Skip to main content

Backdoor Tracking - End to Fundamental User Privacy?

 


Privacy in today's cyber world is an essential aspect of life but the right to privacy has been under attack internationally in recent years, as seen by the fact that encryption technology faced various challenges throughout the world in 2020 alone. From the proposal of a bill in the United States Senate requiring a bypass in any encryption technology to the suspension of ProtonMail in Russia. India is no exception to this trend, with the introduction of Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 which proposes to make the tracing of content mandatory that is shared on social media. This could mean the decline of end-to-end encryption. 

Traceability- an end to encryption

Tracking and Monitoring the data has been going on since the inception of controversial section 5 of the Indian Telegraph Act, 1885, which sanctioned interception and monitoring of communication. 


Section 69 of the Information Technology Act of 2000 previously permitted the central or state government to monitor and collect data from any computer system for the sake of cybersecurity. The interception may be carried out if the government is satisfied that it is "in the interest of the sovereignty or integrity of India, defence of India, security of the State, friendly relations with foreign states or public order or for preventing incitement to the commission of any cognizable offence relating to above…" Section 69 was also supported by the Information Technology (Procedure and Safeguards for Interception, Monitoring, and Decryption of Information) Rules, 2009. Rule 9 of the 2009 rules allow for "Direction of interception, monitoring, or decryption of any specific information" from "any class of persons."


The looming threat on privacy as a right for the citizens has been realised by the latest IT rules titled, Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021. Rule 4(2) states:

"A significant social media intermediary providing services primarily in the nature of messaging shall enable the identification of the first originator of the information on its computer resource as may be required by a judicial order passed by a court of competent jurisdiction or an order passed under section 69 by the Competent Authority as per the Information Technology (Procedure and Safeguards for interception, monitoring and decryption of information) Rules, 2009".


The rule enforces message tracing through the identification of the first originator by requiring major social media intermediaries to implement software upgrades to ensure that the first originator can be tracked concerning every message sent through that intermediary. The issue stems not just from the IT regulations of 2021, but also from the IT rules of 2009 when Rule 13 required the intermediary to offer "decryption assistance." In a transfer petition filed by Facebook in the Supreme Court in 2019, KK Venugopal argued on behalf of the Tamil Nadu Government that Rule 13 obliged the intermediary to offer any sort of assistance to law enforcement.



Right to Privacy

In Justice K.S. Puttaswamy (Retd.) v. Union of India a nine-judge bench of the apex made it clear that the Right to Privacy is an innate part and is enshrined in Article 21, further in that case the court elucidated that the Right to Privacy in as such should only be curbed by a procedure established by law and that such a law adheres to Principles of Natural Justice. The apex court also introduced a 4 step test for the judicial scrutiny of any law that curbs the Right to privacy. The Test includes (i) Legitimate aim Test, (ii) Rational Nexus test, (iii) Necessity test and (iv) Balancing test.



                 

Case Citation Justice K.S. Puttaswamy (Retd.) v. Union of India ((2017) 10 SCC 1)


By: Vyom Kaushik

        (Legal Intern, WCSF)


To keep yourself updated with our news & blogs, don’t forget to “SUBSCRIBE” us!!

To know more, please visit: https://www.worldcybersecurities.com/ 



Labels:

Comments

Post a Comment

Popular posts from this blog

UNESCO Guidelines on Generative AI in Schools

The advent of artificial intelligence has assumed prominence amongst all industries and various facets of people's personal lives. The integration of AI in education has been inevitable, given the significance and role of information, knowledge production and administration in the sector. This is especially so as its capabilities entail replicating higher-order thinking. Besides assisting in the education process, it also brings the element of real-life relevance, allowing education to be imparted against the backdrop of the evolving world due to the same AI. It tends to have implications on the subject matter that needs to be imparted, which tends to be something that constantly needs to answer the question of "Why and how is this particular subject matter relevant for learning?".  This induces policy-makers and educational institutions to rethink what they need to impart as knowledge, the area of matter, and the manner of thinking to be emphasised. This is because educa...
Post a Comment
Read more

Dark Web: Safe or unsafe? Truth Revealed!

  The dark web is the part of the internet that is not visible to search engines. With the advancement in technology, digitization has resulted in different types of attacks. We can talk to anyone as long as we have an internet connection. The main concern is with privacy and anonymity in mind.  A team of computer scientists and mathematicians working for one branch of the US navy which is known as the Naval Research laboratory (NRL), developed a new technology known as Onion Routing. It allows anonymous communication where the source and destination cannot be determined by the third party. A network using the Onion Routing technique is classified as Darknet. The NRL released the Onion Routing Technique and it became The Onion Router, also known as TOR. Advantages of Dark Web  Humans are allowed to hold privacy and express their views freely. Privacy is considered to be critical for honest persons through the different criminals and stalkers.  The growing tendency of...
5 comments
Read more

India's Cybersecurity Landscape: New Rules, Rising Threats, and Government Response

The recent interaction of the newly reappointed Union IT Minister with journalists has sparked significant interest within the IT Industry and among privacy enthusiasts. Ashwini Vaishnaw announced on June 15 that the MEITY will soon release the rules under the Digital Personal Data Protection (DPDP) Act, a development of immense significance for India's cybersecurity landscape. [1] 's Acts. It holds immense significance for the country, especially with the increasing number of internet users.  Of 2023 for public consultation. The rules hold immense significance for a country like India, with 751.5 million internet users at the commencement of 2024 [2] . With the continuous surge in internet usage across India, the volume of personal data shared online is also on the rise. This occurs either voluntarily, such as an individual providing personal information to a social media platform to access its services, or involuntarily, as a consequence of falling victim to a cybercrime inci...
Post a Comment
Read more