Subject: Internal Security

The emergence of cyberspace as the fifth dimension of warfare, alongside land, sea, air, and space, has created new vulnerabilities for national security. With India reporting over 17 lakh cybercrime complaints in 2024 and projected losses of ₹20,000 crore by 2025, the need for a robust digital defense mechanism has become paramount.

Analysis of National Cyber Security Policy (NCSP) 2013

Positive Aspects

• Created a comprehensive framework for protecting critical information infrastructure through the National Critical Information Infrastructure Protection Centre (NCIIPC).
• Established CERT-In as the nodal agency for handling cybersecurity incidents.
• Promoted development of indigenous cybersecurity solutions and workforce development.
• Enhanced public-private partnerships in cybersecurity initiatives.

Implementation Challenges

Technical Challenges

• Rapid evolution of cyber threats outpacing policy implementation measures.
• Inadequate infrastructure for real-time threat detection and response.
• Limited indigenous cybersecurity solutions and over-dependence on foreign technologies.

Operational Challenges

• Lack of coordination between various agencies and stakeholders.
• Insufficient skilled cybersecurity professionals (estimated shortage of 5 lakh professionals).
• Inadequate funding despite recent increase to ₹1,900 crore in Budget 2025.

Strategic Challenges

• Absence of clear protocols for attribution and response to cyber attacks.
• Limited international cooperation in cybercrime investigation.
• Weak regulatory framework for emerging technologies like IoT, AI, and 5G.

Way Forward

Need for Digital Armed Forces

• Creation of a dedicated Cyber Command integrating capabilities of all three services.
• Development of offensive cyber capabilities for deterrence.
• Enhanced cooperation between Defence Cyber Agency (DCyA) and civilian agencies.

Policy Recommendations

• Regular updating of NCSP to address emerging threats.
• Increased budget allocation for cybersecurity infrastructure.
• Mandatory cybersecurity audits for critical sectors.
• Strengthening of Information Technology Act to address modern cyber threats.

Recent incidents like the SolarWinds supply chain attack and Colonial Pipeline ransomware attack underscore the critical need for robust cyber defense capabilities. India must evolve from its current reactive approach to a proactive stance through the establishment of Digital Armed Forces and implementation of comprehensive cybersecurity measures.