Mandatory Reporting of Cyber Incidents

All cybersecurity incidents in the country like targeted probing or scanning of critical systems and networks, unauthorized access of systems and data, compromise of critical systems and information, etc must be informed to the Indian Computer Emergency Response Team (CERT-In) by the respective companies within a six hours’ time frame of either becoming aware of the incident by itself or through others.

Overview:

The new guidelines have been mandated by CERT-In to all the companies that are operating in India like intermediaries, service providers, companies, data centres, and government organizations.

Mandate for virtual asset service and exchange providers

CERT-In has also mandated that virtual asset exchange providers, virtual asset service providers, and custodian wallet service providers must also maintain all the information that has been gathered by them as a part of records of financial transactions and know your customer (KYC) process for a five-year period.

Transaction records

The transaction records information must be maintained in such a manner that individual transactions can be reconstructed. Information such as IP addresses along with time zones and timestamps, the public keys (or equivalent identifiers), transaction ID, accounts or addresses involved, the transferred amount, and the date and nature of the transaction must be maintained.

Details that must be maintained

Virtual private server providers, data centres, VPN providers, and cloud service providers must keep the details like the validated name of the customer, IP addresses used and allotted, period of the service, contact and address number, the purpose for the service, and ownership pattern.


Month: 

Category: 

Leave a Reply