India SIM-linked messaging rules, In light of increasing cybercrime in India, the government introduced strict rules regarding binding SIMs to messaging apps. Now, and going forward, messaging apps must always linked to a SIM. Users can no longer use WhatsApp without a SIM being present. Also, the same rule applies to Telegram and Signal as of now. According to officials, there have been many instances of abuse due to users having access to these apps without being linked to a SIM. The government believes that the best way to combat this issue is to implement stricter rules to prevent misuse and allow continued use of the apps by SIM subscribers only.
Messaging Apps Classified as TIUEs; Mandatory 2FA in 90 Days
The notification is in effect as of November 28, 2023. It is a major change of the Telecom Cyber Security Rules. The Department of Telecommunications defines messaging platforms like WhatsApp as telecom interface user equipment (TIUEs), which means that they will now monitored the department like other telecom services that offered in India. Furthermore, messaging platforms must have devices that allow for two-factor authentication to create stronger identification systems. Messaging platforms will have 90 days to comply with this requirement and 120 days to submit a compliance report to the DOT.
Govt Mandates Active SIM Verification to Curb Cyber Fraud
Government documents issued to the public raise the following issues: Increased use of inactive mobile numbers and international frauds through the use of inactive SIMs. Continuous and valid presence of a SIM within a device will henceforth be a requirement for all applications using abusive user identities. SIms must be verified by the apps at all times. If a user removes a SIM or if the user’s SIM becomes inactive, the application will automatically terminate the service. The DOT explains the rationale for this requirement as: “The Subscriber Identity Module (SIM) in the device on which the App Based Communication Services is being run is part of the reason for the challenge the telecom cyber security department is having, because it is being used by people from outside the country to conduct cyber fraud”. India SIM-linked messaging rules, Officials held discussions on the document mentioned above.
New framework introduces stricter logout requirements for web access
Six-hour logouts are mandated these regulations. They require automatic expiration of web sessions. Users must re-authenticate with a QR code before entering the site. The rationality behind these steps is to mitigate risks related to unattended browsers. They reduce device-to-device impersonation and increase the ability to trace digital networks.
Users face inconvenience but gain tighter protection overall
With over 500 million WhatsApp users in India, a large group of people primarily rely on tablets that only support Wi-Fi. This group will likely experience an immediate interruption to their service. This makes it more difficult for these users to switch devices and has raised concerns by critics regarding the effectiveness of this restriction. Critics believe it would be too simple for scammers to gain new SIM cards and begin soliciting scams again. On the other hand, governmental agencies and industry associations are strongly defending the objectives of these restrictions as “the most current and monitored identity for Indian mobile devices.”
India’s messaging platform is now entering a new phase of stronger security measures.
FOR MOR UPDATES- https://civiclens.in/category/https-civiclens-in-technology/
About the Author
