Internal Security·Legal Reforms
National Cyber Security Strategy — Legal Reforms
Constitution VerifiedUPSC Verified
Version 1Updated 5 Mar 2026
| Entry | Year | Description | Impact |
|---|---|---|---|
| Information Technology (Amendment) Act | 2008 | Significantly strengthened the legal framework for cyber security by introducing Section 70A (Critical Information Infrastructure Protection) and Section 70B (Computer Emergency Response Team), providing legal backing for NCIIPC and CERT-In establishment and operations. | Created the foundational legal architecture for India's institutional cyber security framework, enabling government agencies to issue binding directions for critical infrastructure protection and coordinate national cyber incident response |
| Critical Information Infrastructure Protection Rules | 2018 | Detailed regulations under Section 70A defining critical information infrastructure, specifying protection obligations for organizations, establishing reporting requirements for cyber incidents, and outlining penalties for non-compliance with security directives. | Operationalized the National Cyber Security Strategy by providing specific regulatory mechanisms for critical infrastructure protection, enabling NCIIPC to exercise its mandate effectively and ensuring accountability in cyber security implementation |