India Mandates Phone Producers to Preload Devices with State-Owned Cybersecurity Application

In a notable step, India's telecoms authority has privately directed smartphone makers to include all new devices with a government-backed cybersecurity app that must remain installed. This directive, which has come to light, is expected to alarm major technology companies like Apple and prompt questions among privacy advocates.

A Global Trend in Cybersecurity Regulation

To combat a recent surge of digital scams and device misuse, India is joining governments internationally. This move mirrors comparable regulations introduced in nations like Russia, which aim to prevent the use of stolen phones for scams and encourage state-backed service apps.

Which Manufacturers Are Impacted by the Order?

The latest mandate affects major mobile phone companies operating in the Indian market. This encompasses Apple, a company that has in the past had disagreements with regulators over similar applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

The Fine Print of the Government Order

An directive dated 28 November provides phone companies a three-month window to ensure that the government's "Messenger Friend" app is included on all new mobile phones. A notable condition is that consumers cannot disable the app.

For phones currently in the distribution network, makers are required to deliver the app via software upgrades. It is important that this order was privately circulated and was sent privately to select manufacturers.

User Consent Concerns Raised

However, technology analysts have expressed serious concerns regarding this policy. A legal expert specialising in tech issues stated that India's directive is a cause for concern.

“The government in essence removes user consent as a real choice,” said Mishi Choudhary, an advocate working on internet rights issues.

Consumer organisations had previously criticised a comparable requirement by Russia in August for a government-sponsored messenger app to be included on phones.

The Size of the Domestic Market

India, among the world's largest telephone markets, boasts more than 1.2 billion connections. Government figures show that the cybersecurity application, launched in January, has reportedly assisted in recovering more than 700,000 lost phones, with approximately 50,000 recovered in October alone.

The government argues that the software is essential to combat the “serious endangerment” of mobile network cybersecurity from duplicate or tampered IMEI numbers, which facilitate illicit activities and system misuse.

The Tech Giant's Likely Response

Apple's iOS runs on an approximate 4.5% of the 735 million smartphones in India, with the rest using Android, as per industry analysis. While Apple includes its own proprietary apps on its devices, its company guidelines are said to prohibit the installation of any third-party app before the purchase of a device.

“Apple has traditionally resisted these kinds of requests from governments,” commented Tarun Pathak, a analyst at Counterpoint.

“It’s likely to seek a middle ground: rather than a compulsory inclusion, they might discuss and propose an option to encourage users towards downloading the application.”

Requests for response from Apple, Google, Samsung, and Xiaomi went unresponded. India’s telecommunications ministry also remained silent.

Understanding the IMEI and the Application's Function

The IMEI, or International Mobile Equipment Identity, is a unique identification number assigned to each handset. It is most commonly used by carriers to cut off network access for phones reported as lost.

The government app is mainly designed to help users block and track missing smartphones across all telecom networks, using a central registry. It also enables them to identify, and disconnect, unauthorised mobile connections.

Impressive Usage and Results

With over 5 million installs since its inception, the app has reportedly helped block over 3.7 million missing mobile phones. Furthermore, more than 30 million fraudulent connections have also been blocked through its use.

The government claims that the app helps combating digital threats and assists in the tracking and disabling of lost or stolen phones, thereby helping police in tracing handsets and preventing counterfeits out of the black market.