As a part of a series of security measures, India proposes requiring smartphone makers to share source code with the government and make several software changes.
This has invited a huge opposition from giants like Apple and Samsung, who countered that the package of 83 security standards, which would also include a requirement to alert the government to major software updates, lacks any global precedent and risks revealing proprietary details, Reuters reported.
What is the security plan all about?
The plan is part of PM Modi's efforts to boost the security of user data as online fraud and data breaches increase in the world's second-largest smartphone market, with nearly 750 million phones.
"Any legitimate concerns of the industry will be addressed with an open mind," said IT Secretary S. Krishnan to Reuters, adding it was premature to read more into it.
A ministry spokesperson said it could not comment further due to ongoing consultation with tech companies on the proposals.
Among the requirements in the new Indian Telecom Security Assurance Requirements is access to source code, the underlying programming instructions that make phones work. This would be analysed and possibly tested at the designated Indian labs, the documents show.
The Indian proposals also require companies to make software changes to allow pre-installed apps to be uninstalled and to block apps from using cameras and microphones in the background to 'avoid malicious usage'.
Regarding the source code, smartphone makers guard it closely. Previously, Apple declined China's request for source code between 2014 and 2016, and U.S. law enforcement has also tried and failed to get it.
India's proposals for 'vulnerability analysis' and 'source code review' would require
Smartphone makers would be required to perform a 'complete security assessment' to comply with India's proposals for 'vulnerability analysis' and 'source code review', after which test labs in India could check their claims through source code review and analysis, Reuters reported.
