The Indian government is proposing a long list of new security requirements aimed at smartphone makers, which includes source code review in order to address potential vulnerabilities. The measure is part of a broader list of 83 requirement proposals by government officials.
As per two Reuters News reports, every smartphone manufacturer selling devices in India will have to provide access to their proprietary source code for review to designated government labs. The aim is to identify OS-level vulnerabilities, which could be exploited by hackers.
The backlash to the proposed measures is already in effect, as industry group MAIT, which represents key smartphone OEMs like Apple, Samsung, Google and Xiaomi, has already informed government officials that the source code provision requirement is impossible on the basis of global privacy and corporate secrecy. The Indian government has confirmed that it will address all industry concerns.
The rest of the proposed security standards by the Indian government include a requirement to alert the government for major software updates, the ability for users to block apps from accessing camera, microphone and location data in the background and to allow pre-installed apps to be uninstalled except for those that are essential for basic phone functions.
The Indian government is now expected to enter consultations with key smartphone OEMs over the requirement proposals. It remains to be seen if the proposals will become legally binding anytime soon.
Source link
