India Pushes Sweeping Smartphone Security Rules, Alarming Global Tech Giants
GeokHub
GEOKHUB | New Delhi — Jan 12 India is weighing a far-reaching overhaul of smartphone security rules that could force manufacturers to share sensitive source code, notify authorities of major software updates, and redesign key phone functions, triggering quiet resistance from some of the world’s biggest tech companies.
The proposals form part of a broader government effort to tighten digital security as online fraud and data breaches surge in one of the world’s largest smartphone markets, which now has an estimated 750 million active devices.
Behind closed doors, however, industry leaders argue the measures could expose proprietary technology, disrupt global software practices, and create compliance risks with no international precedent.
Source Code at the Center of the Dispute
At the heart of the controversy is a plan that would allow designated Indian laboratories to review and analyse smartphone source code — the foundational software instructions that control how devices operate.
Manufacturers say such access raises serious concerns over intellectual property protection, user privacy, and cybersecurity, noting that even major economies have not imposed similar requirements.
Industry representatives have warned officials that source code disclosure could undermine global security standards rather than strengthen them.
New Controls on Apps, Updates and Malware Scanning
Under the draft framework, smartphone makers would also be required to:
- Allow users to remove pre-installed apps
- Prevent apps from accessing cameras and microphones in the background
- Conduct automatic, periodic malware scans
- Notify regulators in advance of major software updates and security patches
Companies argue some of these measures could drain battery life, delay urgent security fixes, and slow innovation in an industry where rapid updates are often critical.
Another proposal would require phones to store system activity logs for up to 12 months, a requirement manufacturers say could strain device storage limits.
Government Signals Flexibility — and Pushback
Indian officials say consultations with the industry are ongoing and insist the goal is to build a robust mobile security framework, not to impose excessive burdens.
Authorities have also pushed back against claims that mandatory source code sharing is under active consideration, though industry documents and discussions suggest the issue remains unresolved.
The debate highlights a familiar tension between India’s desire for greater digital sovereignty and the global tech sector’s insistence on uniform, internationally accepted standards.
With India accounting for a growing share of global smartphone sales, the outcome could reshape how device security is regulated far beyond its borders.
