独家
政府禁止VPN,云服务的员工
授权ExpressVPN后几天,Surfshark NordVPN说他们将退出提供服务的国家指令后由印度计算机紧急响应小组(、)在印度VPN公司应该如何操作
授权后几天ExpressVPN, Surfshark NordVPN表示,他们将退出指令后提供他们的服务在中国的印度计算机紧急响应小组(、在印度)VPN公司应该如何操作
指令还敦促政府雇员不保存”任何内部,政府限制或机密数据文件在任何非政府云服务等Google Drive或Dropbox。”
“为了使政府雇员和合同/外包资源和构建意识在他们该做什么和不该做什么从网络安全的角度来看,这些指导方针已经被编译,”尼克说,在一个内部文件,名为为政府雇员网络安全指导方针。等有了一份文档。
网卡也要求政府雇员没有‘越狱’或‘根’手机或使用任何外部移动app-based扫描仪等服务CamScanner扫描政府“内部文件”
CamScanner是一些中国政府禁止的应用,2020年7月,援引国家安全方面的担忧在北方邻国边境战争,但仍然是通过一些版本操作。
“遵循统一的网络安全指南在全国各地政府机关,可以提高政府的安全状况,”该指令。
IT部门没有回应等的具体查询指令背后的意图。
印度节点、网络安全机构,4月28日在印度经营的公司规定,VPN必须保持记录客户的详细信息,包括姓名,地址,和目的的VPN服务被使用。
尽管击退来自利益相关者的公司,网络安全专家和业务咨询小组、指令,政府仍然坚定立场,电子和部长拉杰夫钱德拉塞卡明确公司不愿遵循规范是“自由离开印度”。
印度也采取了类似的立场对VPN公司在刚刚结束的联合国特别委员会会议讨论全面打击国际公约的使用信息和通信技术用于犯罪目的。
NordVPN关闭VPN服务器从6月26日在印度
NordVPN成为第三个VPN提供商退出印度的网络安全指令、4月28日强制VPN公司,其中,维护客户基本信息,包括IP地址、名称、电子邮件id和更多。
等周四报道,印度代表团已经要求联合国特别委员会成员包括计数器的使用技术虚拟专用网络、端到端加密的信息服务和blockchain-based技术如cryptocurrency这些提供匿名,恐怖分子从而增加规模,速度和范围的可能性依然难以捉摸的执法机构。
印度联合国特别委员会的建议符合其监管方法。在一些场合,部长和高级官员的电子和信息技术重申他们的立场,科技巨头不能躲在匿名的“借口”当这样的可追溯性是由执法机构要求。
、指导方针在最近的一次新闻发布会上,钱德拉塞卡告诉记者,政府将采取“零容忍”政策在网上匿名被掩盖罪行,和生产的证据是一个“明确的义务”VPN服务提供者,社会媒体中介机构,和即时通讯平台。
![\"](\"https:\/\/st.etb2bimg.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
The mandate comes just days after ExpressVPN, Surfshark and NordVPN said they would quit offering their services in the country following a directive by the Indian Computer Emergency Response Team (Cert-In<\/a>) on how VPN companies should operate in India
The directive also urges government employees not to save \u201cany internal, restricted or confidential government data files on any non-government cloud service such as Google Drive<\/a> or Dropbox.\u201d
<\/div><\/div>The National Informatics Centre (NIC), which is under the Ministry of Electronics and Information Technology, said it had put out the guidelines to improve the \u201csecurity posture\u201d of the government.
\u201cIn order to sensitize the government employees and contractual\/outsourced resources and build awareness amongst them on what to do and what not to do from a cyber security perspective, these guidelines have been compiled,\u201d NIC said in an internal document, titled Cyber Security Guidelines for Government Employees. ET has reviewed a copy of the document.
The NIC has also asked government employees to not \u2018jailbreak\u2019 or \u2018root\u2019 their mobile phones or use any external mobile app-based scanner services such as CamScanner to scan \u201cinternal government documents\u201d
CamScanner was among several Chinese apps banned by the government in July 2020, citing national security concerns following border hostilities with the northern neighbour but continues to be operational through some versions.
\u201cBy following uniform cyber security guidelines in government offices across the country, the security posture of the government can be improved,\u201d the directive added.
The IT ministry did not respond to ET\u2019s specific queries on the intent behind the directive.
\u201cIn order to sensitize the government employees and contractual\/outsourced resources and build awareness amongst them on what to do and what not to do from a cyber security perspective, these guidelines have been compiled,\u201d NIC said in an internal document, titled Cyber Security Guidelines for Government Employees. ET has reviewed a copy of the document.
The NIC has also asked government employees to not \u2018jailbreak\u2019 or \u2018root\u2019 their mobile phones or use any external mobile app-based scanner services such as CamScanner to scan \u201cinternal government documents\u201d
CamScanner was among several Chinese apps banned by the government in July 2020, citing national security concerns following border hostilities with the northern neighbour but continues to be operational through some versions.
\u201cBy following uniform cyber security guidelines in government offices across the country, the security posture of the government can be improved,\u201d the directive added.
The IT ministry did not respond to ET\u2019s specific queries on the intent behind the directive.
<\/div><\/div>\u201cAll government employees, including temporary, contractual\/outsourced resources are required to strictly adhere to the guidelines mentioned in this document. Any non-compliance may be acted upon by the respective CISOs\/Department heads,\u201d according to the internal document.
Cert-In, India\u2019s nodal cyber security agency, had on April 28 mandated that VPN companies operating in India must maintain a log of their customers\u2019 details, including names, addresses, and the purpose for which the VPN service was being used.
Despite a push back from stakeholder companies, cybersecurity experts, and business advisory groups against the Cert-In directive, the government remained firm on its stance, with Minister of State for Electronics and IT Rajeev Chandrasekhar<\/a> making clear companies that did not wish to follow the norms were \u201cfree to leave India\u201d.
India has also taken a similar stance against VPN companies at a recently concluded meeting of the UN Ad Hoc Committee which debated a comprehensive international convention on countering the use of information and communications technologies for criminal purposes.
Cert-In, India\u2019s nodal cyber security agency, had on April 28 mandated that VPN companies operating in India must maintain a log of their customers\u2019 details, including names, addresses, and the purpose for which the VPN service was being used.
Despite a push back from stakeholder companies, cybersecurity experts, and business advisory groups against the Cert-In directive, the government remained firm on its stance, with Minister of State for Electronics and IT Rajeev Chandrasekhar<\/a> making clear companies that did not wish to follow the norms were \u201cfree to leave India\u201d.
India has also taken a similar stance against VPN companies at a recently concluded meeting of the UN Ad Hoc Committee which debated a comprehensive international convention on countering the use of information and communications technologies for criminal purposes.