BharatNotes What is Cyber Warfare?
Cyber warfare is the use of digital means by states or state-sponsored actors to penetrate, disrupt, degrade or destroy an adversary's information systems, critical infrastructure or military networks. It is distinguished from cybercrime by its strategic, political and military motivation — it is treated as a fifth domain of conflict alongside land, sea, air and space. Tactics span espionage (data exfiltration), sabotage (disabling power grids, financial systems), psychological operations (disinformation), and destructive attacks that can produce physical effects.
The watershed case is Stuxnet (discovered 2010), a malware that sabotaged Iranian nuclear centrifuges and is widely believed to be a joint US-Israel operation — the first cyber weapon to cause real-world physical damage.
Key Features and Forms
- State or state-aligned attribution — the hallmark separating it from ordinary hacking.
- Targeting of Critical Information Infrastructure (CII) — power, water, finance, transport, health and defence networks.
- Low cost, deniability and asymmetry — a weaker actor can damage a stronger one while denying involvement (the "attribution problem").
- Grey-zone / hybrid warfare — cyber operations below the threshold of armed conflict, often paired with disinformation.
India's Institutional Framework
India's response is built on the Information Technology Act, 2000 (amended 2008) and the National Cyber Security Policy, 2013.
| Body | Established | Mandate |
|---|---|---|
| CERT-In | Operational since 2004; statutory under IT Act | National nodal agency for cyber-incident response & crisis management (under MeitY) |
| NCIIPC | Notified 16 Jan 2014, under Sec 70A | Protection of Critical Information Infrastructure (unit of NTRO, under PMO) |
| Defence Cyber Agency (DCyA) | First chief appointed May 2019 | Tri-services agency for military cyber operations and doctrine |
| National Cyber Security Coordinator (NCSC) | Under National Security Council Secretariat | Coordinates cyber security across agencies |
Under Section 70 of the IT Act, the government can declare any computer resource a "protected system"; Section 70A establishes NCIIPC as the nodal agency for CII.
Current Status and Significance
India's threat exposure is large and rising. CERT-In handled about 14.02 lakh incidents in 2021 and 13.91 lakh in 2022 (figures placed before Parliament, Feb 2023). The November 2022 AIIMS, Delhi ransomware attack crippled hospital operations for days and exposed crores of patient records, becoming the textbook example of CII vulnerability in India.
Globally, the Tallinn Manual (1.0, 2013; 2.0, 2017) is the leading non-binding academic restatement of how international law — sovereignty, state responsibility, countermeasures — applies to cyber operations. No binding treaty governs inter-state cyber conflict, leaving a normative vacuum.
UPSC Angle
Master the institutional map (CERT-In vs NCIIPC vs DCyA) and their parent ministries, the IT Act Sections 70/70A, the 2013 policy, and the distinction between cyber warfare, cyber terrorism and cybercrime. For Mains, connect institutional gaps, the attribution problem and the absence of a binding international framework to concrete incidents and to India's push for a secure digital economy. Cross-link with current affairs on Ujiyari.com for the latest CERT-In advisories and the proposed Digital India Act.
