Why in news?
Union Ministry of Electronics and IT (MeitY) has declared IT resources of ICICI Bank, HDFC Bank and NPCI as ‘critical information infrastructure’
What is ‘Critical Information Infrastructure (CII)’?
A computer resource, whose destruction will have negative impact on national security, economy, public health or safety
Information Technology (IT) Act of 2000
- This act empowers government to declare any data, database, IT network or communications infrastructure as CII to protect that digital asset
- Any person who tries to secure access to CII will be punished with a jail term of up to 10 years
Why is it needed?
- IT resources form the backbone of countless critical operations in a country’s infrastructure
- Any disruptions to it will have cascading effect across sectors
- IT failure at a power grid can lead to prolonged power outages crippling other sectors like healthcare, banking etc.
Ex: In 2007, a wave of denial-of-service attacks from Russian IP addresses had hit major Estonian banks, government bodies – ministries and parliament, and media outlets
What are the ‘Critical Sectors’ of India?
- Power & Energy
- Banking, Financial Services & Insurance
- Strategic & Public Enterprises
How are CIIs protected in India?
- National Critical Information Infrastructure Protection Centre (NCIIPC) is the nodal agency to protect the nation’s CII
- Basic responsibility for protecting the CII system lies with the agency running that CII