Scribd Logo
Upload

Welcome to Scribd!

  • Cyber Security

    Uploaded by

    Sumit Bharti
    31 views6 pages
    The document discusses internet safety and cybersecurity laws in India. It notes that the internet can provide access to inappropriate content, cyberbullying, and online predators. It also discusses federal laws like COPPA that protect children's privacy online and require sites to get parental consent. The summary then discusses: 1) Cybercrimes are increasing in India as internet usage grows. The main forms of cybercrime include data breaches, identity theft, and financial theft. 2) India passed its first cybersecurity laws in 2000 in the form of the Information Technology Act, which governs cybercrimes and outlines penalties. The Act amended other laws to address electronic transactions and communications. 3) Key cybersecurity laws in

    Original Description:

    Original Title

    Cyber security

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses internet safety and cybersecurity laws in India. It notes that the internet can provide access to inappropriate content, cyberbullying, and online predators. It also discusses federal laws like COPPA that protect children's privacy online and require sites to get parental consent. The summary then discusses: 1) Cybercrimes are increasing in India as internet usage grows. The main forms of cybercrime include data breaches, identity theft, and financial theft. 2) India passed its first cybersecurity laws in 2000 in the form of the Information Technology Act, which governs cybercrimes and outlines penalties. The Act amended other laws to address electronic transactions and communications. 3) Key cybersecurity laws in

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    31 views6 pages

    Cyber Security

    Uploaded by

    Sumit Bharti
    The document discusses internet safety and cybersecurity laws in India. It notes that the internet can provide access to inappropriate content, cyberbullying, and online predators. It also discusses federal laws like COPPA that protect children's privacy online and require sites to get parental consent. The summary then discusses: 1) Cybercrimes are increasing in India as internet usage grows. The main forms of cybercrime include data breaches, identity theft, and financial theft. 2) India passed its first cybersecurity laws in 2000 in the form of the Information Technology Act, which governs cybercrimes and outlines penalties. The Act amended other laws to address electronic transactions and communications. 3) Key cybersecurity laws in

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 6

    Internet Safety

    The Internet can be wonderful. But online access also comes with risks,

    1. Inappropriate content,
    2. cyberbullying, and
    3. online predators.

    Using apps and websites where kids interact, predators may pose as a child or teen looking to make
    a new friend. They might prod the child to exchange personal information, such as address and
    phone number, or encourage kids to call them, seeing their phone number via caller ID.

    Internet Safety Laws

    A federal law, the Children's Online Privacy Protection Act (COPPA) helps protect kids younger
    than 13 when they're online. It's designed to keep anyone from getting a child's personal information
    without a parent knowing about it and agreeing to it first.

    COPPA requires websites to explain their privacy policies and get parental consent before collecting
    or using a child's personal information, such as a name, address, phone number, or Social Security
    number. The law also prohibits a site from requiring a child to provide more personal information
    than necessary to play a game or enter a contest.

    Online Protection Tools

     Many Internet service providers (ISPs) provide parent-control options.


     You can also get software that helps block access to sites and restricts personal information
    from being sent online.
     Other programs can monitor and track online activity.

    The Internet and Teens

     Talk about the sites and apps teens use and their online experiences.
     Discuss the dangers of interacting with strangers online and remind them that people online
    don't always tell the truth.
     Explain that passwords are there to protect against things like identity theft. They should
    never share them with anyone, even a boyfriend, girlfriend, or best friend.
    Cybersecurity Laws In India

    India is speeding up the web ladder to touch yet another milestone this year -
    flaunting the 2nd largest internet user base of a stout 560 million users.
    The pandemic will push this number further in 2021 as the predictions stumble up to
    a minimum of 600 million users.

    Increasing Attacks on Cybersecurity System


    Cybercrimes are currently ruling major newspaper headlines globally - causing unanticipated
    damages across industries and individuals.
    The predominant forms of cyber thefts include –
    1. data breach,
    2. identity theft,
    3. financial theft, and i
    4. Internet time thefts, amongst others.
    Though cybersecurity is advancing every day, hackers are also constantly upping their game and
    finding ways to break into new systems.
    This reinforces the need not only for better cybersecurity systems but robust cyber laws as well.
    Further, to mitigate the cyber crimes and to curb the efforts of the fraudsters, lawmakers need
    to be abreast of the potential loopholes in the cybersecurity landscape and fix them in real-
    time. Persistent efforts with constant vigil are crucial to controlling the escalating risks
    nationwide.
    Introduction to Cyber Laws in India

    The United Nations

    Commission on International

    Trade Law embraced the

    model law on e-Commerce to

    spearhead legal uniformity

    globally in 1996.

    The General Assembly of the UN-endorsed this model law as the backbone of the cyber laws of
    different countries.

    Soon, India became the 12th country to legitimize cyber regulations. Post the initial draft
    created by the e-Commerce Act led by the Ministry of Commerce in 1998; the revised
    Information Technology Bill was passed in May 2000.

    Finally, things came under control, with the inception of the Information Technology Act, back
    in October 2000.

    This Act intricately traced each trifling activity or transaction on the internet, cyberspace, and
    the World Wide Web. Each minuscule action, as well as its reaction in the global cyberspace,
    imposed severe legal implications and penalty angles.

    The Act swiftly amended the traditionally-set Indian Penal Code 1860, the Bankers' Books
    Evidence Act 1891, the Indian Evidence Act 1872, and the Reserve Bank of India Act 1934. These
    amends aimed to tone up all electronic transactions/communications bringing them under the
    radar by granting strict legal

    Regulatory Framework of Cyber Security Laws

    There are five predominant laws to cover when it comes to cybersecurity:


    Information Technology Act, 2000
    The Indian cyber laws are governed by the Information Technology Act, penned down back in
    2000. The principal impetus of this Act is to offer reliable legal inclusiveness to e-commerce,
    facilitating registration of real-time records with the Government.

    But with the cyber attackers getting sneakier, topped by the human tendency to misuse
    technology, a series of amendments followed.

    The ITA, enacted by the Parliament of India, highlights the grievous punishments and penalties
    safeguarding the e-governance, e-banking, and e-commerce sectors. Now, the scope of ITA has
    been enhanced to encompass all the latest communication devices.

    The IT Act is the salient one, guiding the entire Indian legislation to govern cyber
    crimes rigorously:
    Section 43 - Applicable to people who damage the computer systems without permission
    from the owner. The owner can fully claim compensation for the entire damage in such cases.

    Section 66 - Applicable in case a person is found to dishonestly or fraudulently committing


    any act referred to in section 43. The imprisonment term in such instances can mount up to
    three years or a fine of up to Rs. 5 lakh.

    Section 66B - Incorporates the punishments for fraudulently receiving stolen communication
    devices or computers, which confirms a probable three years imprisonment. This term can also
    be topped by Rs. 1 lakh fine, depending upon the severity.

    Section 66C - This section scrutinizes the identity thefts related to imposter digital
    signatures, hacking passwords, or other distinctive identification features. If proven guilty,
    imprisonment of three years might also be backed by Rs.1 lakh fine.

    Section 66 D - This section was inserted on-demand, focusing on punishing cheaters doing
    impersonation using computer resources.
    Indian Penal Code (IPC) 1980
    Identity thefts and associated cyber frauds are embodied in the Indian Penal Code (IPC), 1860 -
    invoked along with the Information Technology Act of 2000.

    The primary relevant section of the IPC covers cyber frauds:

     Forgery (Section 464)


     Forgery pre-planned for cheating (Section 468)
     False documentation (Section 465)
     Presenting a forged document as genuine (Section 471)
     Reputation damage (Section 469)

    Companies Act of 2013


    The corporate stakeholders refer to the Companies Act of 2013 as the legal
    obligation necessary for the refinement of daily operations.

    The directives of this Act cements all the required techno-legal compliances,
    putting the less compliant companies in a legal fix.

    The Companies Act 2013 vested powers in the hands of the SFIO (Serious Frauds
    Investigation Office) to prosecute Indian companies and their directors. Also, post
    the notification of the Companies Inspection, Investment, and Inquiry Rules, 2014,
    SFIOs has become even more proactive and stern in this regard.
    The legislature ensured that all the regulatory compliances are well-covered,
    including cyber forensics, e-discovery, and cybersecurity diligence. The Companies
    (Management and Administration) Rules, 2014 prescribes strict guidelines
    confirming the cybersecurity obligations and responsibilities upon the company
    directors and leaders.
    NIST Compliance

    The Cybersecurity Framework (NCFS), authorized by the National Institute of


    Standards and Technology (NIST), offers a harmonized approach to cybersecurity as
    the most reliable global certifying body. NIST Cybersecurity Framework encompasses
    all required guidelines, standards, and best practices to manage the cyber-related
    risks responsibly. This framework is prioritized on flexibility and cost-effectiveness. It
    promotes the resilience and protection of critical infrastructure by: Allowing better
    interpretation, management, and reduction of cybersecurity risks – to mitigate data
    loss, data misuse, and the subsequent restoration costs Determining the most
    important activities and critical operations - to focus on securing them Demonstrates
    the trust-worthiness of organizations who secure critical assets Helps to prioritize
    investments to maximize the cybersecurity ROI Addresses regulatory and contractual
    obligations Supports the wider information security program By combining the NIST
    CSF framework with ISO/IEC 27001 - cybersecurity risk management becomes
    simplified. It also makes communication easier throughout the organization and
    across the supply chains via a common cybersecurity directive laid by NIST.

    You might also like