief, qualitative foray into the media coverage of data breaches over two decades has aimed to trace the usage of various terms in two different contexts - the Indian BPO-related incidents and the contemporary context of datafication. It would be worth exploring at length, the relationship between frequent reports of data breaches, and the language used to convey harm in the contemporary context of a concrete data protection legislation vacuum. It would be instructive to examine the specific uses of the terms such as “fraud”, “leak”, “scam”, “theft” and “breach” in media reporting of such data security incidents more exhaustively. Such analysis would elucidate how media reportage shapes public perception towards the safety of user data and an anticipation of attendant harm as data protection legislation continues to evolve.

Especially with Aadhaar, which represents a paradigm shift in identity verification through digital means, it would be useful to conduct a sentiment analysis of how biometric identity related frauds, scams, and leaks are reported by the mainstream news media. A study of user attitudes and behaviours in response to the specific terminology of data security lapses such as the terms “breach”, “leak”, “fraud”, “scam”, “cybercrime”, and “cyberattack” would further contribute to how lay users understand the gravity of a data security lapse. Such research would go beyond expert understandings of data security incidents that tend to dominate media reportage to elucidate the concerns of lay users and further clarify the cultural meanings of data privacy.

For more details visit https://cis-india.org/internet-governance/blog/demistifying-data-breaches-in-india

Delhi: Learn to secure your online communication!

bernadette — 2013-06-27T11:11:17Z

Having a Cryptoparty in Delhi

"Governments around the world, are greatly increasing their surveillance of the Internet. Alongside a loss of the private sphere, this also represents a clear danger to basic civil liberties. The good news is that we already have the solution: encrypting communications makes it very hard, if not entirely impossible, for others to eavesdrop on our conversations. The bad news is that crypto is largely ignored by the general public, partly because they don't know about it, and partly because even if they do, it seems too much trouble to implement." (Source)

So lets go and have a party, and teach each other how to crypto!

Everyone is invited! Especially do not hesitate to join if you are not using any crypto at all (yet!)

Here is a Flyer / Printout for you to spread the message!

Please add a name on the list here, or RSVP at bernadette@cis-india.org, Thank you!

For more details visit https://cis-india.org/internet-governance/events/cryptoparty-delhi

Deep Packet Inspection: How it Works and its Impact on Privacy

amber — 2016-12-16T23:14:49Z

In the last few years, there has been extensive debate and discussion around network neutrality in India. The online campaign in favor of Network Neutrality was led by Savetheinternet.in in India. The campaign was a spectacular success and facilitated sending over a million emails supporting the cause of network neutrality, eventually leading to ban on differential pricing. Following in the footsteps of the Shreya Singhal judgement, the fact that the issue of net neutrality has managed to attract wide public attention is an encouraging sign for a free and open Internet in India. Since the debate has been focused largely on zero rating, other kinds of network practices impacting network neutrality have yet to be comprehensively explored in the Indian context, nor their impact on other values. In this article, the author focuses on network management, in general, and deep packet inspection, in particular and how it impacts the privacy of users.

Background

In the last few years, there has been extensive debate and discussion around network neutrality in India. The online campaign in favor of Network Neutrality was led by Savetheinternet.in in India. The campaign, captured in detail by an article in Mint, ^{^[1]} was a spectacular success and facilitated sending over a million emails supporting the cause of network neutrality, eventually leading to ban on differential pricing. Following in the footsteps of the Shreya Singhal judgement, the fact that the issue of net neutrality has managed to attract wide public attention is an encouraging sign for a free and open Internet in India. Since the debate has been focused largely on zero rating, other kinds of network practices impacting network neutrality have yet to be comprehensively explored in the Indian context, nor their impact on other values. In this article, I focus on network management, in general, and deep packet inspection, in particular and how it impacts the privacy of users.

The Architecture of the Internet

The Internet exists as a network acting as an intermediary between providers of content and it users. ^{^[2]} Traditionally, the network did not distinguish between those who provided content and those who were recipients of this service, in fact often, the users also functioned as content providers. The architectural design of the Internet mandated that all content be broken down into data packets which were transmitted through nodes in the network transparently from the source machine to the destination machine.^{^[3]} As discussed in detail later, as per the OSI model, the network consists of 7 layers. We will go into each of these layers in detail below, however is important to understand that at the base is the physical layer of cables and wires, while at the top is application layer which contains all the functions that people want to perform on the Internet and the content associated with it. The layers in the middle can be characterised as the protocol layers for the purpose of this discussion. What makes the architecture of the Internet remarkable is that these layers are completely independent of each other, and in most cases, indifferent to the other layers. The protocol layer is what impacts net neutrality. It is this layer which provides the standards for the manner in which the data must flow through the network. The idea was for the it to be as simple and feature free as possible such that it is only concerned with the transmission data as fast as possible ('best efforts principle') while innovations are pushed to the layers above or below it.^{^[4]}

This aspect of the Internet's architectural design, which mandates that network features are implemented as the end points only (destination and source machine), i.e. at the application level, is called the 'end to end principle'.^{^[5]} This means that the intermediate nodes do not differentiate between the data packets in any way based on source, application or any other feature and are only concerned with transmitting data as fast as possible, thus creating what has been described as a 'dumb' or neutral network. ^{^[6]} This feature of the Internet architecture was also considered essential to what Jonathan Zittrain has termed as the 'generative' model of the Internet.^{^[7]} Since, the Internet Protocol remains a simple layer incapable of discrimination of any form, it meant that no additional criteria could be established for what kind of application would access the Internet. Thus, the network remained truly open and ensured that the Internet does not privilege or become the preserve of a class of applications, nor does it differentiate between the different kinds of technologies that comprise the physical layer below.

While the above model speaks of a dumb network not differentiating between the data packets that travel through it, in truth, the network operators engage in various kinds of practices that priorities, throttle or discount certain kinds of data packets. In her thesis essay at the Oxford Internet Institute, Alissa Cooper^{^[8]} states that traffic management involves three different set of criteria- a) Some subsets of traffic needs to be managed, and arriving at a criteria to identify those subsets the criteria can be based on source, destination, application or users, b) Trigger for the traffic management measure which - could be based upon time of the day, usage threshold or a specific network condition, and c) the traffic treatment put into practice when the trigger is met. The traffic treatment can be of three kinds. The first is Blocking, in which traffic is prevented from being delivered. The second is Prioritization under which identified traffic is sent sooner or later. This is usually done in cases of congestion and one kind of traffic needs to be prioritized. The third kind of treatment is Rate limiting where identified traffic is limited to a defined sending rate.^{^[9]} The dumb network does not interfere with an application's operation, nor is it sensitive to the needs of an application, and in this way it treats all information sent over it as equal. In such a network, the content of the packets is not examined, and Internet providers act according to the destination of the data as opposed to any other factor. However, in order to perform traffic management in various circumstances, Deep packet Inspection technology, which does look at the content of data packets is commonly used by service providers.

Deep Packet Inspection

Deep packet inspection (DPI) enables the examination of the content of a data packets being sent over the Internet. Christopher Parsons explains the header and the payload of a data packet with respect to the OSI model. In order to understand this better, it is more useful to speak of network in terms of the seven layers in the OSI model as opposed to the three layers discussed above.^{^[10]}

Under the OSI model, the top layer, the Application Layer is in contact with the software making a data request. For instance, if the activity in question is accessing a webpage, the web-browser makes a request to access a page which is then passed on to the lower layers. The next layer is the Presentation Layer which deals with the format in which the data is presented. This lateral performs encryption and compression of the data. In the above example, this would involve asking for the HTML file. Next comes the Session Layer which initiates, manages and ends communication between the sender and receiver. In the above example, this would involve transmitting and regulating the data of the webpage including its text, images or any other media. These three layers are part of the 'payload' of the data packet.^{^[11]}

The next four layers are part of the 'header' of the data packet. It begins with the Transport Layer which collects data from the Payload and creates a connection between the point of origin and the point of receipt, and assembles the packets in the correct order. In terms of accessing a webpage, this involves connecting the requesting computer system with the server hosting the data, and ensuring the data packets are put together in an arrangement which is cohesive when they are received. The next layer is the Data Link Layer. This layer formats the data packets in such a way that that they are compatible with the medium being used for their transmission. The final layer is the Physical Layer which determines the actual media used for transmitting the packets.^{^[12]}

The transmission of the data packet occurs between the client and server, and packet inspect occurs through some equipment placed between the client and the server. There are various ways in which packet inspection has been classified and the level of depth that the inspection needs to qualify in order to be categorized as Deep Packet Inspection. We rely on Parson's classification system in this article. According to him, there are three broad categories of packet inspection - shallow, medium and deep.^{^[13]}

Shallow packet inspection involves the inspection of the only the header, and usually checking it against a blacklist. The focus in this form of inspection is on the source and destination (IP address and packet;s port number). This form of inspection primarily deals with the Data Link Layer and Network Layer information of the packet. Shallow Packet Inspection is used by firewalls.^{^[14]}

Medium Packet Inspection involves equipment existing between computers running the applications and the ISP or Internet gateways. They use application proxies where the header information is inspected against their loaded parse-list and used to look at a specific flows. These kinds of inspections technologies are used to look for specific kinds of traffic flows and take pre-defined actions upon identifying it. In this case, the header and a small part of the payload is also being examined.^{^[15]}

Finally, Deep Packet Inspection (DPI) enables networks to examine the origin, destination as well the content of data packets (header and payload). These technologies look for protocol non-compliance, spam, harmful code or any specific kinds of data that the network wants to monitor. The feature of the DPI technology that makes it an important subject of study is the different uses it can be put to. The use cases vary from real time analysis of the packets to interception, storage and analysis of contents of a packets.^{^[16]}

The different purposes of DPI

Network Management and QoS

The primary justification for DPI presented is network management, and as a means to guarantee and ensure a certain minimum level of QoS (Quality of Service). Quality of Service (QoS) as a value conflicting with the objectives of Network Neutrality, has emerged as a significant discussion point in this topic. Much like network neutrality, QoS is also a term thrown around in vague, general and non-definitive references. The factors that come into play in QoS are network imposed delay, jitter, bandwidth and reliability. Delay, as the name suggests, is the time taken for a packet to be passed by the sender to the receiver. Higher levels of delay are characterized by more data packets held 'in transit' in the network. ^{^[17]} A paper by Paul Ferguson and Geoff Huston described the TCP as a 'self clocking' protocol.^{^[18]} This enables the transmission rate of the sender to be adjusted as per the rate of reception by the receiver. As the delay and consequent stress on the protocol increases, this feedback ability begins to lose its sensitivity. This becomes most problematic in cases of VoIP and video applications. The idea of QoS generally entails consistent service quality with low delay, low jitter and high reliability through a system of preferential treatment provided to some traffic on a criteria formulated around the need of such traffic to have greater latency sensitivity and low delay and jitter. This is where Deep Packet Inspection comes into play. In 1991, Cisco pioneered the use of a new kind of router that could inspect data packets flowing through the network. DPI is able to look inside the packets and its content, enabling it to classify packets according to a formulated policy. DPI, which was used a security tool, to begin with, is a powerful tool as it allows ISPs to limit or block specific applications or improve performances of applications in telephony, streaming and real-time gaming. Very few scholars believe in an all-or-nothing approach to network neutrality and QoS and debate often comes down to what forms of differentiations are reasonable for service providers to practice. ^{^[19]}

Security

Deep Packet inspection was initially intended as a measure to manage the network and protect it from transmitting malicious programs . As mentioned above, Shallow Packet Inspection was used to secure LANs and keep out certain kinds of unwanted traffic. ^{^[20]} Similarly, DPI is used for identical purposes, where it is felt useful to enhance security and complete a 'deeper' inspection that also examines the payload along with the header information.

Surveillance

The third purpose of DPI is what concerns privacy theorists the most. The fact that DPI technologies enable the network operators to have access to the actual content of the data packets puts them a position of great power as well as making them susceptible to significant pressure from the state. ^{^[21]} For instance, in US, the ISPs are required to conform to the provisions of the Communications Assistance for Law Enforcement Act (CALEA) which means they need to have some surveillance capacities designed into their systems. What is more disturbing for privacy theorists compared to the use of DPI for surveillance under legislation like CALEA, are the other alleged uses by organisation like the National Security Agency through back end access to the information via the ISPs. Aside from the US government, there have been various reports of use of DPI by governments in countries like China,^{^[22]} Malaysia^{^[23]} and Singapore. ^{^[24]}

Behavioral targeting

DPI also enables very granular tracking of the online activities of Internet users. This information is invaluable for the purposes of behavioral targeting of content and advertising. Traditionally, this has been done through cookies and other tracking software. DPI allows new way to do this, so far exercised only through web-based tools to ISPs and their advertising partners. DPI will enable the ISPs to monitor contents of data packets and use this to create profiles of users which can later be employed for purposes such as targeted advertising. ^{^[25]}

Impact on Privacy

Each of the above use-cases has significant implications for the privacy of Internet users as the technology in question involves access, tracking or retention of their online communication and usage activity.

Alyssa Cooper compares DPI with other technologies carrying out content inspection such as caching services and individual users employing firewalls or packet sniffers. She argues that one of the most distinguishing feature of DPI is the potential for "mission-creep." ^{^[26]} Kevin Werbach writes that while networks may deploy DPI for implementation under CALEA or traffic peer-to-peer shaping, once deployed DPI techniques can be used for completely different purposes such as pattern matching of intercepted content and storage of raw data or conclusions drawn from the data.^{^[27]} This scope of mission creep is even more problematic as it is completely invisible. As opposed to other technologies which rely on cookies or other web-based services, the inspection occurs not at the end points, but somewhere in the middle of the network, often without leaving any traces on the user's system, thus rendering them virtually undiscoverable.

Much like other forms of surveillance, DPI threatens the sense that the web is a space where people can engage freely with a wide range of people and services. For such a space to continue to exist, it is important for people to feel secure about their communication and transaction on medium. This notion of trust is severely harmed by a sense that users are being surveilled and their communication intercepted. This has obvious chilling effect on free speech and could also impact electronic commerce.^{^[28]}

Allyssa Cooper also points out another way in which DPI differs from other content tracking technologies. As the DPI is deployed by the ISPs, it creates a greater barrier to opting out and choosing another service. There are only limited options available to individuals as far as ISPs are concerned. Christopher Parsons does a review of ISPs using DPI technology in UK, US and Canada and offers that various ISPs do provide in their terms of services that they use DPI for network management purposes. However, this information is often not as easily accessible as the terms and conditions of online services. A;so, As opposed to online services, where it is relatively easier to migrate to another service, due to both presence of more options and the ease of migration, it is a much longer and more difficult process to change one's ISP.^{^[29]}

Measures to mitigate risk

Currently, there are no existing regulatory frameworks in India which deal govern DPI technology in any way. The International Telecommunications Union (ITU) prescribes a standard for DPI^{^[30]} however, the standard does not engage with any questions of privacy and requires all DPI technologies to be capable of identifying payload data, and prescribing classification rules for specific applications, thus, conflicting with notions of application agnosticism in network management. More importantly, the requirements to identify, decrypt and analyse tunneled and encrypted data threaten the reasonable expectation of privacy when sending and receiving encrypted communication. In this final section, I look at some possible principles and practices that may be evolved in order to mitigate privacy risks caused due to DPI technology.

Limiting 'depth' and breadth

It has been argued that inherently what DPI technology intends to do is matching of patterns in the inspected content against a pre-defined list which is relevant to the purpose how which DPI is employed. Much like data minimization principles applicable to data controllers and data processors, it is possible for network operators to minimize the depth of the inspection (restrict it to header information only or limited payload information) so as to serve the purpose at hand. For instance, in cases where the ISP is looking to identify peer-to-peer traffic, there are protocols which declare their names in the application header itself. Similarly, a network operators looking to generate usage data about email traffic can do so simply by looking at port number and checking them against common email ports.^{^[31]} However, this mitigation strategy may not work well for other use-cases such as blocking malicious software or prohibited content or monitoring for the sake of behavioral advertising.

While depth referred to the degree of inspection within data packets, breadth refers to the volume of packets being inspected. Alyssa Cooper argues that for many DPI use cases, it may be possible to rely on pattern matching on only the first few data packets in a flow, in order to arrive at sufficient data to take appropriate response. Cooper uses the same example about peer-to-peer traffic. In some cases, the protocol name may appear on the header file of only the first packet of a flow between two peers. In such circumstances, the network operators need not look beyond the header files of the first packet in a flow, and can apply the network management rule to the entire flow.^{^[32]}

Data retention

Aside from the depth and breadth of inspection, another important question whether and for along is there a need for data retention. All use cases may not require any kind of data retention and even in case where DPI is used for behavioral advertising, only the conclusions drawn may be retained instead of retaining the payload data.

Transparency

One of the issues is that DPI technology is developed and deployed outside the purview of standard organizations like ISO. Hence, there has been a lack of open, transparent standards development process in which participants have deliberated the impact of the technology. It is important for DPI to undergo these process which are inclusive, in that there is participation by non-engineering stakeholders to highlight the public policy issues such as privacy. Further, aside from the technology, the practices by networks need to be more transparent. ^{^[33]} Disclosure of the presence of DPI, the level of detail being inspected or retained and the purpose for deployment of DPI can be done. Some ISPs provide some of these details in their terms of service and website notices. ^{^[34]} However, as opposed to web-based services, users have limited interaction with their ISP. It would be useful for ISPs to enable greater engagement with their users and make their practices more transparent.

Conclusion

The very nature of of the DPI technology renders some aspects of recognized privacy principles like notice and consent obsolete. The current privacy frameworks under FIPP^{^[35]} and OECD ^{^[36]} rely on the idea of empowering the individual by providing them with knowledge and this knowledge enables them to make informed choices. However, for this liberal conception of privacy to function meaningfully, it is necessary that there are real and genuine choices presented to the alternatives. While some principles like data minimisation, necessity and proportionality and purpose limitation can be instrumental in ensuring that DPI technology is used only for legitimate purposes, however, without effective opt-out mechanisms and limited capacity of individual to assess the risks, the efficacy of privacy principles may be far from satisfactory.

The ongoing Aadhaar case and a host of surveillance projects like CMS, NATGRID, NETRA^{^[37]} and NMAC ^{^[38]} have raised concerns about the state conducting mass-surveillance, particularly of online content. In this regard, it is all the more important to recognise the potential of Deep Packet Inspection technologies for impact on privacy rights of individuals. Earlier, the Centre for Internet and Society had filed Right to Information applications with the Department of Telecommunications, Government of India regarding the use of DPI, and the government had responded that there was no direction/reference to the ISPs to employ DPI technology. ^{^[39]} Similarly, MTNL also responded to the RTI Applications and denied using the technology.^{^[40]} It is notable though, that they did not respond to the questions about the traffic management policies they follow. Thus, so far there has been little clarity on actual usage of DPI technology by the ISPs.

^{^[1]} Ashish Mishra, "India's Net Neutrality Crusaders", available at http://mintonsunday.livemint.com/news/indias-net-neutrality-crusaders/2.3.2289565628.html

^{^[2]} http://www.livinginternet.com/i/iw_arch.htm

^{^[3]} Vinton Cerf and Robert Kahn, "A protocol for packet network intercommunication", available at https://www.semanticscholar.org/paper/A-protocol-for-packet-network-intercommunication-Cerf-Kahn/7b2fdcdfeb5ad8a4adf688eb02ce18b2c38fed7a

^{^[4]} Paul Ganley and Ben Algove, "Network Neutrality-A User's Guide", available at http://wiki.commres.org/pds/NetworkNeutrality/NetNeutrality.pdf

^{^[5]} J H Saltzer, D D Clark and D P Reed, "End-to-End arguments in System Design", available at http://web.mit.edu/Saltzer/www/publications/endtoend/endtoend.pdf

^{^[6]} Supra Note 4.

^{^[7]} Jonathan Zittrain, The future of Internet - and how to stop it, (Yale University Press and Penguin UK, 2008) available at https://dash.harvard.edu/bitstream/handle/1/4455262/Zittrain_Future%20of%20the%20Internet.pdf?sequence=1

^{^[8]} Alissa Cooper, How Regulation and Competition Influence Discrimination in Broadband Traffic Management: A Comparative Study of Net Neutrality in the United States and the United Kingdom available at http://ora.ox.ac.uk/objects/uuid:757d85af-ec4d-4d8a-86ab-4dec86dab568

^{^[9]} Id .

^{^[10]} Christopher Parsons, "The Politics of Deep Packet Inspection: What Drives Surveillance by Internet Service Providers?", available at https://www.christopher-parsons.com/the-politics-of-deep-packet-inspection-what-drives-surveillance-by-internet-service-providers/ at 15.

^{^[11]} Ibid at 16.

^{^[12]} Id .

^{^[13]} Ibid at 19.

^{^[14]} Id .

^{^[15]} Id .

^{^[16]} Jay Klein, "Digging Deeper Into Deep Packet Inspection (DPI)", available at http://spi.unob.cz/papers/2007/2007-06.pdf

^{^[17]} Tim Wu, "Network Neutrality: Broadband Discrimination", available at http://papers.ssrn.com/sol3/papers.cfm?abstract_id=388863

^{^[18]} Paul Ferguson and Geoff Huston, "Quality of Service on the Internet: Fact, Fiction,

or Compromise?", available at http://www.potaroo.net/papers/1998-6-qos/qos.pdf

^{^[19]} Barbara van Schewick, "Network Neutrality and Quality of Service: What a non-discrimination Rule should look like", available at http://cyberlaw.stanford.edu/downloads/20120611-NetworkNeutrality.pdf

^{^[20]} Supra Note 14.

^{^[21]} Paul Ohm, "The Rise and Fall of Invasive ISP Surveillance," available at http://paulohm.com/classes/infopriv10/files/ExcerptOhmISPSurveillance.pdf

^{^[22]} Ben Elgin and Bruce Einhorn, "The great firewall of China", available at http://www.bloomberg.com/news/articles/2006-01-22/the-great-firewall-of-china .

^{^[23]} Mike Wheatley, "Malaysia's Web Heavily Censored Before Controversial Elections", available at http://siliconangle.com/blog/2013/05/06/malaysias-web-heavily-censored-before-controversial-elections/

^{^[24]} Fazal Majid, "Deep packet inspection rears it ugly head" available at https://majid.info/blog/telco-snooping/.

^{^[25]} Alissa Cooper, "Doing the DPI Dance: Assessing the Privacy Impact of Deep Packet Inspection," in W. Aspray and P. Doty (Eds.), Privacy in America: Interdisciplinary Perspectives, Plymouth, UK: Scarecrow Press, 2011 at 151.

^{^[26]} Ibid at 148.

^{^[27]} Kevin Werbach, "Breaking the Ice: Rethinking Telecommunications Law for the Digital Age", Journal of Telecommunications and High Technology, available at http://www.jthtl.org/articles.php?volume=4

^{^[28]} Supra Note 25 at 149.

^{^[29]} Supra Note 25 at 147.

^{^[30]} International Telecommunications Union, Recommendation ITU-T.Y.2770, Requirements for Deep Packet Inspection in next generation networks, available at https://www.itu.int/rec/T-REC-Y.2770-201211-I/en.

^{^[31]} Supra Note 25 at 154.

^{^[32]} Ibid at 156.

^{^[33]} Supra Note 10.

^{^[34]} Paul Ohm, "The Rise and Fall of Invasive ISP Surveillance", available at http://paulohm.com/classes/infopriv10/files/ExcerptOhmISPSurveillance.pdf .

^{^[35]} http://www.nist.gov/nstic/NSTIC-FIPPs.pdf

^{^[36]} https://www.oecd.org/sti/ieconomy/oecdguidelinesontheprotectionofprivacyandtransborderflowsofpersonaldata.htm

^{^[37]} "India's Surveillance State" Software Freedom Law Centre, available at http://sflc.in/indias-surveillance-state-our-report-on-communications-surveillance-in-india/

^{^[38]} Amber Sinha, "Are we losing our right to privacy and freedom on speech on Indian Internet", DNA, available at http://www.dnaindia.com/scitech/column-are-we-losing-the-right-to-privacy-and-freedom-of-speech-on-indian-internet-2187527

^{^[39]} http://cis-india.org/telecom/use-of-dpi-technology-by-isps.pdf

^{^[40]} Smita Mujumdar, "Use of DPI Technology by ISPs - Response by the Department of Telecommunications" available at http://cis-india.org/telecom/dot-response-to-rti-on-use-of-dpi-technology-by-isps

For more details visit https://cis-india.org/internet-governance/blog/deep-packet-inspection-how-it-works-and-its-impact-on-privacy

Decrypting Automated Facial Recognition Systems (AFRS) and Delineating Related Privacy Concerns

Arindrajit Basu, Siddharth Sonkar — 2020-01-02T14:01:48Z

Arindrajit Basu and Siddharth Sonkar have co-written this blog as the first of their three-part blog series on AI Policy Exchange under the parent title: Is there a Reasonable Expectation of Privacy from Data Aggregation by Automated Facial Recognition Systems?

The use of aggregated Big Data by governments has the potential to exacerbate power asymmetries and erode civil liberties like few technologies of the past. In order to guard against the aggressive aggregation and manipulation of the data generated by individuals who are branded as suspect, it is critical that our firmly established constitutional rights protect human dignity in the face of this potential erosion.

The increasing ubiquity of Automated Facial Recognition Systems (AFRS) serve as a prime example of the rising desire of governments to push fundamental rights to the brink. With AFRS, the core fundamental right in question is privacy, although questions have been posed regarding the potential violation of other related rights, such as the Right to Equality and the Right to Free Speech and Expression, as well.

There is a rich corpus of literature, (see here, here and an excellent recent paper by Smriti Parsheera here) from a diverse coterie of scholars that call out the challenges posed by AFRS, particularly with respect to its proportionality as a restriction over the right to privacy. Our contribution to this discourse focuses on a very specific question around a ‘reasonable expectation of privacy’ — the standard identified for the protection of privacy in public spaces across jurisdictions, including in India. This is because at this juncture, the precise nature of the AFRS which will eventually be used and the regulations it will be subject to are not clear.

In Retd. K.S Puttaswamy (Retd.) v. Union of India: Justice Chandrachud (Puttaswamy I), the Indian Supreme Court was concerned with the question whether there exists a fundamental right to privacy under the Indian Constitution. A nine-judge bench of the Court recognized that the right to privacy is a fundamental right implicit inter alia in the right to life within Article 21 of the Constitution.

The right to privacy protects people and not places. Every person is entitled, however, to a reasonable expectation of privacy. The expectation of privacy must be twofold. First, the person must prove that the alleged act could inflict some harm. Such harm must be real and not be speculative or imaginary. Second, society must recognize this expectation as reasonable. The test of reasonable expectations is contextual, i.e., the extent to which it safeguards privacy depends on the place at which the individual is.

In order to pass any constitutional test, therefore, AFRS must satisfy the ‘reasonable expectation’ test articulated in Puttaswamy. However, in this context, the test itself has multiple contours. Do we have a right to privacy in a public place? Is AFRS collecting any data that specifically violates a right to privacy? Is the aggregation of that data a potential violation?

After providing a brief introduction to the use cases of AFRS in India and across the world, we embark upon answering all these questions.

Primer on Automated Facial Recognition Systems (AFRS)

Facial recognition is a biometric technology that utilises cameras to match stored or live footage of individuals (including both stills and moving footage) with images or video from an existing database. Some systems might also be used to analyze broader demographic trends or conduct sentiment analysis through crowd scanning.

While the use of photographs and video footage have been core components of police investigation, the use of algorithms to process vast tracts of Big Data (characterized by ‘Volume, Velocity, and Variety), and compare disparate and discrete data points allows for the derivation of hitherto unfeasible insights on the subjects of Big Data.

The utilisation of AFRS for law enforcement is rapidly spreading around the world. A Global AI Surveillance Index compiled by the Carnegie Endowment for International Peace found that at least sixty-four countries are incorporating facial recognition systems into their AI surveillance programs.

Chinese technology company Yitu has entered into a partnership with security forces in Malaysia to equip police officers with facial recognition body cameras that, powered by enabling technologies, would allow a comparison of images caught by the live body cameras with images from several central databases.

In England and Wales, London Metropolitan Police, South Wales Police, and Leicestershire Police are all in the process of developing technologies that allow for the identification and comparison of live images with those stored in a database.

The technology is being developed by Japanese firm NEC and the police force has limited ability to oversee or modify the software, given its proprietary nature. The Deputy Chief of South Wales Police stated that “the tech is given to [them] as a sealed box… [and the police force themselves] have no input – whatever it does, it does what it does.”

In the US, Baltimore’s police set up facial recognition cameras to track and arrest protestors — a system that reached its zenith during the 2018 riots in the city.

It is suspected that authorities in Hong Kong are also using AFRS to clamp down on the ongoing pro-democracy protests.

In India, the Ministry of Home Affairs, through the National Crime Records Bureau put out a tender for a new AFRS, whose stated objective is to “act as a foundation for national level searchable platform of facial images.” The AFRS will pull facial image data from CCTV feeds and compare these with existing records across databases including the Crime and Criminal Tracking Networks and Systems (CCTNS), Inter-operable Criminal Justice System (or ICJS), Immigration Visa Foreigner Registration Tracking (IVFRT), Passport, Prisons and state police records.

Plans are also afoot to integrate this with the yet to be deployed National Automated Fingerprint Identification System (NAFIS), thereby creating a multi-faceted surveillance system.

Despite raising eyeballs due to its potential all-pervasive scope, this tender is not the first instance of AFRS being used by Indian authorities. Punjab Police, in partnership with Gurugram-based start-up Staqu has launched and commenced implementation of the Punjab Artificial Intelligence System (PAIS) which uses digitised criminal records and automated facial recognition to retrieve information on a suspected criminal and essentially tracks their public whereabouts, which poses potential constitutional questions.

This was published by AI Policy Exchange.

For more details visit https://cis-india.org/internet-governance/decrypting-automated-facial-recognition-systems-afrs-and-delineating-related-privacy-concerns

Decline in web freedom steepest in India: Report

praskrishna — 2013-10-24T03:50:51Z

In a report on the state of internet in 60 countries, Freedom House, a US-based organization, said that in 2013 India saw the "most significant year-on-year decline" in terms of the web freedom.

The article by Javed Anwer was published in the Times of India on October 3, 2013. Sunil Abraham is quoted.

The report said that that the internet in India was "partly free". This is the same status that India had in 2012. But the country's score is now 47 points (higher means more censorship) in 2013 compared to 39 in 2012. The 8-point fall is the steepest Freedom House found among all 60 countries that the group surveyed. Freedom House said it recorded 5-point fall in Brazil, Venezuela and the US.

Despite mass surveillance revealed by Edward Snowden, a former contractor for National Security Agency in the US, Freedom House calls the web in the country "free".

The Freedom House report said that in 2013 India "suffered from deliberate interruptions of mobile and internet service to limit unrest, excessive blocks on content during rioting in northeastern states, and an uptick in the filing of criminal charges against ordinary users for posts of social media sites".

In 2013, India's commitment to the web freedom has not only been worse than developed countries but has also been inferior to countries like Malawi, Tunisia and Mexico.

In the case of India, Freedom House particularly singles out Central Monitoring System, which Indian government is putting in place to regulate and monitor the web usage within the country. "Surveillance (under CMS) requires no judicial oversight. While some of this activity might be justifiable, the lack of transparency surrounding the system, which was never reviewed by Parliament, is concerning," it notes in the report. "The system's potential for abuse is also disquieting, as is its inadequate legal framework.

The report cites the case of the girl who was arrested for liking a Facebook post in Maharashtra, blocking of some Twitter accounts belonging to Indian users, overly broad court directives that have resulted in blocking of websites and a general lack of transparency in how Indian government blocks or filters content reach a conclusion that Indians now have less freedom on how they use the web.

Sunil Abraham, director at Bangalore-based Centre for Internet and Society, says that Freedom House reports are not very accurate because they don't factor in censorship by copyright holders. But he agreed with its basic premise that in India conditions for web users are getting more difficult.

"The report is absolutely right in pointing out that censorship and surveillance in India is increasing. Despite protests from many quarters, it is a real pity that the government is not taking steps to amend the IT act and has joined other nation states in the global race to the bottom of the internet freedom," said Abraham.

Anja Kovacs, founder of Delhi-based Internet Democracy Project, agrees. "I have some issues with Freedom House reports due to how they are prepared and their methodologies. But yes I can say that last year has been very eventful and difficult," said. "But at the same time, there has also been a lot of push back from web users and activists. There have been conversations around the issue of web censorship, which is good."

Globally, the web surveillance is on the rise. "Broad surveillance, new laws controlling web content, and growing arrests of social-media users drove a worldwide decline in internet freedom in the past year," noted Freedom House.

Overall, 34 out of 60 countries part of the report saw a decline in the web freedom. "Vietnam and Ethiopia continued on a worsening cycle of repression; Venezuela stepped up censorship during presidential elections; and three democracies—India, the United States, and Brazil—saw troubling declines," noted the report.

Iceland and Estonia topped the list of countries with the greatest degree of internet freedom. China, Cuba, and Iran were found to be the most repressive countries.

For more details visit https://cis-india.org/news/times-of-india-october-3-2013-javed-anwer-decline-in-web-freedom-steepest-in-india

December 2018 Newsletter

praskrishna — 2019-01-08T16:15:38Z

We at the Centre for Internet & Society (CIS) wish you all a great year ahead and welcome you to the twelfth issue of its newsletter (December) for the year 2018:

Highlights

CIS signed a MoU with Odia Virtual Academy to work on drafting an open content policy for the state, to promote use of Wikimedia projects by various user types and to ensure sustainability of Wikimedia projects, and to facilitate development of relevant free and open source software projects. This partnership between OVA and CIS will be carried out from December 2018 to November 2019.
Natalia Khaniejo, in a four-part report has attempted to document the various approaches that are being adopted by different stakeholders towards incentivizing cybersecurity and the economic challenges of implementing the same. The literature review was edited by Amber Sinha.
Arindrajit Basu, Karan Saini, Aayush Rathi and Swaraj Barooah created an infographic which has mapped the key stakeholder, areas of focus and threat vectors that impact cybersecurity policy in India. The authors have stated that broadly policy-makers should concentrate on establishing a framework where individuals feel secure and trust the growing digital ecosystem.
In April 2018 European Union issued the proposal for a new regime dealing with cross border sharing of data and information by issuing two draft instruments, an E-evidence Regulation (“Regulation”) and an E-evidence Directive (“Directive”), (together the “E-evidence Proposal”). Vipul Kharbanda has analysed how service providers based in India whose services are also available in Europe would be affected by these proposals.
Feminist research methodology is a vast body of knowledge, spanning across multiple disciplines including sociology, media studies, and critical legal studies. A literature review by Ambika Tandon aims to understand key aspects of feminist methodology across these disciplines, with a particular focus on research on technology and its interaction with society.
CIS and design collective Design Beku came together for a workshop on Illustrations and Visual Representations of Cybersecurity. The authors Paromita Bathija, Padmini Ray Murray, and Saumyaa Naidu have stated that images play a vital role in the public’s perception of cybercrime and cybersecurity.
A list of selected sessions and papers for the Internet Researchers' Conference 2019 (IRC19) has been published. IRC19 will be held in Lamakaan, Hyderabad, from Jan 30 to Feb 1, 2019.

Articles

Private-public partnership for cyber security (Arindrajit Basu; Hindu Businessline; December 24, 2018).
Is the new ‘interception’ order old wine in a new bottle? (Elonnai Hickok, Vipul Kharbanda, Shweta Mohandas and Pranav M. Bidare; Newslaundry.com; December 27, 2018).
Digital Native: System Needs a Reboot (Nishant Shah; Indian Express; December 30, 2018).

Media Coverage

Many sites bypass porn ban (Rajitha Menon; Deccan Herald; December 6, 2018).
How data privacy and governance issues have battered Facebook ahead of 2019 polls (Rahul Sachitanand; Economic Times; December 6, 2018).
Is Aadhaar Essential To Achieve Error-Free Electoral Rolls? (Bloomberg Quint; December 16, 2018).
Centre’s order on computer surveillance threatens right to privacy, experts say (Abhishek Dey; Scroll.in; December 22, 2018).
Centre’s order on computer surveillance is backed by law – but the law lacks adequate safeguards (Nehaa Chaudhari and Tuhina Joshi; Scroll.in; December 23, 2018).
Ten Indian government agencies can now snoop on people’s internet data (David Spenser; VPN Compare; December 24, 2018).
Big Brother is here: Amid snooping row, govt report says monitoring system 'practically complete' (Keerthana Sankaran; New Indian Express; December 26, 2018).
MHA snoop order & bid to amend IT rules: China-like clampdown or tracking unlawful content? (Fatima Khan; The Print December 28, 2018).
The dark side of future tech: Where are we headed on privacy, security, truth? (Dipanjan Sinha; Hindustan Times; December 29, 2018).
The constitutionality of MHA surveillance order (Nehaa Chaudhari; Asian Age; December 30, 2018).

Access to Knowledge

Our Access to Knowledge programme currently consists of two projects. The Pervasive Technologies project, conducted under a grant from the International Development Research Centre (IDRC), aims to conduct research on the complex interplay between low-cost pervasive technologies and intellectual property, in order to encourage the proliferation and development of such technologies as a social good. The Wikipedia project, which is under a grant from the Wikimedia Foundation, is for the growth of Indic language communities and projects by designing community collaborations and partnerships that recruit and cultivate new editors and explore innovative approaches to building projects.

Wikipedia

As part of the project grant from the Wikimedia Foundation we have reached out to more than 3500 people across India by organizing more than 100 outreach events and catalysed the release of encyclopaedic and other content under the Creative Commons (CC-BY-3.0) license in four Indian languages (21 books in Telugu, 13 in Odia, 4 volumes of encyclopaedia in Konkani and 6 volumes in Kannada, and 1 book on Odia language history in English).

Blog Entries

Punjabi Wikisource Training Workshop, Patiala (Jayanta Nath; December 6, 2018).
Indic Wikisource Community Consultation 2018 (Jayanta Nath; December 8, 2019).
CIS Signs MoU with Odia Virtual Academy (Sailesh Patnaik; December 19, 2018).

Openness

Our work in the Openness programme focuses on open data, especially open government data, open access, open education resources, open knowledge in Indic languages, open media, and open technologies and standards - hardware and software. We approach openness as a cross-cutting principle for knowledge production and distribution, and not as a thing-in-itself.

Guest Lecture

Lecture on Open Access and Open Content Licensing at ICAR (short course) (Organized by ICAR-Indian Institute of Horticultural Research (IIHR) a constituent establishment of Indian Council of Agricultural Research; November 13 - 22, 2018). Anubha Sinha delivered a lecture.

Internet Governance

As part of its research on privacy and free speech, CIS is engaged with two different projects. The first one (under a grant from Privacy International and IDRC) is on surveillance and freedom of expression (SAFEGUARDS). The second one (under a grant from MacArthur Foundation) is on restrictions that the Indian government has placed on freedom of expression online.

Privacy

Guest Lecture

Teaching at Shristi Interlude (Organised by Shristi; Bangalore; December 7, 2018). Shweta Mohandas participated as a mentor.

Gender

Research Paper

Feminist Methodology in Technology Research: A Literature Review (Ambika Tandon with contributions from Mukta Joshi; research assistance by by Kumarjeet Ray and Navya Sharma; design by Saumyaa Naidu; December 23, 2018).

Blog Entry

Event Report on Intermediary Liability and Gender Based Violence (Akriti Bopanna; edited by Ambika Tandon; December 20, 2018).

Participation in Event

International Network on Feminist Approaches to Bioethics 2018 (Co-organized by Feminist Approaches to Bioethics and Sama; St. John's Medical College; Bangalore; December 3 - 5, 2018). Aayush Rathi and Ambika Tandon were speakers at the event.

Cyber Security

Research Papers

European E-Evidence Proposal and Indian Law (Vipul Kharbanda; December 23, 2018).
Economics of Cybersecurity: Literature Review Compendium (Natalia Khaniejo; edited by Amber Sinha; December 31, 2018).

Infographic

Mapping cybersecurity in India: An infographic (information contributed by Arindrajit Basu, Karan Saini, Aayush Rathi and Swaraj Barooah; designed by Saumyaa Naidu; December 23, 2018).

Blog Entry

A Critical Look at the Visual Representation of Cybersecurity (Paromita Bathija, Padmini Ray Murray, and Saumyaa Naidu; December 11, 2018).

Participation in Event

India-China Tech Forum 2018 (Organised by ORF and Peking University at the Ji Xianlin Centre for India-China Studies; Mumbai; December 11 - 12, 2018). Arindrajit Basu was a speaker.

Artificial Intelligence

Participation in Event

Future Tech and Future Law (Organised by Dept. of IT & BT, Government of Karnataka; Palace Grounds; Bangalore; November 29 - December 1, 2018). Arindrajit Basu was a speaker.
AI for Social Good Summit (Co-organised by Google AI and United Nations ESCAP; Bangkok; December 13, 2018).

Researchers at Work

The Researchers at Work (RAW) programme is an interdisciplinary research initiative driven by an emerging need to understand the reconfigurations of social practices and structures through the Internet and digital media technologies, and vice versa. It aims to produce local and contextual accounts of interactions, negotiations, and resolutions between the Internet, and socio-material and geo-political processes:

Selected Papers

Internet Researchers' Conference 2019 (IRC19): #List - Selected Sessions and Papers (P.P. Sneha; January 2, 2019).

-----------------------------------
About CIS
-----------------------------------
The Centre for Internet and Society (CIS) is a non-profit organisation that undertakes interdisciplinary research on internet and digital technologies from policy and academic perspectives. The areas of focus include digital accessibility for persons with disabilities, access to knowledge, intellectual property rights, openness (including open data, free and open source software, open standards, open access, open educational resources, and open video), internet governance, telecommunication reform, digital privacy, and cyber-security. The academic research at CIS seeks to understand the reconfigurations of social and cultural processes and structures as mediated through the internet and digital media technologies.

► Follow us elsewhere

Twitter: http://twitter.com/cis_india
Twitter - Access to Knowledge: https://twitter.com/CISA2K
Twitter - Information Policy: https://twitter.com/CIS_InfoPolicy
Facebook - Access to Knowledge: https://www.facebook.com/cisa2k
E-Mail - Access to Knowledge: a2k@cis-india.org
E-Mail - Researchers at Work: raw@cis-india.org
List - Researchers at Work: https://lists.ghserv.net/mailman/listinfo/researchers

► Support Us

Please help us defend consumer and citizen rights on the Internet! Write a cheque in favour of 'The Centre for Internet and Society' and mail it to us at No. 194, 2nd 'C' Cross, Domlur, 2nd Stage, Bengaluru - 5600 71.

► Request for Collaboration

We invite researchers, practitioners, artists, and theoreticians, both organisationally and as individuals, to engage with us on topics related internet and society, and improve our collective understanding of this field. To discuss such possibilities, please write to Sunil Abraham, Executive Director, at sunil@cis-india.org (for policy research), or Sumandro Chattapadhyay, Research Director, at sumandro@cis-india.org (for academic research), with an indication of the form and the content of the collaboration you might be interested in. To discuss collaborations on Indic language Wikipedia projects, write to Tanveer Hasan, Programme Officer, at tanveer@cis-india.org.

CIS is grateful to its primary donor the Kusuma Trust founded by Anurag Dikshit and Soma Pujari, philanthropists of Indian origin for its core funding and support for most of its projects. CIS is also grateful to its other donors, Wikimedia Foundation, Ford Foundation, Privacy International, UK, Hans Foundation, MacArthur Foundation, and IDRC for funding its various projects.

For more details visit https://cis-india.org/about/newsletters/december-2018-newsletter

December 2017 Newsletter

praskrishna — 2018-03-17T11:12:26Z

Dear readers,

Previous issues of the newsletters can be accessed here.

Highlights
Shruthi Anand wrote a report that seeks to map the development of Artificial Intelligence both generally and in specific sectors culminating in a stakeholder analysis and contributions to policy making. CIS made a submission to the Department of Industrial Planning and Promotion on December 7, 2017. CIS also offered its assistance on other matters aimed at developing a suitable policy framework for SEPs and FRAND in India, and, working towards sustained innovation, manufacture and availability of mobile technologies in India. The Office of the Controller General of Patents, Designs and Trademarks held a meeting with IP stakeholders on December 7, 2017, chaired by the Secretary, DIPP, to take suggestions on improving procedures and functioning of the Office. Anubha Sinha attended the meeting and requested the DIPP to improve compliance of uploading Form 27s by patentees and ensure proper enforcement of related provisions within the Indian Patent Act, 1970. A Kannada Wikipedia orientation workshop was held at the Entrepreneurship Centre, SID, Indian Institute of Science, Bengaluru on 26 November, 2017. The day long event was aimed at adding content to Kannada Wikimedia projects on topics such as ecology, environment, wildlife and sciences of Karnataka. Shyam Ponappa wrote an article on the tragedy of commons in the Business Standard on December 6, 2017. Just like porn is not real life, all news is not real news. It’s time, therefore, to come of age in the 18th year of this century, wrote Nishant Shah in an article in the Indian Express on December 31, 2017.

Highlights

Shruthi Anand wrote a report that seeks to map the development of Artificial Intelligence both generally and in specific sectors culminating in a stakeholder analysis and contributions to policy making.
CIS made a submission to the Department of Industrial Planning and Promotion on December 7, 2017. CIS also offered its assistance on other matters aimed at developing a suitable policy framework for SEPs and FRAND in India, and, working towards sustained innovation, manufacture and availability of mobile technologies in India.
The Office of the Controller General of Patents, Designs and Trademarks held a meeting with IP stakeholders on December 7, 2017, chaired by the Secretary, DIPP, to take suggestions on improving procedures and functioning of the Office. Anubha Sinha attended the meeting and requested the DIPP to improve compliance of uploading Form 27s by patentees and ensure proper enforcement of related provisions within the Indian Patent Act, 1970.
A Kannada Wikipedia orientation workshop was held at the Entrepreneurship Centre, SID, Indian Institute of Science, Bengaluru on 26 November, 2017. The day long event was aimed at adding content to Kannada Wikimedia projects on topics such as ecology, environment, wildlife and sciences of Karnataka.
Shyam Ponappa wrote an article on the tragedy of commons in the Business Standard on December 6, 2017.
Just like porn is not real life, all news is not real news. It’s time, therefore, to come of age in the 18th year of this century, wrote Nishant Shah in an article in the Indian Express on December 31, 2017.

CIS wrote the following articles:

New Recommendations to Regulate Online Hate Speech Could Pose More Problems Than Solutions (Amber Sinha; Wire; October 14, 2017). This was published in the month of December on the CIS website.
Breeding misinformation in virtual space (Amber Sinha; Asian Age; December 3, 2017).
India’s Data Protection Regime Must Be Built Through an Inclusive and Truly Co-Regulatory Approach (Amber Sinha; Wire; December 1, 2017).
Digital native: Memory card is full (Nishant Shah; Indian Express; December 3, 2017).
Should Aadhaar be mandatory? (Amber Sinha; Deccan Herald; December 9, 2017).
Digital native: The age of consent (Nishant Shah; Indian Express; December 31, 2017).

CIS in the News:

Aadhaar linking deadline approaches: Here are all the myths and facts (Business Today; December 7, 2017).
Checks and balances needed for mass surveillance of citizens, say experts (Hindu; December 9, 2017).
Masking personal data to protect privacy crucial for India, say experts (Deepti Govind; Livemint; December 11, 2017).
Paranoid about state surveillance? Here’s the FD Guide to living in the age of snoops (Sriram Sharma; Factor Daily; December 12, 2017).
Deadline For Linking Bank Accounts With Aadhaar To Be Extended To 31 March (Komal Gupta and Ramya Nair; Livemint; December 14, 2017).

-----------------------------------
Access to Knowledge
-----------------------------------
Our Access to Knowledge programme currently consists of two projects. The Pervasive Technologies project, conducted under a grant from the International Development Research Centre (IDRC), aims to conduct research on the complex interplay between low-cost pervasive technologies and intellectual property, in order to encourage the proliferation and development of such technologies as a social good. The Wikipedia project, which is under a grant from the Wikimedia Foundation, is for the growth of Indic language communities and projects by designing community collaborations and partnerships that recruit and cultivate new editors and explore innovative approaches to building projects.

►Copyright & Patent

Submission

Submission to DIPP at Meeting with IP Stakeholders (Anubha Sinha; December 12, 2017).
CIS' Submission to DIPP and CGPDTM at meeting with IP Stakeholders (Anubha Sinha; December 13, 2017).

►Openness

►Wikipedia

Blog Entries

Christ University Wikipedia Education Program Internship (Manasa Rao; December 11, 2017).
Wikipedia Orientation Program at Rotary Club of Salem (Manasa Rao; December 11, 2017).
Nichole Saad from the Wikimedia Foundation visits Christ University (Manasa Rao; December 17, 2017).
Kannada Wikipedia Orientation Workshop at IISc, Bengaluru (A. Gopalakrishna; December 19, 2017).
Wikimedia Technical Workshop at Savitribai Phule Pune University (Manasa Rao; December 19, 2017).
Marathi Wikipedia workshop for Sandarbh Science magazine writers (Manasa Rao; December 19, 2017).
Marathi Wikipedia - Vishwakosh Workshop for Science writers in IUCAA, Pune (Manasa Rao; December 20, 2017).

-----------------------------------

Internet Governance
-----------------------------------

►Free Speech & Expression

Blog Entries

It Hurts Them Too (Mir Farhat; December 19, 2017).
Internet Shutdowns: A Modern-day Siege (Ayswarya Murthy; December 19, 2017).
Days to Derail Work of Two Generations? (Mahesh Kumar Shiva; December 19, 2017).
Sorry, Business Closed until Internet is Back On (Nalanda Tambe; December 19, 2017).
Stock Brokers Don't Love an Internet Shutdown (Binita Parikh; December 19, 2017).
Was there an Unofficial Internet Shutdown in BHU & NTPC? (Saurabh Sharma; December 19, 2017).
How Media beat the Shutdown in Darjeeling (Manish Adhikary; December 19, 2017).
Internet and the Police: Tool to Some, Trash to Others (Manoj Kumar; December 19, 2017).
Business Woes from Saharanpur's Internet Ban (Mahesh Kumar Shiva; December 19, 2017).
Amid Unrest in the Valley, Students See a Dark Wall (Aakash Hassan; December 19, 2017).
The Rising Stars in Music Loath Losing their Only Platform (Umar Shah and Mir Farhat; December 19, 2017).
Internet and Banking: A Trust Broken (Roshan Gupta; December 19, 2017).
Online or Offline, Protest Goes On (Junaid Nabi Bazaz; December 19, 2017).
Digital Banking Dreams: Interrupted (Safeena Wani; December 19, 2017).
Will Darjeeling Regain the Trust of Tourists? (Roshan Gupta; December 20, 2017).
Silence on the Dera Front (Sat Singh; December 20, 2017).
ISPs in Kashmir Grappling with Mounting Losses Amid Recurrent Shutdowns (Safina Wani; December 20, 2017).
Taxes in the Time of Internet Shutdown (Avijit Sarkar; December 20, 2017).
Every Town had its Jio Dara (Ayswarya Murthy; December 20, 2017).
Education and Employment Opportunities Tossed out of the Window (Roshan Gupta; December 20, 2017).
Darjeeling’s e-commerce Crumbles after 100 days sans Internet (Avijit Sarkar; December 20, 2017).
E-administration Efforts are Lame Ducks without Internet (Amit Kumar and Sat Singh; December 20, 2017).

►Privacy

Blog Entries

Artificial Intelligence - Literature Review (Shruthi Anand; edited by Amber Sinha and Udbhav Tiwari with research assistance by Sidharth Ray; December 16, 2017).
AI and Healthcare in India: Looking Forward (Shweta Mohandas; edited by Roshni Ranganathan; December 16, 2017).

Participation in Event

FIGI Symposium 2017 (Organized by Telecommunication Standardization Bureau (TSB) of the International Telecommunication Union (ITU), jointly with the Bill & Melinda Gates Foundation, the World Bank and the Committee on Payments and Market Infrastructure (CPMI) and support of the Government of India; November 29 - December 1, 2017; Bangalore). Elonnai Hickok participated in the symposium and spoke in the "Security, Infrastructure, and Trust" working group on big data and privacy in DFS.

-----------------------------------

Telecom
-----------------------------------
CIS is involved in promoting access and accessibility to telecommunications services and resources, and has provided inputs to ongoing policy discussions and consultation papers published by TRAI. It has prepared reports on unlicensed spectrum and accessibility of mobile phones for persons with disabilities and also works with the USOF to include funding projects for persons with disabilities in its mandate:

Article

The tragedy of the unused commons (Shyam Ponappa; Business Standard; December 6, 2017).

-----------------------------------
About CIS
-----------------------------------

The Centre for Internet and Society (CIS) is a non-profit organisation that undertakes interdisciplinary research on internet and digital technologies from policy and academic perspectives. The areas of focus include digital accessibility for persons with disabilities, access to knowledge, intellectual property rights, openness (including open data, free and open source software, open standards, open access, open educational resources, and open video), internet governance, telecommunication reform, digital privacy, and cyber-security. The academic research at CIS seeks to understand the reconfigurations of social and cultural processes and structures as mediated through the internet and digital media technologies.

► Follow us elsewhere

Twitter: http://twitter.com/cis_india
Twitter - Access to Knowledge: https://twitter.com/CISA2K
Twitter - Information Policy: https://twitter.com/CIS_InfoPolicy
Facebook - Access to Knowledge: https://www.facebook.com/cisa2k
E-Mail - Access to Knowledge: a2k@cis-india.org
E-Mail - Researchers at Work: raw@cis-india.org
List - Researchers at Work: https://lists.ghserv.net/mailman/listinfo/researchers

► Support Us

► Request for Collaboration

For more details visit https://cis-india.org/about/newsletters/december-2017-newsletter

December 2016 Newsletter

praskrishna — 2017-01-28T12:02:23Z

Welcome to the December 2016 newsletter of the Centre for Internet and Society (CIS).

Dear readers,

Wishing you a happy and prosperous New Year. As the New Year unfolds we are glad to bring you developments from the last month of the year gone by for your reference. Thank you for reading the Centre for Internet and Society's (CIS) December 2016 newsletter.

Previous issues of the newsletters can be accessed here.

Highlights
Telugu Theatre scholar Pranay Raj Vangari created a record by completing a challenge that is famous worldwide in Wikimedia community - "100 Days-100 Articles". Rohini Lakshané attended the 25th session of the World Intellectual Property Organization Standing Committee on the Law of Patents held in Geneva from December 12 - 15, 2016 and made a statement on Future Work. She also submitted a statement on the Assessment of Inventive Step to Secretariat for the WIPO Standing Committee for the Law of Patents, Twenty Fifth Session. CIS submitted inputs to the Working Group on Enhanced Cooperation on Public Policy Issues Pertaining to the Internet (WGEC) on 15 December 2016. The WGEC sought inputs on two questions that will guide the next meeting of the Working Group which is scheduled to take place on the 26-27 January 2017. Udbhav Tiwari wrote an article on the technical, legal and jurisdictional issues around the recent Twitter and email hacks claimed by the ‘Legion Crew’, and what can targeted entities do to better protect themselves. Amber Sinha wrote a blog entry that focuses on network management, in general, and deep packet inspection, in particular and how it impacts the privacy of users. CIS is pleased to bring you the second title of the CIS Papers series. This report by P.P. Sneha comes out of an extended research project supported by the Kusuma Trust. The study undertook a detailed mapping of digital practices in arts and humanities scholarship, both emerging and established, in India. Zeenab Aneez wrote a report that examines the digital transition underway at three leading newspapers in India, the Dainik Jagran in Hindi, English-language Hindustan Times, and Malayala Manorama in Malayalam. Our focus is on how they are changing their newsroom organisation and journalistic work to expand their digital presence and adapt to a changing media environment. CIS made a submission on the Consultation Note on Model for Nation-wide Interoperable and Scalable Public Wi-Fi Networks published by the TRAI on November 15, 2016. Our analysis of the solution proposed in the Note, in brief, is that there is no need of a solution for non-existing interoperability problem for authentication and payment services for accessing public Wi-Fi networks.

CIS in the news:

Lack of clarity about cashless and online transactions makes digital payments more worrisome (Neha Alawadhi; Economic Times; December 1, 2016).
Changing the typographic landscape of a country: one letter at a time (Pooja Saxena; Storyweaver; December 1, 2016).
No laws in India to protect customers if they lose money during digital transactions (Alnoor Peermohamed; Business Standard; December 2, 2016).
Fake Narendra Modi apps aplenty, but it’s up to users to protect themselves (Indian Express; December 2, 2016). Also see Nandini Yadav's blog post in BGR on December 3, 2016.
Your digital wallet can be a ‘pickpocket’ (The Hindu; December 5, 2016).
Most popular smartphone apps inaccessible to disabled: Study (ET Telecom; December 7, 2016).
English gottila,job illa (Regina Gurung; Indian Express; December 7, 2016).
Bumpy road ahead for RFID Tags in vehicles (Smriti Sharma Vasudeva; Statesman; December 7, 2016).
India's Tech Policy Entrepreneurs (Rohin Dharmakumar; The Ken; December 8, 2016).
Vijay Mallya cries foul after his Twitter and email accounts are hacked (Alnoor Peermohamed; Business Standard; December 10, 2016).
విజ్ఞాన నిధి వికీపీడియా.. (Namaste Telangana; December 11, 2016).
వికీపీడియాతో విజ్ఞాన విప్లవం (Andhra Bhoomi; December 11, 2016).
Wikipedia is a Newspaper (Namaste Telangana; December 11, 2016).
Wikipedian Pavan Santhosh says Telugu Wikipedians are creating Knowledge revolution (in Telugu) (Andhra Jyoti; December 12, 2016).
Wikipedia Event in Mangalore (Vijaya Karnataka; December 18, 2016).
With power, phone and internet services affected, Chennai is still recovering from Cyclone Vardah (Vinita Govindarajan and Sruthisagar Yamunan; Scroll.in; December 20, 2016).

पीजी जूलॉजी विभाग में एक दिवसीय समागम का आयोजन (Hindustan, December 20, 2016).

How private companies are using Aadhaar to try to deliver better services (but there's a catch) (M. Rajshekhar; Scroll.in; December 22, 2016).
‘IT hub’ K’taka ranks No 12 in e-deals (Christin Philip Mathew; New Indian Express; December 27, 2016).
India’s ruling party takes online abuse to a professional level (Samanth Subramanian; December 31, 2016).

CIS members published the following articles:

Digital native: The View from My Bubble (Nishant Shah; Indian Express; December 4, 2016).
Indian Newspapers' Digital Transition (Zeenab Azeez; Reuters Institute for the Study of Journalism; December 9, 2016).
The Digital Protection of Traditional Knowledge: Questions Raised by the Traditional Knowledge Digital Library in India (Sunil Abraham and Vidushi Marda; GIS Watch; December 9, 2016)
The Curious Case of Poor Security in the Indian Twitterverse (Udbhav Tiwari; The Wire; December 17, 2016).
Pranay Raj record in 100 days-100 articles (Pavan Santhosh; Andhra Jyoti; December 17, 2016).
Digital Native: People Like Us (Nishant Shah; Indian Express; December 18, 2016).
వంద రోజులు.. వంద వ్యాసాలు - తెలుగు వికీపీడియాలో మోత్కూరు యువకుని రికార్డు (100 Days...100 Articles: Wikipedian from Motkur created record in Telugu Wikipedia) (Pavan Santhosh; Andhra Jyoti; December 18, 2016).

Jobs

CIS is seeking applications for:

-------------------------------------
Accessibility & Inclusion
-------------------------------------
India has an estimated 70 million persons with disabilities who don't have access to read printed materials due to some form of physical, sensory, cognitive or other disability. As part of our endeavour to make available accessible content for persons with disabilities, we are developing a text-to-speech software in 15 languages with support from the Hans Foundation. The progress made so far in the project can be accessed here.

Event Co-organized

International Accessibility Summit of Shaastra 2017 (Organized by CIS and IIT, Madaras; December 31 - January 3, 2017). Nirmita Narasimhan was a panel moderator.

Participation in Event

Best Practices in Digital Accessibility (Organized by IIM, Bangalore; December 19, 2016). Nirmita Narasimhan was a panelist.

►Copyright and Patent

Statements

25th Session of the WIPO SCP: Statement on Assessment of Inventive Step (Rohini Lakshané; December 15, 2016).
25th Session of the WIPO SCP: Statement on Future work (Rohini Lakshané; December 16, 2016).

Participation in Event

7th Emerging Markets Finance Conference (Organized by Finance Research Group in association with Vanderbilt Law School; Mumbai; December 15, 2016). Anubha Sinha was a panelist.

►Wikipedia

Blog Entries

Freedom in Feb — an awareness increasing campaign (Tito Dutta; December 8, 2016).
A Shortcut to Freedom (Tito Dutta; December 14, 2016).
Marathi Wikipedia Edit-a-thon in Kolhapur (Subodh Kulkarni; December 16, 2016).
Ongoing Proof-reading Effort by ALC Student Wikimedians in Telugu Wikisource (Pavan Santosh and Ting-Yi Chang; December 30, 2016).

►Openness

Submission

Comments on the Draft National Policy on Software Products (Anubha Sinha, Rohini Lakshané, and Udbhav Tiwari; December 11, 2016).

-----------------------------------
Internet Governance
-----------------------------------

►Privacy

Blog Entries

Privacy and Security Implications of Public Wi-Fi - A Case Study (Vanya Rakesh; December 9, 2016).
Habeas Data in India (Vipul Kharbanda and edited by Elonnai Hickok; December 10, 2016).
Workshop Report - UIDAI and Welfare Services: Exclusion and Countermeasures (Vanya Rakesh; December 14, 2016).
Enlarging the Small Print: A Study on Designing Effective Privacy Notices for Mobile Applications (Meera Manoj; December 14, 2016).
Protection of Privacy in Mobile Phone Apps (Hitabhilash Mohanty and Edited by Leilah Elmokadem; December 15, 2016).
ISO/IEC JTC 1 SC 27 Working Group Meetings - A Summary (Vanya Rakesh; December 16, 2016).
Deep Packet Inspection: How it Works and its Impact on Privacy (Amber Sinha; December 16, 2016).

Participation in Events

Industry Consultation Panel on Data Retention - DSCI (Organized by Data Security Council of India; New Delhi; November 23, 2016). This was mirrored on the website on December 6, 2016. Udbhav Tiwari was a panelist.
11th DSCI-NASSCOM Annual Information Security Summit 2016 (Organized by DSCI and NASSCOM; December 14, 2016). Udbhav Tiwari was a panelist.
Workshop on Center for IT and Society (Organized by IIT, Delhi; December 20, 2016). Amber Sinha attended the event.

►Free Speech & Expression

Blog Entries

ISIS and Recruitment using Social Media – Roundtable Report (Vidushi Marda, Aditya Tejus, Megha Nambiar and Japreet Grewal; December 15, 2016).
Inputs to the Working Group on Enhanced Cooperation on Public Policy Issues Pertaining to the Internet (WGEC) (Sunil Abraham and Vidushi Marda, with inputs from Pranesh Prakash; December 17, 2016).

Participation in Event

Myanmar Digital Rights Forum (Organized by Phandeeyar, You Can Do IT, Engage Media and Myanmar Centre for Responsible Business with support from the Embassy of Sweden; December 14 - 15, 2016). Sunil Abraham was a speaker.

►Big Data

Participation in Events

"Decoding the Digital" (Organized by Centre for IT and Public Policy at IIIT; Bangalore; December 12 - 14, 2016). Vanya Rakesh attended the event.
The EU and Free Flows of Data - Data Protection, Trade and Law Enforcement (Organized by the Department of European Studies; Bangalore; December 14, 2016). Ameila Andersdotter gave a talk.

Blog Entry

The Technology behind Big Data (Geethanjali Jujjavarapu and Udbhav Tiwari; December 1, 2016).

►Cyber Security

Blog Entries

Developer team fixed vulnerabilities in Honorable PM's app and API (Bhavyanshu Parasher; December 4, 2016).
Incident Response Requirements in Indian Law (Vipul Kharbanda; December 28, 2016).
Mapping of India’s Cyber Security-Related Bilateral Agreements (Leilah Elmokadem and Saumyaa Naidu; December 29, 2016).
Mapping of Sections in India’s MLAT Agreements (Leilah Elmokadem and Saumyaa Naidu; December 31, 2016).

Event Organized

Multistakeholder Consultation on Encryption (Organized by CIS with ORF and Takshashila Institution; TERI, Bangalore; December 17, 2016).

-----------------------------------
Telecom
-----------------------------------
CIS is involved in promoting access and accessibility to telecommunications services and resources, and has provided inputs to ongoing policy discussions and consultation papers published by TRAI. It has prepared reports on unlicensed spectrum and accessibility of mobile phones for persons with disabilities and also works with the USOF to include funding projects for persons with disabilities in its mandate:

Submission

CIS Submission to TRAI Consultation Note on Model for Nation-wide Interoperable and Scalable Public Wi-Fi Networks (Japreet Grewal, Pranesh Prakash, Sharath Chandra, Sumandro Chattapadhyay, Sunil Abraham, and Udbhav Tiwari, with expert comments from Amelia Andersdotter; December 12, 2016).

-----------------------------------
Researchers at Work
-----------------------------------
The Researchers at Work (RAW) programme is an interdisciplinary research initiative driven by an emerging need to understand the reconfigurations of social practices and structures through the Internet and digital media technologies, and vice versa. It aims to produce local and contextual accounts of interactions, negotiations, and resolutions between the Internet, and socio-material and geo-political processes:

Research Paper

Mapping Digital Humanities in India (P.P. Sneha; December 30, 2016).

► Follow us elsewhere

Twitter: http://twitter.com/cis_india
Twitter - Access to Knowledge: https://twitter.com/CISA2K
Twitter - Information Policy: https://twitter.com/CIS_InfoPolicy
Facebook - Access to Knowledge: https://www.facebook.com/cisa2k
E-Mail - Access to Knowledge: a2k@cis-india.org
E-Mail - Researchers at Work: raw@cis-india.org
List - Researchers at Work: https://lists.ghserv.net/mailman/listinfo/researchers

► Support Us

► Request for Collaboration

For more details visit https://cis-india.org/about/newsletters/december-2016-newsletter

December 2015 Bulletin

praskrishna — 2016-01-13T14:07:01Z

Our newsletter for the month of December 2015 is below.

The Centre for Internet & Society (CIS) is happy to share the twelfth issue of CIS newsletter (December 2015). Previous editions of the newsletter can be accessed at http://cis-india.org/about/newsletters.

Highlights
The 4th edition of the Global Congress themed around "Three Decades of Openness, Two Decades of TRIPS" was organized in New Delhi from December 15 - 17, 2015. The largest ever in Asia, the Congress was jointly organised by CIS, NLU-D, Open A.I.R., CREATe, Columbia University and American University. Nehaa Chaudhari summarized the developments of the 4th Global Congress on IP and the Public Interest in a blog post that was originally published on the Global Congress blog. Sunil Abraham wrote a blog entry stating the institutional position of CIS on the Net Neutrality discussion going on in India. Catch News interviewed Sunil Abraham about the recent advertisement by Facebook titled "What Net Neutrality Activists won't Tell You or, the Top 10 Facts about Free Basics" . Sunil argued against the validity of all the 'top 10 facts'. Odia author and cultural historian Jagannath Prasad Das has recently permitted 30 volumes of his notable works to be re-license under an open license (Creative Commons Share-Alike 4.0 or CC-BY-SA 4.0) . Subhashish Panigrahi wrote a blog post on this in Discover Bhubaneswar, a web portal in Odisha. CIS has established institutional partnerships with University of Mysore and Guru G Learning Labs for furthering Wikipedia growth. Tanveer Hasan analyses the developments and lists out the possible future plans in this regard. CIS along with Observer Research Foundation, Centre for Global Communication Studies, Annenberg School for Communication, University of Pennsylvania, and Internet Policy Observatory organized an event in New Delhi on Net Neutrality across South Asia . Today the quantity of data being generated is expanding at an exponential rate. From smartphones and televisions, trains and airplanes, sensor-equipped buildings and even the infrastructures of our cities, data now streams constantly from almost every sector and function of daily life, stated Scott Mason in a blog post. The Government of India is in the process of developing 100 smart cities in India which it sees as the key to the country's economic and social growth. Vanya Rakesh gave an overview of the Smart Cities project currently underway in India in a blog post. For the second part of the Smart City podcast series, Sruthi Krishnan and Harsha K from Fields of View spoke with Sumandro Chattapadhyay on data, people, and smart cities. Fields of View has produced and shared the recording. An extended survey of digital initiatives in arts and humanities practices in India was undertaken last year. The 'mapping digital humanities in India' enquiry began with the term 'digital humanities' itself, as a 'found' name for which one needs to excavate some meaning, context, and location in India at the present moment. P.P Sneha published the third,fourth, and fifth sections of the study this month. The RAW programme has initiated a new annual conference series titled Internet Researchers' Conference (IRC). The first edition of the Conference, organised around the theme of "studying internet in India" will be held in Delhi in February 2016

----------------------------------------------
Accessibility and Inclusion
----------------------------------------------

Under a grant from the Hans Foundation we are doing a project on developing text-to-speech software for 15 Indian languages. The progress made so far in the project can be accessed here.

►NVDA and eSpeak

Monthly Updates

● December 2015 Report (Suman Dogra; December 31, 2015).

-----------------------------------------------------------
Access to Knowledge
-----------------------------------------------------------
As part of the Access to Knowledge programme we are doing two projects. The first one (Pervasive Technologies) under a grant from the International Development Research Centre (IDRC) is for research on the complex interplay between pervasive technologies and intellectual property to support intellectual property norms that encourage the proliferation and development of such technologies as a social good. The second one (Wikipedia) under a grant from the Wikimedia Foundation is for the growth of Indic language communities and projects by designing community collaborations and partnerships that recruit and cultivate new editors and explore innovative approaches to building projects.

►Copyright and Patent

Blog Entries

Abuse of Dominant Position in Indian Competition Law: A Brief Guide (Sarthak Sood; December 9, 2015).
GCIP2015: Notes from the Inaugural Session (Spadika Jayaraj; SpicyIP; December 14, 2015).
GCIP Day 1 Session 3: Challenges in Re-Articulating Public Interest (Spadika Jayaraj; SpicyIP; December 17, 2015).
GCIP 15 Day 2: Discussions on Health Technology, Innovation and Access (Spadika Jayaraj; SpicyIP; December 17, 2015).
Guidelines for Examination of Computer Related Inventions in abeyance (Anubha Sinha; Anubha Sinha; December 21, 2015).
4th Global Congress on IP and the Public Interest: Statement of Conclusion for the IP and Development track (Nehaa Chaudhari; December 25, 2015). This was also published on the Global Congress Blog.

Event Organized

Global Congress on Intellectual Property and the Public Interest (Organized by National Law University, Delhi, American Assembly, Columbia University, Open A.I.R., American University, and CIS; New Delhi, December 15 - 17, 2015).

Participation in Event

CODE Session (Organized by IDRC; December 17, 2015; New Delhi). Nehaa Chaudhari and Anubha Sinha participated in the event.

Media Coverage

NLSIU Conference on Access to Copyrighted Works for Persons with Disability: An enriching experience (Abolee Vaidya and Nuhar Bansal; SINAPSE; December 14, 2015). This is an event report on a one-day national conference on the 'Access to Copyrighted Works for Persons with Disability' for which Pranesh Prakash was a speaker .

►Wikipedia

Articles

30 Books of Odia Author and Historian Jagannath Prasad Das to Come Online on Odia Wikisource (Subhashish Panigrahi; Discover Bhubaneswar; December 4, 2015).
ଓଡ଼ିଆ ଉଇକିପାଠାଗାର (Subhashish Panigrahi; Sambad; December 6, 2015).

Blog Entries

Open access in the Marathi language expands by a thousand books (Subhashish Panigrahi and Abhinav Garule; December 3, 2015). This was published on Wikimedia Blog.
Guru-G Learning Labs and CIS A2K Institutional Partnership (Tanveer Hasan; December 3, 2015).
Community Prioritisation of Content Donation: Kannada Wikisource (Tanveer Hasan; December 5, 2015).
Analysis of Institutional Partnerships: University of Mysore and Guru G Learning Labs (Tanveer Hasan; December 5, 2015).
Touch Point Report: Department of Tourism Studies, Christ University and St. Aloysius College, Mangalore (Tanveer Hasan; December 5, 2015).
TTT 2015 (Tanveer Hasan; December 5, 2015).
Kannada Wikipedia Editathon at Mangaluru (Dr. U.B. Pavanaja; December 29, 2015).

Events Organized

Talk on bringing 1000 books about the culture of Maharashtra on Marathi Wikipedia (The Energy and Resources Institute; Bangalore; December 1, 2015). Avinash Chaphekar, Joint Secretary, Maharashtra Granthottejak Sanstha gave a talk.
Odia Wikimedia community meetup (Organized by Odia Wikipedia Community and CIS; Cuttack; December 3, 2015).
Sau Dhuni Teen Project: December Edit-a-thon (Women's Studies Centre, University of Pune; December 3, 2015).

Participation in Events

Telugu Wikipedia Day 2015, Photo Walk (Organized by Telugu Wikipedians; Dr. YSR State Archaeological Museum, Hyderabad; December 13, 2015). Pavan Santhosh attended the event. One of the popular Telugu news channel TV9 covered the event and telecasted the same. Eenadu published a special item on photo walk on December 13, 2015.
English Wikipedia and the Telugu Wikipedia joint meetup and edit-a-thon (Organized by Wikipedia community; Golden Threshold, Hyderabad; December 20, 2015). The event was covered inSakshi and Andhra Jyoti.

Media Coverage

CIS gave its inputs to the following media coverage:

Post More Articles on Kannada Wikipedia (Indian Express; Mangaluru edition; December 12, 2015).

A Kannada Wikipedia Editathon was conducted in Mangalore on December 10, 2015. The following are the media coverage for the same:

Kannada Wikipedia Editathon (Udayavani; December 7, 2015).
Kannada Wikipedia Editathon (Vijayavani; December 11, 2015).
Kannada Wikipedia Editathon (Vijaya Karnataka; December 11, 2015).
Kannada Wikipedia Editathon (Udayavani; December 11, 2015).
Kannada Wikipedia Editathon (Prajavani; December 10, 2015).
Kannada Wikipedia Editathon (Prajavani; December 13, 2015).

-----------------------------------------------
Internet Governance
-----------------------------------------------
As part of its research on privacy and free speech, CIS is engaged with two different projects. The first one (under a grant from Privacy International and International Development Research Centre (IDRC)) is on surveillance and freedom of expression (SAFEGUARDS). The second one (under a grant from MacArthur Foundation) is on studying the restrictions placed on freedom of expression online by the Indian government.

►Free Speech and Expression

Interview

Facebook shares 10 key facts about Free Basics. Here's what's wrong with all 10 of them (Shweta Sengar; Catch News; December 24, 2015).

Blog Entry

CIS's Position on Net Neutrality (Sunil Abraham; December 4, 2015).

Event Organized

Net Neutrality across South Asia (Organized by Observer Research Foundation, Centre for Global Communication Studies, Annenberg School for Communication, University of Pennsylvania, Internet Policy Observatory and CIS; New Delhi; December 12, 2015).

Participation in Event

Consultation on "Understanding the Freedom of Expression Online and Offline" (Organized by Digital Empowerment Foundation and Association for Progressive Communications; YMCA, New Delhi; December 10, 2015). Jyoti Panday was a speaker at this event.

►Big Data

Blog Entry

Benefits and Harms of "Big Data" (Scott Mason; December 30, 2015).

►Cyber Security

Blog Entry

Ground Zero Summit (Amber Sinha; December 22, 2015).

Participation in Events

Second Regional Conference on Connectivity for All: Future Technologies, Markets and Regulation (Organized by International Telecommunications Society, IIMA IDEA Telecom Centre of Excellence and Indian Institute of Management, Ahmedabad; New Delhi; December 13 - 15, 2015). Sunil Abraham was a panelist.

Event Organized

Bangalore Chapter Meet - DSCI (CIS, Bangalore; December 1, 2015). CIS hosted the Bangalore Chapter Meet of DSCI. Pronab Mohanty, Inspector General of Police gave a talk on Cybercrimes. Sunil Abraham presented the outcome of his study "Anonymity in Cyberspace".

►Privacy

Blog Entries

UID Research (Vanya Rakesh; December 2, 2015).
DNA Research (Vanya Rakesh; December 2, 2015).
Privacy Policy Research (Vanya Rakesh; December 2, 2015).
Sectoral Privacy Research (Vanya Rakesh; December 2, 2015).
Security Research (Vanya Rakesh; December 3, 2015).
Eight Key Privacy Events in India in the Year 2015 (Amber Sinha; December 31, 2015).

Participation in Events

Kick Off Meeting for the Politics of Data Project (Organized by Tactical Tech; Phnom Penh; December 7-8, 2015). Amber Sinha participated in the event.
Unbundling Issues of Privacy, Data Security, Identity Matrics, for Financial Inclusion (Organized by Indicus Foundation and MicroSave; December 10, 2015; Metropolitan Hotel and Spa, New Delhi). Sunil Abraham was a speaker.

►Miscellaneous

Blog Entry

Smart Cities in India: An Overview (Vanya Rakesh; December 21, 2015).

Participation in Event

Elite Capture of Governance (Organized by Forum for Urban Governance and Commons; December 16, 2015; Bangalore). Vanya Rakesh participated in the event.

--------------------------------
Telecom
--------------------------------
CIS is involved in promoting access and accessibility to telecommunications services and resources and has provided inputs to ongoing policy discussions and consultation papers published by TRAI. It has prepared reports on unlicensed spectrum and accessibility of mobile phones for persons with disabilities and also works with the USOF to include funding projects for persons with disabilities in its mandate:

Articles

The Free Basics debate: Trai has a point in imposing temporary ban on net neutrality (Sunil Abraham; FirstPost; December 24, 2015).
Millions of Indians Slam Facebook's 'Free Basics' App (Subhashish Panigrahi; December 29, 2015).

--------------------------------
Researchers at Work
--------------------------------
The Researchers at Work (RAW) programme is an interdisciplinary research initiative driven by contemporary concerns to understand the reconfigurations of social practices and structures through the Internet and digital media technologies, and vice versa. It is interested in producing local and contextual accounts of interactions, negotiations, and resolutions between the Internet, and socio-material and geo-political processes:

Upcoming Events

A.I. Hype Cycles and Artistic Subversions (CIS, Bangalore; January 22, 2016). Gene Kogan will give a talk.
First Edition of Internet Researchers' Conference (IRC) 2016 - Studying Internet in India: Call for Sessions (Organized by CIS; New Delhi; February 25 - 27, 2016).

Blog Entries

RAW Lecture #01: Nishant Shah on 'Stories and Histories of Internet in India' - Video (P.P. Sneha; December 1, 2015).
FOV Podcast - Data, People, and Smart Cities (Sumandro Chattapadhyay; December 2, 2015).
Reading from a Distance - Data as Text (P.P. Sneha; December 7, 2015).
The Infrastructure Turn in the Humanities (P.P. Sneha; December 7, 2015).
Living in the Archival Moment (P.P. Sneha; December 14, 2015).

---------------------------------
News & Media Coverage
---------------------------------

CIS gave its inputs to the following media coverage:

India's net neutrality debate is unique and complex (Pratap Vikram Singh; Governance Now; December 14, 2015).
Start-up India turns the heat on Facebook Free Basics (Anita Babu; Business Standard; December 22, 2015).
A Scam Masquerading as Santa (Apurva Venkat & Vandana Kamath; Bangalore Mirror; December 25, 2015).
Facebook goes out all guns blazing in push for Free Basics, Net neutrality advocates cry foul (IBN Live; December 29, 2015).
Foreign Media on Zuckerberg's India Backlash (Bhuma Shrivastava; NDTV; December 30, 2015).
Mark Zuckerberg's India backlash imperils vision for free global web (Bhuma Shrivastava; Livemint; December 30, 2015).

---------------------------------
About CIS
---------------------------------
The Centre for Internet and Society (CIS) is a non-profit organisation that undertakes interdisciplinary research on internet and digital technologies from policy and academic perspectives. The areas of focus include digital accessibility for persons with diverse abilities, access to knowledge, intellectual property rights, openness (including open data, free and open source software, open standards, open access, open educational resources, and open video), internet governance, telecommunication reform, digital privacy, and cyber-security. The academic research at CIS seeks to understand the reconfigurations of social and cultural processes and structures as mediated through the internet and digital media technologies.

► Offices

Bengaluru - No. 194, 2nd 'C' Cross, Domlur, 2nd Stage, Bengaluru, 560071. Location on Google Map .

Delhi - First floor, B 1/8, Hauz Khas, near G Block market, after Crunch, New Delhi, 110016. Location on Google Map.

► Follow Us

Twitter: http://twitter.com/cis_india
Twitter - Access to Knowledge: https://twitter.com/CISA2K
Facebook - Access to Knowledge: https://www.facebook.com/cisa2k
E-Mail - Access to Knowledge: a2k@cis-india.org
E-Mail - Researchers at Work: raw@cis-india.org
List - Researchers at Work: https://lists.ghserv.net/mailman/listinfo/researchers

► Support Us

Please help us defend consumer / citizen rights on the Internet! Write a cheque in favour of 'The Centre for Internet and Society' and mail it to us at No. 194, 2nd 'C' Cross, Domlur, 2nd Stage, Bengaluru, 560 071.

► Request for Collaboration

For more details visit https://cis-india.org/about/newsletters/december-2015-bulletin

December 2014 Bulletin

praskrishna — 2015-01-12T16:56:54Z

The Centre for Internet & Society (CIS) wishes you a very happy new year and welcomes you to the twelfth issue of the newsletter (December 2014).

Highlights

CIS prepared a policy brief that identifies the problem areas with the current work flow being used to publish documents and proposes suitable modifications to make them easy to locate, authentic and accessible.
NVDA team conducted two workshops. The first one was held at the Hyderabad Central University for reading and writing in Telugu. The second one was held at the Blind Empowerment Foundation in Kolkata for reading and writing in Bangla.

Nehaa Chaudhari participated in the 29^th WIPO-SCCR held in Geneva from December 8 to 12, 2014 and on behalf of CIS gave statements on the Proposed Treaty for the Protection of Broadcasting Organizations , Limitations and Exceptions for Education, Teaching, Research Institutions and Persons with Disabilities , made a brief pointed intervention on the Broadcast Treaty , and briefly interviewed Prof. Crews on his Updated Study on Limitations and Exceptions for Libraries and Archives .
Nehaa Chaudhari analyses the broadening of definitions/concepts in the Proposed Broadcast Treaty versus those in pre-existing international instruments.
Maggie Huang, an intern at CIS as part of the Pervasive Technologies projects conducted interviews with fabless semiconductor industry professionals in Taiwan. The findings are highlighted in two separate blog entries. The first one explores some of their views on the current intellectual property system and the second explores the tension between market forces and governmental intervention in providing access to mobile technology .
Tejaswini Niranjana, a distinguished fellow at CIS wrote an op-ed in the Hindu telling readers to see the ongoing Sanskrit versus German controversy as a welcome opportunity to discuss the real and persistent problems of our education system.
Vidushi Marda and Bhairav Acharya have co-authored a white paper that seeks to identify aspects of privacy in Islamic Law and demonstrate that the notion of privacy was recognized and protected in traditional Islamic law.
Ashna Ashesh and Bhairav Acharya have produced a white paper seeks to locate privacy in Classical Hindu Law, and by doing so, displace the notion that privacy is an inherently 'Western' concept that is the product of a modernist legal system.
Vipul Kharbanda authored a white paper establishing the relationship between privacy and confidentiality.
Geetha Hariharan in a blog entry examines the constitutional validity of Section 69A and the Blocking Rules.
Shyam Ponappa in an article published by the Business Standard writes that India's current policies for telecommunications don't serve our interests and tells readers what must change.

Accessibility and Inclusion

Under a grant from the Hans Foundation we are doing two projects. The first project is on creating a national resource kit of state-wise laws, policies and programmes on issues relating to persons with disabilities in India. CIS in partnership with CLPR (Centre for Law and Policy Research) compiled the National Compendium of Policies, Programmes and Schemes for Persons with Disabilities (29 states and 6 union territories). The publication has been finalised and is being printed. The draft chapters and the quarterly reports can be accessed on the project page. The second project is on developing text-to-speech software for 15 Indian languages. The progress made so far in the project can be accessed here.

►NVDA and eSpeak

Monthly Update

December 2014 Report (Suman Dogra; December 30, 2014).

Events Organized

Telugu eSpeak Training with NVDA (Organized by NVDA team; Hyderabad Central University, Hyderabad; December 1-2, 2014).
Bangla eSpeak training with NVDA (Organized by NVDA team; Blind Empowerment Foundation, Kolkata; December 19-20, 2014).

Upcoming Event

Training in Use of eSpeak with Malayalam (Co-organized by CIS, DAISY Forum of India and Chakshumathi Assistive Technology Centre; Trivandrum; January 24 - 25, 2015, Trivandrum).

►Other

Blog Entry

Availability and Accessibility of Government Information in Public Domain (Sunil Abraham, Nirmita Narasimhan, Beliappa, and Anandhi Viswanathan; December 9, 2014).

Participation in Event

First meeting of the high level committee on National Policy on Universal Electronic Accessibility (Organized by the Department of Electronics and Information Technology; December 30, 2014; New Delhi). Sunil Abraham participated in this meeting.

Media Coverage

When technology is able but the mindset is not (Governance Now; December 1-15 issue). Sunil Abraham and Nirmita Narasimhan gave their inputs.

Access to Knowledge

As part of the Access to Knowledge programme we are doing two projects. The first one (Pervasive Technologies) under a grant from the International Development Research Centre (IDRC) is for research on the complex interplay between pervasive technologies and intellectual property to support intellectual property norms that encourage the proliferation and development of such technologies as a social good. The second one (Wikipedia) under a grant from the Wikimedia Foundation is for the growth of Indic language communities and projects by designing community collaborations and partnerships that recruit and cultivate new editors and explore innovative approaches to building projects.

►Pervasive Technologies

As part of the Pervasive Technologies project, Maggie Huang conducted interviews with fabless semiconductor industry professionals in Taiwan. The findings from the samples are highlighted in four part series. The third and fourth parts have been published:

Blog Entries

[Open] Innovation and Expertise > Patent Protection & Trolls in a Broken Patent Regime (Maggie Huang; December 26, 2014).
"Copyright Management in the Age of Mobile Music" - Living Methodology Document (Maggie Huang; December 26, 2014).

►Other

Blog Entries

Nehaa Chaudhari attended the 29^th WIPO-SCCR held in Geneva from December 8 to 12. The following are the outputs:

29th Session of the WIPO SCCR: CIS Intervention on the Proposed Treaty for the Protection of Broadcasting Organizations (Nehaa Chaudhari; December 9, 2014).
29th Session of the WIPO SCCR: CIS- 2nd (brief) Intervention on the Broadcast Treaty (Nehaa Chaudhari; December 11, 2014).
The Broadening of Definitions in the Proposed Broadcast Treaty Compared to Other International Conventions (Nehaa Chaudhari; December 11, 2014).
29th Session of the WIPO SCCR: CIS Intervention: Questions to Prof. Kenneth Crews on his Updated Study on Limitations and Exceptions for Libraries and Archives (Nehaa Chaudhari; December 14, 2014).
29th Session of the WIPO SCCR: Statement on the Limitations and Exceptions for Education, Teaching, Research Institutions and Persons with Disabilities (Nehaa Chaudhari; December 20, 2014).
Protection of Broadcasting Organisations under the Proposed Treaty as Compared to Other International Conventions (Nehaa Chaudhari; December 21, 2014).

Participation in Event

Save the Date - 10 December 2014: The Broadcasting Treaty: A Solution in Search of a Problem? (Organized at WIPO; December 10, 2014). Nehaa Chaudhari was a speaker at this side event. The details were originally published by Knowledge Ecology International.

Media Coverage

SCCR 29: Public Interest Organizations Statements regarding the Broadcasting Treaty (Knowledge Ecology International; December 9, 2014).
SCCR 29 Libraries, Archives and Public Interest NGOs in Q&A with Dr. Crews (Knowledge Ecology International; December 11, 2014).
At WIPO, Study On Copyright Exceptions Stimulates Broad Discussion With Author (Catherine Saez; December 18, 2014).
WIPO Delegates Hear Concerns of NGOs on Exceptions for Libraries (Catherine Saez; IP Watch ; December 19, 2014).

►Wikipedia

Newspaper Article

Beyond the Language Tussle (Tejaswini Niranjana; The Samaja, November 17, 2014).

Blog Entries

Odia Wikisource campus project at Kalinga Institute of Social Sciences (Subhashish Panigrahi; December 3, 2014).
Several Publications Now Available under Creative Commons License (Subhashish Panigrahi; December 28, 2014).
Odia Wikisource workshop at New Delhi (Subhashish Panigrahi; December 30, 2014). The event was organized by CIS in collaboration with "The Intellects" on December 14.

News and Media Coverage

CIS-A2K team gave its inputs to the following media coverage:

Odia Wikipedia (Dhatri; December 1, 2014).
Odia Wikipedia (Odiapua; December 1, 2014).
Access to Rare Books Made Easy (Diana Sahu; Indian Express; December 5, 2014).
Tulu Wikipedia gets some push (Hindu Businessline; December 13, 2014).
Tulu Wikipedia (Kannada Prabha; December 14, 2014).
Tulu Wikipedia (Vijaya Karnataka; December 15, 2014).
Tulu Wikipedia (VijayaVani; December 27, 2014).
Works of Veerasalingam Pantulu on web (Hans India; December 31, 2014).
Wiki Winter Camp - Coverage in Sakshi (Sakshi; December 31, 2014).
Wiki Winter Camp - Coverage in Eenadu (Eenadu; December 31, 2014).

Event Co-organized

Odia Wikisource Sabha 2014 (Co-organized by CIS-A2K and Odia Wikimedia Community; November 28, 2014). Subhashish Panigrahi participated in the event.

Participation in Events

ICT for Development (Organized by Christ University; December 3, 2014). Dr. U.B. Pavanaja was a speaker at this event.
Swatantra 2014: Fifth International Free Software Conference, Kerala (Organized by ICFOSS, Govt. of Kerala; Hotel Hycinth by Sparsa, Trivandrum; December 18 - 20, 2014). T. Vishnu Vardhan chaired a session on Wikimedia and Access to Knowledge in India and Rahimanuddin Shaik co-presented on Making DLI Accessible.

►Openness

Blog Entry

Department of Science and Technology & Department of Biotechnology adopt Open Access Policy (Anubha Sinha; December 29, 2014).

Participation in Events

Tech for Citizen Engagement 2014 (Organized by Omidyar Network; New Delhi; December 11, 2014). Sunil Abraham was a speaker in the session "Rules of Engagement: Emerging Trends in Citizen Outreach".
Swatantra 2014: Fifth International Free Software Conference, Kerala (Organized by ICFOSS, Govt. of Kerala; Hotel Hycinth by Sparsa, Trivandrum; December 18 - 20, 2014). Prof. Subbiah Arunachalam was a speaker and made a presentation on Open Science.

Internet Governance

►Privacy

As part of our Surveillance and Freedom: Global Understandings and Rights Development (SAFEGUARD) project with Privacy International we are engaged in enhancing respect for the right to privacy in developing countries. During the month we published the following blog entries:

White Papers

Locating Constructs of Privacy within Classical Hindu Law (Ashna Ashesh and Bhairav Acharya; December 29, 2014).
Relationship between Privacy and Confidentiality (Vipul Kharbanda; December 30, 2014).

Blog Entry

Identifying Aspects of Privacy in Islamic Law (Vidushi Marda and Bhairav Acharya; December 14, 2014).

Upcoming Events

Security, Governments, and Data: Technology and Policy (Co-organized by CIS and the Observer Research Foundation; January 8, 2015; New Delhi).
CPDP 2015 : The eighth international conference on computers, privacy and data protection will be held in Brussels from January 21 to 23, 2015. CIS is a moral supporter of CPDP.

Event Organized

Security and Surveillance: A public discussion on Optimizing Security while Safeguarding Human Rights (CIS; December 19, 2014).

►Free Speech

Under a grant from the MacArthur Foundation, CIS is doing research on the restrictions placed on freedom of expression online by the Indian government and contribute studies, reports and policy briefs to feed into the ongoing debates at the national as well as international level. As part of the project we bring you the following outputs:

Blog Entries

ICANN reveals hitherto undisclosed details of domain names revenues (Geetha Hariharan; December 8, 2014).
Revolving Door Analysis: IANA Stewardship Transition Coordination Group (Lakshmi Venkataraman; December 10, 2014).
Is India's website-blocking law constitutional? - I. Law & procedure (Geetha Hariharan; December 11, 2014).

►Other

Participation in Event

National Seminar on Cyber Security & Cyber Laws - Issues and Concerns (Organized by the Advanced Centre for Research, Development & Training in Cyber Laws & Forensics; National Law School of India University, Bangalore; December 27 - 28, 2014). Sharath Chandra Ram was part of a plenary session on "Multi-Disciplinary Challenges in Ensuring Cyber Security".

Blog Entries

Overview of the Constitutional Challenges to the IT Act (Pranesh Prakash; December 15, 2014).
Reply to RTI filed with BSNL regarding Network Neutrality and Throttling (Tarun Krishnakumar; December 22, 2014).

---------------------------------
News & Media Coverage
---------------------------------
CIS gave its inputs to the following media coverage:

India sees biggest improvement in Internet freedom, says report (Moulishree Srivastava; Livemint; December 5, 2014).
Are Cab Apps safe? (IBN Live; December 8, 2014).
FrndiNeed; an app for passengers' safety (Athira A. Nair; Economic Times; December 10, 2014).
Thank You To Our 2014 Sponsors (Medianama; December 22, 2014).
Why did India fail to discover the ISIS Twitter handle? (Anita Babu; Business Standard; December 26, 2014).
Targeting surveillance (Ajai Sreevatsan; The Hindu; December 28, 2014).
Centre blocks 32 websites for security reasons, restores some later (S. Ronendra Singh; Hindu Businessline; December 31, 2014).
DoT Reportedly Orders Blocking of 32 Websites Including GitHub, Archive.org, SourceForge (NDTV; December 31, 2014).
Govt blocks 32 websites, including Vimeo and Github (Moulishree Srivastava; Livemint; December 31, 2014).
Vimeo, DailyMotion, Pastebin Among Sites Blocked In India For 'Anti-India' Content From ISIS (Jeff Stone; IB Times; December 31, 2014).
Pastebin, Dailymotion, Github blocked after DoT order: Report (Anupam Saxena; The Times of India; December 31, 2014).

Telecom

CIS is involved in promoting access and accessibility to telecommunications services and resources and has provided inputs to ongoing policy discussions and consultation papers published by TRAI. It has prepared reports on unlicensed spectrum and accessibility of mobile phones for persons with disabilities and also works with the USOF to include funding projects for persons with disabilities in its mandate:

Newspaper Column

A Road Map for Digital India (Shyam Ponappa; Business Standard; December 3, 2014 and Organizing India Blogspot; December 4, 2014).

Digital Humanities

CIS is building research clusters in the field of Digital Humanities. The Digital will be used as a way of unpacking the debates in humanities and social sciences and look at the new frameworks, concepts and ideas that emerge in our engagement with the digital. The clusters aim to produce and document new conversations and debates that shape the contours of Digital Humanities in Asia:

Blog Entry

The Spaces of Digital (P.P.Sneha; December 30, 2014).

About CIS

The Centre for Internet and Society is a non-profit research organization that works on policy issues relating to freedom of expression, privacy, accessibility for persons with disabilities, access to knowledge and IPR reform, and openness (including open government, FOSS, open standards, etc.), and engages in academic research on digital natives and digital humanities.

► Follow us elsewhere

Twitter: https://twitter.com/CISA2K
Facebook group: https://www.facebook.com/cisa2k
Visit us at: https://meta.wikimedia.org/wiki/India_Access_To_Knowledge
E-mail: a2k@cis-india.org

► Support Us

► Request for Collaboration:

We invite researchers, practitioners, and theoreticians, both organisationally and as individuals, to collaboratively engage with Internet and society and improve our understanding of this new field. To discuss the research collaborations, write to Sunil Abraham, Executive Director, at sunil@cis-india.org. To discuss collaborations on Indic language Wikipedia, write to T. Vishnu Vardhan, Programme Director, A2K, at vishnu@cis-india.org.

For more details visit https://cis-india.org/about/newsletters/december-2014-bulletin

December 2013 Bulletin

praskrishna — 2014-02-25T13:51:47Z

Our newsletter for the month of December 2013 can be accessed below.

We at the Centre for Internet & Society (CIS) wish you all a great year ahead and welcome you to the twelfth issue of its newsletter (December) for the year 2013:

-------------------------------
Highlights
-------------------------------

The National Resource Kit team has published a draft chapter highlighting the state of laws, policies and programmes for persons with disabilities in the state of Gujarat.
Government of India has passed the National Electronic Accessibility Policy. CIS had worked with the Department of Electronics and Information Technology to formulate this policy. We bring you a brief analysis of the policy and provisions therein in a blog post.
Nehaa Chaudhari on behalf of CIS submitted comments on the Proposed WIPO Treaty for the Protection of Broadcasting Organizations to the Ministry of Human Resource Development.
CIS-A2K team has published a report highlighting the key accomplishments about the work accomplished on Konkani Wikipedia from September to December 2013.
Vipul Kharbanda has provided an analysis of the laws and regulations that apply to Bitcoin in India concluding that government can regulate Bitcoin.
We released the first documentary film (DesiSec) on cyber security in India in Bangalore on December 11.
In the module on Global Histories of the Internet (part of the Knowledge Repository on Internet Access project) Nishant Shah analyses the understanding of the internet, cyberspace and everyday life and why do we need to know the history of the internet.
The second "Institute on Internet and Society" will be held in Yashada, Pune from February 11 to 17, 2014.
As part of the Making Change project, Denisse Albornoz provides an analysis of the benefits and limitations of increasing access to information to enable citizenship and political participation.

-----------------------------------------------
Jobs
-----------------------------------------------
CIS is seeking applications for the posts of Program Officer (Access to Knowledge) and Program Officer (Internet Governance): http://bit.ly/1aA57K6. There are two vacancies each for these posts and these are full-time based in Delhi. To apply, please send your resume to Sunil Abraham (sunil@cis-india.org) and Pranesh Prakash (pranesh@cis-india.org) with three writing samples of which at least one demonstrates your analytic skills, and one that shows your ability to simplify complex policy issues.

----------------------------------------------
Accessibility and Inclusion
----------------------------------------------
As part of our project (under a grant from the Hans Foundation) on creating a national resource kit of state-wise laws, policies and programmes on issues relating to persons with disabilities in India, we bring you draft chapters for the states of Madhya Pradesh and Arunachal Pradesh, and the union territory of Daman and Diu. With this we have completed compilation of draft chapters for 27 states and 5 union territories. Feedback and comments are invited from readers for the following chapter:

► National Resource Kit Chapter

The Gujarat Chapter (by Anandhi Viswanathan, December 31, 2013): http://bit.ly/Kxbg3b.

Note: All of the chapters published so far in this project are early drafts and will be reviewed and updated.

►Other

# Media Coverage

An “Advocacy” Saga and the Inspiring Legacy of Rahul Cherian (by Shamnad Basheer, Spicy IP, December 16, 2013): http://bit.ly/1a5B7sU.

# Blog Entry

National Policy on Universal Electronic Accessibility – An Analysis (by Anandhi Viswanathan, December 27, 2013): http://bit.ly/1dfCW3I.

-----------------------------------------------------------
Access to Knowledge
-----------------------------------------------------------
The Access to Knowledge programme addresses the harms caused to consumers and human rights, and critically examines Open Government Data, Open Access to Scholarly Literature, and Open Access to Law, Open Content, Open Standards, and Free/Libre/Open Source Software.

# Submission

Comments on Proposed WIPO Treaty for the Protection of Broadcasting Organizations (by Nehaa Chaudhari, December 7, 2013). CIS submitted its comments to the Ministry of Human Resource Development: http://bit.ly/1hpWeuu.

# Events Participated In

3rd Global Congress on IP and the Public Interest & Open A.I.R. Conference on Innovation and IP in Africa (organized by University of Cape Town, December 9-13, 2013). Sunil Abraham participated as a speaker in the sessions on Bridging into the Global Congress: Global Issues, Local Answers?, User Rights Track: What Medicines Can Teach Tech: Exploring Patent Pooling and Compulsory Licensing in the Indian Mobile Device Market (http://bit.ly/1f74yir), User Rights Track: Reclaiming the World Trade Organisation: A Modest Proposal for a WTO Agreement on the Supply of Global Public Goods (http://bit.ly/1f74yir), and was a keynote speaker on The Freedom Continuum (http://bit.ly/1dH1WEM). Nehaa Chaudhari also participated in this event: http://bit.ly/1bJArFJ.
Twenty-Sixth Session of the Standing Committee on Copyrights and Related Rights (organized by WIPO, Geneva, December 16 – 20, 2013). CIS gave its statement on Limitations and Exceptions for Libraries and Archives (http://bit.ly/JWnjq7) and on Limitations and Exceptions for Education, Teaching and Research Institutions and Persons with Other Disabilities (http://bit.ly/JWnjq7). Nehaa Chaudhari participated as a speaker. India and the United States introduced 6 proposals on the WIPO Broadcast Treaty: http://bit.ly/1edqvr3.

The following has been done under grant from the Wikimedia Foundation (http://bit.ly/SPqFOl). As part this project (http://bit.ly/X80ELd), we held 3 workshops in the month of December, published a detailed report of key accomplishments of the work done in Konkani Wikipedia, a report on Train the Trainer Program held in the month of October and published an article in DNA.

►Wikipedia

# Article

Telugu Wikipedia completes 10 years (by Rahmanuddin Shaik, DNA, December 16, 2013): http://bit.ly/19OAvUV. The article was edited by Rohini Lakshané.

# Report

CIS-A2K: Work Accomplished on Konkani Wikipedia (by Nitika Tandon, December 31, 2013): http://bit.ly/1l6ttmp. The report throws some light on the work accomplished on Konkani Wikipedia from September to December 2013.

# Blog Entries

First ever Train-the-Trainer Program in India (by Nitika Tandon, December 5, 2013): http://bit.ly/1euwSXt.

The following are videos of participants from the Konkani Vishwakosh Digitization project (jointly organised by CIS-A2K and Goa University) speaking on their experiences with Wikimedia projects.

Priyadarshini Tadkodkar on Konkani language (by Subhashish Panigrahi, November 17, 2013): http://bit.ly/1hldNM8. We are featuring this here as we didn’t carry this in the last newsletter.
Varsha Kavlekar on Konkani Wikipedia Incubator (by Nitika Tandon, December 12, 2013): http://bit.ly/KmxyFo.
Darshan Kandolkar on Konkani Vishwakosh Digitization Process (by Nitika Tandon, December 13, 2013): http://bit.ly/1cqKyQ2.
Darshana Mandrekar speaks on Konkani Wikipedia (by Nitika Tandon, December 16, 2013): http://bit.ly/1keWyya.
Pooja Tople on Wikimedia Projects (by Nitika Tandon, December 17, 2013): http://bit.ly/1hlbubU.

# Events Organised

You Too Can Write on Wikipedia! — Training workshop (National Institute of Tourism and Hotel Management, Gachibowli, Hyderabad, December 5, 2013): http://bit.ly/1edmx1z.
Telugu Wikipedia Training Workshop (KBN College, Vijaywada, December 16, 2013): http://bit.ly/1i8ScnL.
Kannada Wikipedia Workshop at Alvas Vishva Nudisiri Virasat (Moodabidre, December 19 – 22, 2013). Dr. U.B. Pavanaja gave a presentation about Kannada Wikipedia and also conducted a workshop on Kannada Wikipedia as a parallel track. The event was covered by Prajavani (December 22), Hosadigantha (December 22), and Deccan Herald (December 22): http://bit.ly/1dGTBkw.

# Events Co-organised

Wikipedia Orientation Workshop (organised by CIS-A2K and Christ University, Bangalore, December 2, 2013): http://bit.ly/1lrkwEy.
Wikipedia Training Session @ Tiruvur (organised by CIS-A2K and Telugu Wikipedia community, Srivahini College, Tiruvur, December 19, 2013). T. Vishnu Vardhan and Rahmanuddin Shaik conducted the workshop: http://bit.ly/1e3oQX7. It was covered by Andhraprabha (http://bit.ly/1bU5VsQ), Eenadu (http://bit.ly/19fsttf), Sakshi (http://bit.ly/1e3pQdU), and Prajasakthi (http://bit.ly/JJs7ja) on December 19, 2013.

# Event Participated In

A Wikipedia Workshop at IISC (organised by the Assamese Wikipedia community, Bangalore, December 1, 2013). CIS-A2K team and Wikipedian Shiju Alex supported this event: http://bit.ly/1dSutY2.

# Media Coverage

CIS gave its inputs for the following media coverage:

A Feature on Telugu Wikipedia (Namaste Telengana Newspaper, December 8, 2013): http://bit.ly/19Yjwj6.
Odisha: Odia Wikipedia reaching 5000 article mark! (Odisha Diary Bureau, December 17, 2013): http://bit.ly/1dGU2vc.

-----------------------------------------------
Internet Governance
-----------------------------------------------
CIS is doing a project (under a grant from Privacy International and International Development Research Centre (IDRC)) on conducting research on surveillance and freedom of expression (SAFEGUARDS). So far we have organised seven privacy round-tables and drafted the Privacy (Protection) Bill. This month we bring you an analysis on whether Bitcoin can be banned by the government and a blog post on misuse of surveillance powers in India. As part of its project (funded by Citizen Lab, Munk School of Global Affairs, University of Toronto and support from the IDRC) on mapping cyber security actors in South Asia and South East Asia a film DesiSec: Episode 1was screened. We also did an interview with Pranesh Prakash on cyber security. With this we have completed a total of 13 video interviews so far:

# Analysis

Can Bitcoin Be Banned by the Indian Government? (by Vipul Kharbanda, December 24, 2013): http://bit.ly/1lJrnGF.

# Blog Entries

Misuse of Surveillance Powers in India (Case 1) (by Pranesh Prakash, December 6, 2013): http://bit.ly/1donbaJ.
Brochures from Expos on Smart Cards, e-Security, RFID & Biometrics in India (by Maria Xynou, December 18, 2013): http://bit.ly/1f714fN.
India’s Identity Crisis (by Malavika Jayaram, December 31, 2013 Internet Monitor Annual Report: Reflections on the Digital World, published by Harvard's Berkman Center for Internet and Society): http://bit.ly/1lTRuuz.

# Upcoming Events

Digital Citizens: Why Cyber Security and Online Privacy are Vital to the Success of Democracy and Freedom of Expression (CIS, Bangalore, January 14, 2014): http://bit.ly/KucEU5. Michael Oghia will give a talk.
CPDP 2014 Reforming Data Protection: The Global Perspective (Brussels, January 22 – 24, 2014): http://bit.ly/KsgCws.
Nullcon Goa Feb 2014 — International Security Conference (organised by Nullcon, Bogmallo Beach Resort, Goa, February 12 – 15, 2014). CIS is one of the sponsors for this event: http://bit.ly/1lrBu5I.

# Events Organised

Big Democracy: Big Surveillance - A talk by Maria Xynou (CIS, Bangalore, December 3, 2013): http://bit.ly/19YnA31.
DesiSec: Episode 1 - Film Release and Screening (CIS, December 11, 2013): http://bit.ly/1lJt2fm.
Legal Issues pertaining to Cloud Computing (NLSIU Campus, Bangalore, December 14-15, 2013): http://bit.ly/1cvcmGq.
Biometrics or Bust? Implications of the UID for Participation and Inclusion (CIS, Bangalore, January 10, 2014). Malavika Jayaram will give a talk: http://bit.ly/1lJZhuK.

# Events Participated In

Convention on Crisis of Capitalism and brazen onslaught on Democracy (organized by INSAF, December 6, 2013). Snehashish Ghosh participated as a speaker: http://bit.ly/1gAxmNy.
International View of the State-of-the-Art of Cryptography and Security and its Use in Practice (IV) (jointly organized by Microsoft Research India, Indian Institute of Science, and Indian Institute of Technology Madras, December 6, 2013). Sunil Abraham was a panellist: http://bit.ly/1eAXl5t.
Technology in Government and Topics in Privacy (organized by Data Privacy Lab, CGIS Cafe, Cambridge Street, Harvard University Campus, December 9, 2013). Malavika Jayaram participated as a speaker on Biometrics in Beta – India's Identity Experiment: http://bit.ly/1bJDqht.
Cyberscholars Working Group at MIT (organized by the Berkman Center for Internet & Society, Harvard University, December 12, 2013): Malavika Jayaram made a presentation on Biometrics or Bust - India’s Identity Crisis: http://bit.ly/1eIpHef.
Seventh NLSIR Symposium on “Bridging the Security-Liberty Divide” (organised by National Law School, Bangalore, December 21-22). Chinmayi Arun and Bhairav Acharya were speakers at this event: http://bit.ly/1gjsxYe.

--------------------------------
News & Media Coverage
--------------------------------
CIS gave its inputs to the following media coverage:

MongoDB startup hired by Aadhaar got funds from CIA VC arm (by Lison Joseph, Economic Times, December 3, 2013): http://bit.ly/1f77bRg.
A Three-Way Race Draws Delhi’s Young, and Everyone Else, Out to Vote (by Betwa Sharma, New York Times, December 4, 2013): http://bit.ly/1gAxoFf.
India for UN body to resolve internet governance issues (by Kim Arora, The Times of India, December 5, 2013): http://bit.ly/JWESqe.
Card transactions with Aadhaar validation need more time: experts (by Kirti V. Rao and Moulishree Srivastava, Livemint, December 5, 2013): http://bit.ly/1hq35UL.
Indian government wakes up to risk of Hotmail, Gmail (originally published by AFP, December 7, 2013): http://bit.ly/19LrlOS. This was also mirrored in The Times of India (http://bit.ly/1hpYEJu), Reuters (http://bit.ly/1gaHhZk), Dawn (http://bit.ly/1azuV95), NDTV (http://bit.ly/19Ys7lS), Yahoo News (http://yhoo.it/JCSreE), The Malaysian Insider (http://bit.ly/1eAPAMW) and Asia One Digital (http://bit.ly/JWuw9R). A slightly modified version was published by Silicon India on December 11: http://bit.ly/1gAtzjd.

# Announcement

Pranesh Prakash has been elected as the Asia-Pacific representative to the executive committee of the NonCommercial Users Constituency (NCUC) (part of the Non-Commercial Stakeholders Group, which is in turn part of the Generic Names Supporting Organization, which is in turn part of ICANN): http://bit.ly/KuIVeC.

--------------------------------
Telecom
-------------------------------
Shyam Ponappa, a Distinguished Fellow at CIS is a regular columnist with the Business Standard. The articles published on his blog Organizing India Blogspot is mirrored on our website:

# Newspaper Column

For a Telecom Revival (by Shyam Ponappa, Business Standard, December 4, 2013 and Organizing India Blogspot, December 5, 2013): http://bit.ly/1avRDii.

--------------------------------
Digital Humanities
--------------------------------
CIS is building research clusters in the field of Digital Humanities. The Digital will be used as a way of unpacking the debates in humanities and social sciences and look at the new frameworks, concepts and ideas that emerge in our engagement with the digital. The clusters aim to produce and document new conversations and debates that shape the contours of Digital Humanities in Asia:

# Blog Entry

The Conflict of Konigsberg (by Anirudh Sridhar, December 17, 2013): http://bit.ly/1cEXhhU.

--------------------------------
Digital Natives
--------------------------------
CIS is doing a research project titled “Making Change”. The project will explore new ways of defining, locating, and understanding change in network societies. Having the thought piece 'Whose Change is it Anyway' as an entry point for discussion and reflection, the project will feature profiles, interviews and responses of change-makers to questions around current mechanisms and practices of change in South Asia and South East Asia:

►Making Change Project

# Blog Entries

Tactical Technology: Information is Power? (by Denisse Albornoz, December 26, 2013): http://bit.ly/1cEUrcY.
Tactical Technology: Designing Activism (by Denisse Albornoz, December 27, 2013): http://bit.ly/1a9IuzH.

►Other

# Newspaper Column

Digital Native (by Nishant Shah, Indian Express, December 22, 2013): http://bit.ly/1f7mU2P.

------------------------------------------------------------
Knowledge Repository on Internet Access
------------------------------------------------------------
CIS in partnership with the Ford Foundation is executing a project to create a knowledge repository on Internet and society. This repository will comprise content targeted primarily at civil society with a view to enabling their informed participation in the Indian Internet and ICT policy space. The repository is available at the Internet Institute website: http://bit.ly/1iQT2UB.

# Upcoming Event

Institute on Internet and Society (organised by Ford Foundation and CIS, Yashada, Pune, February 11-17, 2014): http://bit.ly/180mQi9. Registrations are closed for this event.

# Modules

History of the Internet: Building Conceptual Frameworks (by Nishant Shah, December 31, 2013): http://bit.ly/19WRHLb.
Internet Privacy in India (by Elonnai Hickok, December 31, 2013): http://bit.ly/19SNk6v.

-----------------------------------------------------
About CIS
-----------------------------------------------------
The Centre for Internet and Society is a non-profit research organization that works on policy issues relating to freedom of expression, privacy, accessibility for persons with disabilities, access to knowledge and IPR reform, and openness (including open government, FOSS, open standards, etc.), and engages in academic research on digital natives and digital humanities.

► Follow us elsewhere

Twitter:https://twitter.com/CISA2K
Facebook group: https://www.facebook.com/cisa2k
Visit us at:https://meta.wikimedia.org/wiki/India_Access_To_Knowledge
E-mail: a2k@cis-india.org

► Support Us

Please help us defend consumer / citizen rights on the Internet! Write a cheque in favour of ‘The Centre for Internet and Society’ and mail it to us at No. 194, 2nd ‘C’ Cross, Domlur, 2nd Stage, Bengaluru – 5600 71.

► Request for Collaboration:
We invite researchers, practitioners, and theoreticians, both organisationally and as individuals, to collaboratively engage with Internet and society and improve our understanding of this new field. To discuss the research collaborations, write to Sunil Abraham, Executive Director, at sunil@cis-india.org or Nishant Shah, Director – Research, at nishant@cis-india.org. To discuss collaborations on Indic language wikipedia, write to T. Vishnu Vardhan, Programme Director, A2K, at vishnu@cis-india.org.

CIS is grateful to its donors, Wikimedia Foundation, Ford Foundation, Privacy International, UK, Hans Foundation and the Kusuma Trust which was founded by Anurag Dikshit and Soma Pujari, philanthropists of Indian origin, for its core funding and support for most of its projects.

For more details visit https://cis-india.org/about/newsletters/december-2013-bulletin