Modi and Obama push the framework for US-India cyber relationship

Cooperation on cyber issues is a key component of the bilateral relationship between India and the United States. Indian Prime Minister Narendra Modi during his visit to US has pushed many deals and agendas for increasing the cooperation between India and US. One of the key initiatives of modern era between the two countries is the strategic cyber relationship that reflects their shared values, common vision, and shared principles for cyberspace. Both sides recognize the value of enhancing and further institutionalizing their broad-based cooperation on cyber issues, and in that respect, intend to complete a framework based on the following shared principles and intended forms of cooperation.

Also read: Everything you want to know about Narendra Modi's US visits

Modi with US President Barack Obama has pushed the framework for the US-India cyber relationship. The shared principles include the following commitments by both the nations:

• an open, interoperable, secure, and reliable cyberspace environment.
• promote the Internet as an engine for innovation, economic growth, and trade and commerce.
• promote the free flow of information.
• promote cooperation between and among the private sector and government authorities on cybercrime and cybersecurity.

Both the countries recognize the importance of bilateral and international cooperation for combating cyber threats and promoting cybersecurity and commit to:

• respect cultural and linguistic diversity.
• promote international security and stability in cyberspace through a framework that recognizes the applicability of international law, in particular the UN Charter, to state conduct in cyberspace and the promotion of voluntary norms of responsible state behavior in cyberspace.
• the multistakeholder model of Internet governance that is transparent and accountable to its stakeholders, including governments, civil society and the private sector, and promotes cooperation among them.

Related read: US firms have invested $27B since Modi came to power, keen to invest more

The nations recognize:

• the leading role for governments in cyber security matters relating to national security; and
• the importance of and a shared commitment to cooperate in capacity building in cyber security and cyber security research and development.

The shared principles further include:

• commitment to promote closer cooperation among law enforcement agencies to combat cybercrime between the two countries;
•  a commitment to promote, protect, and respect human rights and fundamental freedoms online; and
• a desire to cooperate in strengthening the security and resilience of critical information infrastructure.

The main areas of cooperation between the two sides to advance these shared principles are expected to include:

• identifying, coordinating, sharing, and implementing cybersecurity best practices;
• sharing information on a real time or near real time basis, when practical and consistent with existing bilateral arrangements, about malicious cybersecurity threats, attacks and activities, and establishing appropriate mechanisms to improve such information sharing;
• developing joint mechanisms for practical cooperation to mitigate cyber threats to the security of ICT infrastructure and information contained therein consistent with their respective obligations under domestic and international law;
• promoting cooperation in the fields of cybersecurity-related research and development, cybersecurity standards and security testing including accreditation process, and cybersecurity product development, including further consultations on such issues;
• elaborating and implementing practical measures that contribute to the security of ICT infrastructure on a voluntary and mutual basis;
• continuing to promote cooperation between law enforcement agencies to combat cybercrime including through training workshops, enhancing dialogue and processes and procedures, and setting up consultations as needed;
• improving the capacity of law enforcement agencies through joint training programs, including equipping them to draft appropriate requests for electronic evidence in accordance with the respective laws and regulations of the United States and India;
• undertaking skill development and capacity building programs jointly in the fields of cybersecurity, efforts to combat cybercrime, digital forensics, and legal frameworks;
• promoting the applicability of international law to state conduct in cyberspace and further exploring how it applies to state conduct in cyberspace.

You may also like: Amazon to up India investment to $5B

The framework also directs both the nations to promote voluntary norms of responsible state behavior in peacetime, including the norms identified by the UN Group of Governmental Experts in the Field of Information and Telecommunications in the Context of International Security. It also demands committing to voluntary norms under which:

• a state should not conduct or knowingly support online activity that intentionally damages critical infrastructure or otherwise impairs the use of critical infrastructure to provide services to the public,
• a state should not conduct or knowingly support activity intended to prevent national CSIRTs from responding to cyber incidents. States should also not use CSIRTs to enable online activity that is intended to do harm,
• a state should cooperate, in a manner consistent with its domestic law and international obligations, with requests for assistance from other States in investigating cyber crimes, collecting electronic evidence and mitigating malicious cyber activity emanating from its territory.
• a state should not conduct or knowingly support ICT-enabled theft of intellectual property, including trade secrets or other confidential business information, with the intent of providing competitive advantages to companies or commercial sectors;

Both the countries agree to cooperate mutually on telecom security related issues such as telecom equipment security standards and testing, including accreditation of entities. As a part of framework, India and US will develop a common and shared understanding of international cyber stability, and destabilizing cyber activity. The nations will discuss and share strategies to promote the integrity of the supply chain to enhance user's confidence in the security of ICT products and services. They will also continue to promote dialogue on incident response best practices and facilitate joint tabletop exercises covering priority cyber security scenarios to advance specific cooperation.

India and US will support the multistakeholder model of Internet governance and continue their dialogue and engagement in Internet governance fora, including ICANN, IGF and other venues, and to support active participation by all stakeholders of the two countries in these fora.

The two major economies of the world will hold consultations and take steps towards improving the effectiveness of transnational cyber crime cooperation. US will work towards strengthening critical Internet infrastructure in India and ensure shared understanding of technology access policy, including dual use technologies sought to be controlled by either country, including through such mechanisms as the bilateral High Technology Cooperation Group.

According to the report, the complete Framework for the U.S.-India Cyber Relationship, is expected to be signed within 60 days.

Also read: Two years in power – what PM Narendra Modi has done for startups