Centre for Internet and Society

Web Accessibility Policy Making

praskrishna — 2012-06-21T06:28:22Z

For more details visit https://cis-india.org/home-images/WebAccessibility.jpg

Knowledge Repository on Internet Access

praskrishna — 2016-07-17T03:41:56Z

Ford Foundation and the Centre for Internet & Society bring you research on the origins of the Internet in India, its impact on the Indian GDP and topics and debates surrounding the Internet in today's world.

Knowledge Repository on Internet Access

For more details visit https://cis-india.org/telecom/knowledge-repository-on-internet-access/knowledge-repository-on-internet-access

AI Consumer Experiences

praskrishna — 2019-05-28T01:53:11Z

For more details visit https://cis-india.org/a2k/files/ai-consumer-experiences

Project Tiger: Wikipedia ropes in locals to contribute articles in Indian languages

praskrishna — 2019-06-05T06:37:55Z

The project has generated content in Kannada, Tamil, Malayalam, Hindi, Marathi, Punjabi, Bengali, Urdu, Odiya and Gujarati.

The article by Tushar Kaushik was published in Economic Times on May 29, 2019.

Hundreds of people from across the country are generating online content in local Indian languages and are even competing in ‘editathons’ that pit contributors of different languages against each other.

While online encyclopedia Wikipedia’s content might be exhaustive in English, its content in Indian languages is limited. Keeping this in mind, Wikipedia’s parent organization Wikimedia Foundation, and Google, roped in Bengaluru-based Centre for Internet and Society (CIS) - Access to Knowledge (CIS-A2K), Wikimedia India Chapter in 2017 and started ‘Project Tiger’ aimed at generating more content in Indian languages. A pilot project was held from December 2017 to May 2018 and another phase of the competition is set to begin next month. The project has generated content in major languages such as Kannada, Tamil, Telugu, Malayalam, Hindi, Marathi, Punjabi, Bengali, Urdu, Odia and Gujarati.

The contributors are from varied age groups, some are also from remote, rural areas and they worked from different cities across the country. Two years ago, Durga Prasanna, a journalism student at Alva’s college in Karnataka’s Dakshina Kannada district, joined a group of contributors to Wikipedia as part of a requirement from the college. She got an opportunity to participate in ‘Project Tiger’ last year. She generated Wikipedia entries in Kannada and also in the regional languages of Tulu and Konkani. Apart from Durga, seven other students of her college together contributed over 70 articles in Kannada, and a few in Tulu and Konkani, during the ‘editathon’. “We were provided a long list of topics on which not much literature existed in the local languages and among them, we chose topics based on our interests. For example, I wrote articles on ‘psychologist’ and ‘medicinal plants’,” she said.

Another participant, Charan Gill, a 65-year-old former social worker from Patiala, Punjab, was the top contributor in Punjabi. “I wrote 432 articles in a span of two-and-a-half months.However, contributing is not new to me as I have written over 10,000 Wikipedia entries in Punjabi since 2012,” he says.

Gill now works with another Wikimedia project, translating literary classics into Punjabi. He is currently translating some works of 19th century Russian author Ivan Turgenev. Thanksto Gill’s contributions, the Punjabi community of contributors won the prize for producing the most articles — 1,320. In Tamil, 1,241 articles were contributed. A total of 78 articleswere produced in Kannada by eight members.

Gopalakrishna A, community advocate for Kannada language, CIS-A2K, said all written articles were evaluated by a Wikimedia team jury to check if they fulfilled all criteria beforebeing uploaded on Wikipedia set for the contest. Once they fulfil the criteria, the articles are eligible for the prizes. “The main idea was to create content in Indian languages. Thethings most Indian contributors required were internet and hardware support. So participants who had made significant contributions prior to the competition Wikimediaprojects were provided internet connections or laptops Chromebooks,” he said.

For more details visit https://cis-india.org/a2k/news/economic-times-may-29-2019-tushar-kaushik-project-tiger

Linking India

praskrishna — 2019-06-05T13:56:52Z

Linking India

For more details visit https://cis-india.org/home-images/LinkingIndia.jpg

May 2019 Newsletter

praskrishna — 2019-06-26T01:40:33Z

The Centre for Internet & Society Newsletter for the month of May 2019

Highlights for May 2019

Omidyar Network is investing in in establishing a three-region research alliance co-led by the Institute for Technology & Society, Brazil , the Centre for Intellectual Property and Information Technology Law, Kenya, and the Centre for Internet & Society (CIS), India on appropriate use of Digital Identity. CIS will look at the policy objectives of digital identity projects, how technological policy choices can be thought through to meet the objectives, and how legitimate uses of a digital identity framework may be evaluated. The term Fintech is generally used to describe innovative technology and technological processes being used in the financial services sector. Vipul Kharbanda has presented a detailed analysis of RBI’s Draft Framework on Regulatory Sandbox for Fintech. Centre for Internet & Society's 'Access to Knowledge' wing (CIS-A2K) signed a MoU with PAH Solapur University, Maharashtra to promote content generation in Wikimedia projects among the institutions under University affiliation and develop a platform in the university for outreach programs on digital knowledge, language and technologies, FOSS, unicode, etc. Timely and affordable access to scientific research remains a problem in this digital day and age. Most countries including India, continue to struggle with implementing open access. The latest international initiative (created in Europe) to remedy this problem is Plan S. This has been positioned as a strategy to implement immediate open access to scientific publications from 2021 which India is considering adopting. Anubha Sinha in an article unpacks the disorderly growth of open access in India, and discusses the gap between the Plan's vision and current Indian scenario in some respects Shweta Mohandas was nominated to curate Genderlog's Twitter handle (@genderlogindia). She tweeted about topics related to gender and data, more specifically around AI, big data, privacy and surveillance. Sumandro Chattapadhyay and Tim Davies co-authored a chapter titled Open Data and Land Ownership in State of Open Data book which was recently launched at World Bank. The authors have thrown light on how the lessons from the land ownership field highlight the political nature of data, and illustrate the importance of politically aware interventions when creating open data standards, infrastructure, and ecosystems. The Bodies of Evidence collection, edited by Bishakha Datta and Richa Kaul Padte, is a collaboration between Point of View and CIS as part of the Big Data for Development Network supported by International Development Research Centre, Canada. Can data ever know who we really are? This is an excerpt from an essay by Zara Rahman, written for and published as part of the Bodies of Evidence collection of Deep Dives.

CIS and the News

The following news pieces were authored by CIS and published on its website in May:

How privacy fares in the 2019 election manifestos | Opinion (Aayush Rathi and Ambika Tandon; May 1, 2019).
Democracy, Digital India and Networks (Shyam Ponappa; Business Standard; May 1, 2019).
Why the TikTok ban is worrying (Gurshabad Grover; Hindustan Times; May 2, 2019).
Digital Native: Narendra Modi’s interview by Akshay Kumar is a PR masterpiece (Nishant Shah; Indian Express; May 5, 2019).
Will the WTO Finally Tackle the ‘Trump’ Card of National Security? (Arindrajit Basu; The Wire; May 8, 2019).
Digital Native: Three things we need to realise about what TikTok is doing to us (Nishant Shah; Indian Express; May 19, 2019).
Open Data and Land Ownership (Sumandro Chattapadhyay; State of Open Data; May 22, 2019).
Can EVM vulnerabilities be used to game the Indian election? (Karan Saini; Kaarana Blog; May 22, 2019).
The Huawei bogey (Gurshabad Grover; Indian Express; May 30, 2019).

CIS in the News

CIS was quoted in these news articles published elsewhere:

Cyber criminals hide in the ‘dark web’ to remain anonymous (Tushar Kaushik; Economic Times; May 2, 2019).
BJP outspends Congress, others in social media advertising (Vidhi Choudhary; Hindustan Times; May 3, 2019).
Three emerging market think tanks to collaborate on Good ID recommendations with Omidyar backing (Chris Burt; Biometric Update; May 8, 2019).
"Aadhaar Reduced Agency in Citizens and Empowered Those in Positions of Authority" (Martin Moore; News Click; May 20, 2019).
In Parts of India, Internet Shutdowns Are a Fact of Life (Megha Bahree; Top10VPN; May 21, 2019).
Artificial Intelligence: Consumer Experiences in New Technologies (Consumer International; May 28, 2019).

Access to Knowledge

Our Access to Knowledge programme currently consists of two projects. The Pervasive Technologies project, conducted under a grant from the International Development Research Centre (IDRC), aims to conduct research on the complex interplay between low-cost pervasive technologies and intellectual property, in order to encourage the proliferation and development of such technologies as a social good. The Wikipedia project, which is under a grant from the Wikimedia Foundation, is for the growth of Indic language communities and projects by designing community collaborations and partnerships that recruit and cultivate new editors and explore innovative approaches to building projects.

Copyright & Patent

Blog Entry

Should India adopt Plan S to realise Open Access to Public-funded Scientific Research? (Anubha Sinha; May 29, 2019).

Wikipdedia

As part of the project grant from the Wikimedia Foundation we have reached out to more than 3500 people across India by organizing more than 100 outreach events and catalysed the release of encyclopaedic and other content under the Creative Commons (CC-BY-3.0) license in four Indian languages (21 books in Telugu, 13 in Odia, 4 volumes of encyclopaedia in Konkani and 6 volumes in Kannada, and 1 book on Odia language history in English).

Blog Entries

Wikipedia assignments workshop for Post Graduate students in PAH Solapur University (Subodh Kulkarni; May 3, 2019).
Wikisource Workshop at Vigyan Ashram, Pabal (Subodh Kulkarni; May 26, 2019)
MoU between PAH Solapur University & CIS-A2K (Subodh Kulkarni; May 31, 2019).

Jobs

CIS-A2K team is seeking applications for the following posts:

Events

Train-the-Trainer 2019 (Organized by CIS-A2K; Vishakhapatnam; May 31 - June 2, 2019).
Wikimedia Education SAARC conference (Organized by Christ University (Deemed to be University) with the association of CIS-A2K; Christ University; Bangalore; June 20 - June 22, 2019).

Media Coverage

Ahmedabad Wikisource Workshop (Vishwavihar; May 13, 2019).
Youths come forward to augment Assamese Wikisource project (NE Now News; May 17, 2019).
Wikipedia looks to ramp up its Indian language content (Tushar Kaushik; May 28, 2019).
Project Tiger: Wikipedia ropes in locals to contribute articles in Indian languages (Tushar Kaushik; May 29, 2019).

Openness

Publication

Open Data and Land Ownership (State of Open Data; Sumandro Chattapadhyay; May 22, 2019).

Internet Governance

As part of its research on privacy and free speech, CIS is engaged with two different projects. The first one (under a grant from Privacy International and IDRC) is on surveillance and freedom of expression (SAFEGUARDS). The second one (under a grant from MacArthur Foundation) is on restrictions that the Indian government has placed on freedom of expression online.

Digital Identity

Announcement

Announcement of a Three-Region Research Alliance on the Appropriate Use of Digital Identity (Amber Sinha; May 13, 2019).

Event Organized

Picking ‘Wholes’ - Thinking in Systems Workshop (Organized by CIS; New Delhi; May 27 - 28, 2019).

Gender

Blog Entry

Workshop on Feminist Information Infrastructure (Ambika Tandon; edited by Gurshabad Grover and designed by Saumyaa Naidu; May 9, 2019).

Free Speech

Participation in Events

Stockholm Internet Forum 2019 (Organized by Stockholm Internet Forum 2019; Stockholm; May 16 - 17, 2019). Gurshabad Grover was a panelist in the discussion on 'Influencing Internet Governance' co-organised by Article 19.
Consilience 2019 (Organized by the Law and Technology Society; National Law School of India University, Bangalore; May 25, 2019). Gurshabad Grover was a panelist on the discussion on 'Online Content Regulation: Global Perspectives and Solutions'.

Privacy

Research Paper

An Analysis of the RBI’s Draft Framework on Regulatory Sandbox for Fintech (Vipul Kharbanda; May 8, 2019).

Participation in Events

Data Empowerment And Protection Architecture (DEPA) Workshop (Organized by iSPIRT Foundation; May 18, 2019). Pranav Manjesh Bidare attended the workshop.
ABLI Privacy Workshop (Organized by Asian Business Law Institute; Singapore; May 21 - 22, 2019). Elonnai Hickok participated in the event.
HillHacks 2019 (Organized by HillHacks; Bir, Himachal Pradesh; May 24 - 26, 2019). Karan Saini was a speaker.

Artificial Intelligence

Participation in Events

Society 5.0 and Artificial Intelligence with a Human Face (Organized by Indian Council for Research on International Economic Relations; India Habitat Centre, New Delhi). Radhika Radhakrishnan attended a roundtable consultation.
AI for Good Workshop (Organized by Swissnex India and Wadhwani AI; Bangalore; May 22, 2019).
MWC19 Shanghai AI and Trust in APAC and China (Organized by Digital Asia Hub; MWC Shanghai; June 27, 2019). Sunil Abraham will be making a presentation at the summit on AI and Trust in APAC and China. Sunil has been invited as a speaker on panel ‘Framing AI for Digital Upstarts’.

Cyber Security

Participation in Event

Shining light into darkness: Encouraging greater transparency of government offensive practices in cyberspace (Organized by Rights Con; Tunis; June 12, 2019). Sunil Abraham will be attending a conversation on encouraging greater transparency of government offensive practices in cyberspace.

Telecom

The growth in telecommunications in India has been impressive. While the potential for growth and returns exist, a range of issues need to be addressed for this potential to be realized. One aspect is more extensive rural coverage and the second aspect is a countrywide access to broadband which is low at about eight million subscriptions.

Article

Democracy, Digital India and Networks (Shyam Ponappa; Organizing India Blogspot; May 1, 2019).

Participation in Event

Live [Closed]: TRAI Open House Discussion on OTT Regulation - Delhi (Organized by TRAI; New Delhi; May 20, 2019). Anubha Sinha attended the event.

Researchers at Work (RAW)

The Researchers at Work (RAW) programme is an interdisciplinary research initiative driven by an emerging need to understand the reconfigurations of social practices and structures through the Internet and digital media technologies, and vice versa. It aims to produce local and contextual accounts of interactions, negotiations, and resolutions between the Internet, and socio-material and geo-political processes:

Essay

Can data ever know who we really are? (Zara Rahman; May 22, 2019).

Blog Entries

War Driving in Lhasa Vegas (Oxblood Ruffin; May 11, 2019).

#DotBharatAdoption (Dr. Amit Prakash, K.A. Dayanand, Dr. Srinivasan Ramani, Dr. V. Sridhar, and Vivek Pani; May 11, 2019).
#MaterialisingWriting (Dibyadyuti Roy, Indrani Roy, Padmini Ray Murray, and Puthiya Purayil Sneha; May 21, 2019).
The Shadow that Social Media Casts: The Doubled Offlines of Online Sociality (Karandeep Mehra; May 21, 2019).

About CIS

The Centre for Internet and Society (CIS) is a non-profit organisation that undertakes interdisciplinary research on internet and digital technologies from policy and academic perspectives. The areas of focus include digital accessibility for persons with disabilities, access to knowledge, intellectual property rights, openness (including open data, free and open source software, open standards, open access, open educational resources, and open video), internet governance, telecommunication reform, digital privacy, and cyber-security. The academic research at CIS seeks to understand the reconfigurations of social and cultural processes and structures as mediated through the internet and digital media technologies.

► Follow us elsewhere

Twitter: http://twitter.com/cis_india
Twitter - Access to Knowledge: https://twitter.com/CISA2K
Twitter - Information Policy: https://twitter.com/CIS_InfoPolicy
Facebook - Access to Knowledge: https://www.facebook.com/cisa2k
E-Mail - Access to Knowledge: a2k@cis-india.org
E-Mail - Researchers at Work: raw@cis-india.org
List - Researchers at Work: https://lists.ghserv.net/mailman/listinfo/researchers

► Support Us

Please help us defend consumer and citizen rights on the Internet! Write a cheque in favour of 'The Centre for Internet and Society' and mail it to us at No. 194, 2nd 'C' Cross, Domlur, 2nd Stage, Bengaluru - 5600 71.

► Request for Collaboration

We invite researchers, practitioners, artists, and theoreticians, both organisationally and as individuals, to engage with us on topics related internet and society, and improve our collective understanding of this field. To discuss such possibilities, please write to Sunil Abraham, Executive Director, at sunil@cis-india.org (for policy research), or Sumandro Chattapadhyay, Research Director, at sumandro@cis-india.org (for academic research), with an indication of the form and the content of the collaboration you might be interested in. To discuss collaborations on Indic language Wikipedia projects, write to Tanveer Hasan, Programme Officer, at tanveer@cis-india.org.

CIS is grateful to its primary donor the Kusuma Trust founded by Anurag Dikshit and Soma Pujari, philanthropists of Indian origin for its core funding and support for most of its projects. CIS is also grateful to its other donors, Wikimedia Foundation, Ford Foundation, Privacy International, UK, Hans Foundation, MacArthur Foundation, and IDRC for funding its various projects.

For more details visit https://cis-india.org/about/newsletters/may-2019-newsletter

Online gag:Existing rules give little freedom

praskrishna — 2011-12-12T05:42:05Z

Even as the controversy over Kapil Sibal's attempt to get internet giants such as Google and Facebook to prescreen user-generated content to weed out 'offensive' material rages, a yet-to-be-published study by Bangalore-based Centre for Internet and Society reveals that rules already in place can have "chilling effects on free expression on the internet".

The study set out to examine if the Information Technology (Intermediaries Guidelines) Rules 2011, notified in April 2011, could create a gagging effect on websites that provide a platform for user-generated content in the form of opinion and comments. Websites such as Facebook, Yahoo, YouTube and Twitter fall under this category. The study was commissioned by the Centre for Internet and Society, which was invited to comment on the department of information technology when it framed the seminal Information Technology Act 2000.

The study author set out to test the process of 'takedown' (requesting an internet entity to remove material that can be interpreted as 'hateful', 'disparaging', 'defamatory', etc) by notifying seven separate internet entities of content linked to their websites or hosted by them that could, in very loose terms, be deemed offensive. The entities are not named in the study.

This first-of-a-kind experiment included actions such as sending search engines a takedown notice alerting it to results on searching the keywords 'online gambling' and alerting a news website about comments on a news story related to the Telangana dispute.

In six of the seven cases, the intermediaries and hosts - technical terms for websites that host content - acted promptly to not only remove the 'offensive' content without due processes of investigation but in some cases went beyond their brief to remove all content connected with the one mentioned in the takedown notice.

For instance, a news website that was sent a takedown notice about a well-argued and non-abusive comment to an article on the Telangana issue took down not just that comment, but all 15 comments published below the article In the case of the results of a search for 'online gambling', despite the fact that intermediaries are exempted from being implicated in such cases, one search engine notified took down not just the three links mentioned in the notice but another 25 sub-domains as well, "presumably to avoid legal risk and to err on the side of caution," the CIS report says.

"Our criticism is of the policy and not of the websites and Internet entities that are forced to err on the side of caution when faced by such notices," says Sunil Abraham, executive director, Centre for Internet and Society. "We are aware that they do not always have the legal and manpower resources necessary to monitor the enormous volumes of content they host." These companies often overstep their brief in order to avoid legal hassles resulting from what Abraham calls "unconstitutional limits on free speech".

The original story was published by the Times of India on 9 December 2011. Sunil Abraham was quoted in it. Read the story on Times of India here

For more details visit https://cis-india.org/online-gag

Shuttleworth Foundation

praskrishna — 2017-06-25T03:51:01Z

Shuttleworth Foundation

For more details visit https://cis-india.org/home-images/ShuttleworthFoundation.jpg

Preliminary Findings: Working Requirements for Complex Products under the Indian Patent System

praskrishna — 2017-08-22T13:48:08Z

Prof. Jorge L. Contreras gave a talk on a forthcoming paper "Preliminary Findings: Working Requirements for Complex Products under the Indian Patent System" at the "2nd International Conference on Standardisation, Patents and Competition Issues" held on June 10 and 11, 2017 in New Delhi. The conference was organized by O.P. Jindal Global University.

The paper contains findings a study by Rohini Lakshane of CIS and Prof Jorge Contreras, University of Utah on the Statements of Working (Form 27) of the patents they found for their previous paper "Patents and mobile devices in India: An empirical survey". View the slide deck. See the event website. To read the Research Methodology click here.

For more details visit https://cis-india.org/a2k/news/2nd-international-conference-on-standardisation-patents-and-competition-issues

GoldenEye ransomware attack hit operations at Pipavav Port, JNPT

praskrishna — 2017-07-06T22:53:13Z

Shipping ministry says the GoldenEye ransomware attack at JNPT and Pipavav port may result in bunching of inbound and outbound cargo.

The article by Jyotika Sood and Utpal Bhaskar was published in Livemint on June 28, 2017. Pranesh Prakash was quoted.

Operations at one of three terminals at India’s largest container port, Jawaharlal Nehru Port Trust (JNPT) run by AP Moller-Maersk, near Mumbai, were disrupted by a global ransomware attack, the port said on Wednesday. The version that caused the disruption has been dubbed GoldenEye by security firm Bitdefender Labs.

Operations at the Danish firm’s terminal at Gujarat Pipavav Port were also affected, but by the Petya variant of the ransomware.

Ransomware typically logs users out of their own systems and asks them to pay a ransom if they want to access the encrypted data.

“The central server is in Europe which we can’t control. It is not a problem aimed at India... we have become collateral damage,” said a senior Indian government official involved in cybersecurity operations.

The ransomware hit the integrated transport and logistics firm’s global operations on Tuesday across its 75 terminals. It also impacted Chernobyl’s radiation monitoring system, law firm DLA Piper, pharma firm Merck, a number of banks, an airport, the Kiev metro, British advertising giant WPP and Russian oil firm Rosneft, according to Bitdefender Labs.

“The IT (information technology) department of JNPT became aware of the attack at around 4.30pm on Tuesday. The Windows server started conking off and the master file got encrypted and we couldn’t access any data. The operations immediately came to a standstill,” said a JNPT official requesting anonymity.

AP Moller-Maersk operates the Gateway Terminals India (GTI) at JNPT which has a capacity to handle 1.8 million standard container units. JNPT, which ships more than half the containerized cargo passing through India’s ports, serves a vast hinterland comprising all of northern and western India.

“While DP World and JNPT terminals are operational, the Gateway Terminals India operated by APM is completely shut,” said the JNPT official.

This is the second major ransomware attack since May after hackers exploited a loophole that was first identified by the US National Security Agency, to create WannaCry, that affected several businesses in more than 150 countries including India.

The ministry of corporate affairs and the Andhra Pradesh Police were affected, besides several large organizations..

“While the terminal operator is taking steps to address the issues disrupting operations, it is anticipated that there could be bunching of in-bound and out-bound container cargo,” India’s shipping ministry said in a statement.

Maersk group, through its terminal and infrastructure business, has invested $800 million in India.

“The global attack has impacted APM terminal of the JNPT port. The operations at the terminal have slowed down and are being entered manually. We are trying to handle the crisis by diverting traffic to other terminals,” JNPT chairman Anil Diggikar said, adding that JNPT’s operations have not been affected to a great extent.

He said it would take around 24 hours to clear the backlog.

Gujarat Pipavav Port told stock exchanges that the ransomware did not have “any major impact on the company at this point in time”.

Concerns have been expressed about the safety of India’s infrastructure projects with power generation and transmission projects figuring high on terrorist threat lists.

Ravi Shankar Prasad, minister of electronics and information technology, on Wednesday said advisories have been issued and the government is keeping a close watch on developments.

The Indian Computer Emergency Response Team (CERT-In), the agency coordinating efforts on cybersecurity issues, in a 27 June advisory warned, “It has been reported that variants of Petya ransomware with work-like capabilities are spreading.”

Such attacks pose a grave threat to the economy and businesses. Cybersecurity Ventures predicts global annual cybercrime costs will grow from $3 trillion in 2015 to $6 trillion by 2021.

Experts believe India is ill-equipped to face such attacks.

“These cases of malware attacks highlight the need for proper planning of cybersecurity at all levels, especially for the government infrastructure networks,” said Pranesh Prakash, policy director at the Centre for Internet and Society, a Bengaluru-based think tank.

“Transportation and shipping companies are ill-prepared for cyberattacks,” added Amit Jaju, executive director, fraud investigation and dispute services, EY.

The emergency playing out at the ports assumes significance, given India’s Rs8 trillion investment plan until 2035 under the Sagarmala programme, which involves the construction of new ports to harness the country’s 7,517km coastline and setting up of as many as 142 cargo terminals at major ports.

“Indian companies lose approximately Rs40,000 crore due to cybercrime every year. India is among the top 5 countries today in terms of the frequency and the number of cyber attacks,” Jaju said.

“We are not prepared at all. This is a question of cyber literacy because the latest attack has reused the same Windows vulnerability that was exploited by WannaCry ransomware last month and for which security patches were released almost three months ago by Microsoft,” added cybersecurity expert Mohit Kumar.

Anirudh Laskar, Mayank Aggarwal, Shally Seth & Komal Gupta contributed to the story.

For more details visit https://cis-india.org/internet-governance/news/livemint-june-28-2017-jyotika-sood-utpal-bhaskar-golden-eye-ransomware-attack-hit-operations-at-pipavav-port-jnpt

Second India China Think-Tank Forum

praskrishna — 2017-07-07T02:43:09Z

The second India-China Think-Tank Forum was held in Beijing from June 22 to 27, 2017. The Forum was jointly organized by the Institute of Chinese Studies, the Indian Council of World Affairs, and the Chinese Academy of Social Sciences. Saikat Dutta represented an Indian think tank.

The Forum was set up following an MoU between India and China during the visit of Prime Minister Narendra Modi in 2015. The idea of the forum is to explore contentious issues and new areas of cooperation between India and China as a Track 1.5 dialogue. Read More

Click here for the report

Click to read Saikat Dutta's presentation

For more details visit https://cis-india.org/internet-governance/news/second-india-china-think-tank-forum

Freedom of Expression on the Internet : Possibilities and Challenges

praskrishna — 2017-07-09T02:30:32Z

Sharat Chandra Ram was a speaker at an international seminar organized by Bolivar Technological University, Cartagena in Colombia on June 29, 2017. The theme of the seminar was ‘Freedom of Expression on the Internet : Possibilities and Challenges”.

For more info on the event, click here

For more details visit https://cis-india.org/internet-governance/news/freedom-of-expression-on-the-internet-possibilities-and-challenges

Act now to protect yourself against future ransomware attacks

praskrishna — 2017-07-10T14:46:14Z

There was Wannacry, then Petya, and several other lesser-known ones: With ransomware attacks coming thick and fast, get proactive about protecting yourself.

The article by Sanjay Kumar Singh was published by Business Standard on July 5, 2017.

The Wannacry ransomware attack in May was followed by the Petya attack last week. This attack affected the Ukrainian government and large corporates like Maersk and Merck. In India it affected the operations of terminals at Jawaharlal Nehru Port Trust (JNPT), operated by Maersk. According to Kaspersky Lab, the rate of ransomware attacks on businesses grew from one every 120 seconds in January 2016 to one every 40 seconds by October that year. The rate of attack on individuals' computers rose from one every 20 seconds to one every 10 seconds over this period. Today, it has become imperative for everyone, including entrepreneurs and small business owners, to learn how to defend themselves against such attacks.

A trend witnessed in 2016 was the growth of ransomware-as-a-service business model. "Code creators offer their malicious product on demand, selling uniquely modified versions to criminals who then distribute it through spam and websites, paying a commission to the creator," says Altaf Halde, managing director, Kaspersky Lab (South Asia). He adds that the growth of cashless payments in India will undoubtedly attract the attention of cyber criminals and lead to more attacks in future.

Next, let us turn to how ransomware works. An operating system (OS) is a large and complicated piece of software with millions of lines of software code. A malware exploits vulnerabilities within the OS to infiltrate it. An infiltration can happen in multiple ways: if you download a malicious email attachment, visit a code-carrying web site, via an infected pen drive, and so on.

Ransomware is a form of malware that encrypts the files in a critical part of the computer, such as My Documents or Desktop, where people usually store their files. It could also encrypt specific file types, say, such .doc files. The user is then informed that his files have been encrypted along with the warning that unless he pays up within the next few hours his files will be deleted. Says Udbhav Tiwari, policy officer at the Centre for Internet and Society, Bengaluru: "You first have to first pay the attackers using anonymous money like bitcoins and then they give you the key for decrypting your files."

A ransomware attack can be dealt with in two ways: either pay the money and get the files unlocked, or find a way to circumvent the encryption. The latter option can, however, take a fair bit of time.

Safeguard measure you should adopt
Back up important files regularly. Check periodically that these files have not got damaged Enable ‘Show file extensions’ option in Windows settings. Stay away from extensions like “exe”, “vbs” and “scr”. Many familiar file types can be dangerous as scammers use multiple extensions (like hot-chics.avi.exe or doc.scr) If you discover an unknown process on your machine, cut off the Internet connection immediately If you have been infected, find the name of the ransomware. If it's an older version, your files can be restored. For restoration tools visit https://www.nomoreransom.org/

Among the safeguard measures you should adopt, first and foremost, never open a suspicious file. By being vigilant you can avoid a lot of ransomware attacks.

Most malware exploit vulnerabilities within the OS. "These vulnerabilities are frequently patched by the creators of the OS. But if people use pirated OS, or don't upgrade it regularly, they could land in trouble," says Tiwari. Soon after the Wannacry attack, Microsoft had issued a patch. People who updated their computers immediately didn't get affected by it. Also, use the latest version of an OS.

Use a quality antivirus (AV) solution, which is usually one you have to pay for. A high-quality AV can even protect you against vulnerabilities not patched by the OS manufacturer. AVs scan files. If they detect patterns indicating the presence of malware, they lock them apart from the rest of the computer, thereby preventing them from spreading.

One option is to use an OS that is less vulnerable, like Mac and Linux. Fewer malware are designed for these OS as fewer people use them.

Finally, if your files do get encrypted, don’t pay the ransom, unless instant access to those files is critical. "Each payment only fuels this unlawful business," says Halde.

For more details visit https://cis-india.org/internet-governance/news/business-standard-july-5-2017-sanjay-kumar-singh-act-now-to-protect-yourself-against-future-ransomware-attacks

Reliance Jio data leaked on website : report

praskrishna — 2017-07-10T14:53:42Z

Reliance Jio customer data was leaked on independent website magicapk.com, including details such as names, mobile numbers and email IDs , said a report.

The article was published by Livemint on July 10, 2017.

Reliance Jio Infocomm Ltd’s customer data was allegedly leaked on an independent website, magicapk.com, a report said. Jio, which crossed the 100 million mark in February, barely six months after it was launched, ended the financial year with 108.9 million subscribers as of 31 March.

The report, published first in a late-night article on Sunday on Fonearena.com, alleged that “several sensitive details” were exposed, including customers’ first and last names, mobile numbers, email IDs, circles, SIM activation dates and even the Aadhaar numbers. The Aadhaar numbers, however, were redacted on magicapk.

“To my disbelief I found my own details in the database and also couple of my colleagues are affected too,” wrote Varun Krish, the author of the article. However, if you now click on Magicapk.com, it reads: “This Account has been suspended .” The Registrar of the site, according to the whois database, is Godaddy.com, LLC.

When contacted, a Reliance Jio spokesperson said, “We have come across the unverified and unsubstantiated claims of the website and are investigating it. Prima facie, the data appears to be unauthentic. We want to assure our subscribers that their data is safe and maintained with highest security. Data is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken.”

Fonearena.com, on its site, has responded with a: “We still stand by our story.”

The report assumes significance because the site exposed redacted Aadhaar card details. There are nearly 1.2 billion Aadhaar number holders in the country. Aadhaar aims to plug leakages in the delivery of state benefits, such as subsidized grains to the poor, and aid in generating a savings of about Rs70,000 crore a year for the government. But data breaches have rattled citizens, especially since India does not have a Privacy Act.

In March, the Unique Identification Authority of India (UIDAI) blacklisted a common services centre for 10 years after it shared the Aadhaar details of former cricket captain Mahendra Singh Dhoni. On 25 April, Mint reported that many government departments, including the ministry of drinking water and sanitation, the Jharkhand Directorate of Social Security, and the Kerala government’s pension department, had published Aadhaar numbers of beneficiaries of the schemes they run in violation of the Aadhaar Act .

On 1 May, Bengaluru-based think tank Centre for Internet and Society (CIS) reported that a Central government ministry and a state government may have made public up to 135 million Aadhaar numbers .

Under the Aadhaar (Targeted Delivery of Financial Subsidies, Benefits and Services) Act, 2016, the unique identity number is mandatory only to receive social welfare benefits. However, tagging of the Aadhaar number is being made mandatory by the government for various schemes including PAN (permanent account number) accounts for taxation. On 7 July, the Supreme Court refused to pass any interim order against the mandatory use of Aadhaar for various government schemes. It, instead, suggested that petitioners call for immediate formation of a Constitution bench to decide on the case .

News of the alleged data leak also comes at a time when there have been a spate of cyber hacks.

For instance, just when companies started believing that WannaCry—the malware that held over 200,000 individuals across 10,000 organizations in nearly 100 countries to ransom—was on the wane, a virus christened GoldenEye (a variant of the Petya ransomware) by security firm Bitdefender Labs attacked companies, mostly in Ukraine. And while the target primarily appeared to be European countries, the ransomware was also reported to be making inroads in countries like India.

For more details visit https://cis-india.org/internet-governance/news/livemint-july-10-2017-reliance-jio-data-leaked-on-website-report

WSIS Forum 2017

praskrishna — 2017-07-18T02:00:44Z

WSIS Forum 2017 was held 12-16 June in Geneva, and included the participation of more than 85 high-level government and civil society representatives, as well as 500 remote interventions and thousands following the webcast. The forum was chaired by Mr Jean Philbert Nsengimana, Minister of Youth and ICT, Government of Rwanda, and co-organized by ITU, UNESCO, UNCTAD and UNDP, in close collaboration with all UN agencies. Nirmita Narasimhan participated in the forum.

The moderator, Ms Andrea Saks (Chair, Telecommunication Standardisation Sector (ITU-T) Joint Coordination Activity on Accessibility and Human Factors (JCA-AHF)), welcomed the audience and introduced the five panellists, two of whom were remote participants.

The first speaker, participating remotely from India, was Ms Nirmita Narasimhan, Policy Director, Centre of Internet and Society (CIS). Narasimhan heads the CIS accessibility inclusion programme and specialises in policy research and advocacy related to technology access for persons with disabilities. Narasimhan focused on a report (link is external) jointly prepared by ITU and CIS, on how to leverage ICTs in an accessible manner to ensure that persons with disabilities and other vulnerable groups are included in planning and responding to disasters and situations involving emergency situations. She raised four stages of preparedness (link is external) for disaster management: (1) early warning planning including creating awareness, education, and training material as well as setting up technological infrastructure; (2) alerts as to when a disaster is happening and where to go for help; (3) recovery, what happens after the disaster; and (4) mitigation which leads back to planning and preparedness. Full report here. More information on the event here.

For more details visit https://cis-india.org/accessibility/news/wsis-forum-2017