Under Section 84A of Information Technology Act,
2000 Rules are to be framed to prescribe modes or methods for encryption. In
this regard, a draft National Encryption Policy as given under has been
formulated by an Expert Group setup by DeitY based on which the Rules would be
framed.
Extract of
the Policy
The Government will have access
to all encrypted information, including personal emails, messages or even data
stored on a private business server, according to the draft of a new encryption
policy. The
Draft National Encryption Policy wants users to store all encrypted
communication for at least 90 days and make it available to security agencies,
if required, in text form. It also wants everyone to hand over their encryption
keys to the government.
DeitY
issued an addendum to the draft policy exempting
Mass use encryption products, which
are currently being used in web applications, social media sites, and social
media applications such as Whatsapp, Facebook, Twitter etc”.
It also exempted SSL/TLS encryption
products used in Internet-banking and payment gateways as well as SSL/TLS
encryption products being used for e-commerce and password based transactions.
Link for
Policy Source
| http://deity.gov.in/sites/upload_files/dit/files/draft%20Encryption%20Policyv1.pdf
No comments:
Post a Comment