In a year�s time, India�s security agencies will be able to access the location details of mobile phone users with a precision of up to 50 metres as part of their Call Detail Record (CDR). To provide this Location Based Service (LBS), the service providers will have to install the necessary technical upgrades in the existing equipment.
Similarly, the government will now be able to get the hardware and software designs and codes, deposited in the escrow accounts, inspected and analyzed by government designated experts in a bit to prevent or �detect any security hazards, malware or traps�.
These are some of the new measures the government has come out with in a bid to tighten the security norms governing the import to telecom-related equipment and expansion of telecom services in the country.
In coming out with these blanket security norms, the government has made it clear that its policy is not China-centric and will apply uniformly to all countries from where vendors and suppliers want to supply core telecommunication equipment to service providers in India.
Several Chinese telecom companies have been crying foul following the Indian security establishment's refusal to grant them permission to sell equipment to Indian service providers citing security concerns.
The Ministry of Home Affairs (MHA) has maintained all along that denial of permission to any company has never been a country-specific decision.
Now, in addition to the recent amendments made in the guidelines for the agreements for Unified Access Service License (UASL), Cellular Mobile Telephone Service License (CMTSL) and Basic Service License (BSL), the government has also issued a template for the agreement which the telecom service provider and vendor of equipment, products and services will have to enter into.
The new guidelines empower the government to get the hardware and software designs and codes, deposited in the escrow accounts, inspected and analyzed by government designated experts in a bit to prevent or �detect any security hazards, malware or traps�. The new rules also make it clear that in case a security breach is detected after the equipment has been deployed or installed, the relevant equipment supplied by the vendor will be taken out of service and penalty of Rs 50 crore for each purchase order will be imposed on the service provider.
To add to that, the government will impose a penalty of 100 percent of contract value on the service provider. The penalties will have to be paid within 30 days of notice and the government will also be at liberty to blacklist the vendor from making any supply deals with Indian operators.