Context:
The newly opened UN Convention against Cybercrime (2025) has exposed divisions in global cyber governance, with India, the US, Japan, and Canada abstaining from signing.
Key Highlights:
- About the Convention
- Multilateral criminal justice instrument.
- Conceived by Russia (2017).
- Open for signatures in late 2025.
- India’s Position
- Participated actively in negotiations.
- Did not sign as proposals on data sovereignty and control over citizens’ data were not retained.
- US and Western Concerns
- Broad definitions of cyber offences.
- Risk of misuse against journalists, activists, dissenters.
- Competing Frameworks
- Budapest Convention (2001):
- European-led.
- Accession limited to invited states.
- Seen as non-inclusive.
- UN Convention seeks wider participation but remains contentious.
- Global Governance Crisis
- U.S. curtailing UN funding.
- WTO dispute-settlement paralysis.
- Shift toward plurilateral and bilateral arrangements.
- Rise of polycentrism (multiple centers of power).
Relevant Prelims Points:
- Cybercrime:
- Hacking, ransomware, identity theft, cyber terrorism.
- Budapest Convention (2001):
- First international treaty on cybercrime.
- Not signed by India.
- Data Sovereignty:
- State’s authority over data generated within its territory.
- Global Governance:
- Rules and institutions guiding international cooperation.
- Polycentrism:
- Multiple overlapping centers of power and rule-making.
Relevant Mains Points:
GS Paper 2 – International Relations
- Fragmentation of multilateral institutions.
- Russia-West tensions influencing norm-setting.
- India’s strategic balancing between competing cyber regimes.
GS Paper 2 – Governance
- Balancing cybersecurity with civil liberties and human rights.
- Need for domestic legal preparedness (IT Act, Digital Personal Data Protection Act).
GS Paper 3 – Internal Security
- Rising cyber threats: ransomware, state-sponsored attacks.
- Need for international cooperation while safeguarding sovereignty.
Strategic Implications for India
- Must strengthen:
- Cyber forensics
- CERT-In capabilities
- International legal expertise
- Build capacity to engage in multiple forums simultaneously.
- Safeguard institutional autonomy in emerging digital order.
Way Forward:
- Develop comprehensive national cyber strategy.
- Promote inclusive global digital norms.
- Enhance domestic cyber resilience and digital infrastructure security.
- Advocate balanced frameworks protecting both sovereignty and human rights.
UPSC Relevance:
- Cybersecurity & Internal Security
• Multilateralism vs Polycentrism
• Data Governance & Digital Sovereignty
• India’s Strategic Autonomy in Global Governance