The Ministry of Electronics and IT has directed 21 handset makers to submit information on security architecture and standards that they follow for storing customer data online, according to an Economic Times report. Both domestic and foreign brands like Apple, Samsung, Micromax and especially a lot of Chinese brands like Oppo, Vivo, Xiaomi, Lenovo and Gionee have also received the direction, the report said. A government official told ET that cyber security issues aren’t addressed under any law in the country and that security standards are voluntarily followed. “The government will know if standards need to be tightened or made mandatory,” added the official. During March 2017 quarter, handsets worth $3.74 billion (~Rs 23,754 crore) were imported into India according to government data accessed by ET. During the same quarter, locally manufactured handsets worth Rs 90,000 crore were produced in India. What info Meity is looking at The report added that the companies have time until August 28 to disclose info on security practices they follow on handsets, mobile operating system, browser on the device and pre-loaded apps. The official added that it will conduct security testing at government labs from samples received from the handset companies. The directive was issued after data leaks and ransomware incidents were reported in the country, the official said. CERT-In claimed to have received reports of more than 27,000 cyber security threat incidents in the first half of 2017 alone. As of now, the IT act of India (pdf) broadly specifies penalty to companies for failing to…
