SlideShare a Scribd company logo
1 of 31
Download to read offline
Cyber Law

     Submitted by:
Arnab Roy Chowdhury (06)
   Braja Mani Das (10)
   Subhasish Ishar (54)
   Sayantan Saha (52)
    Vrushabh Vira (60)
IT ACT 2000

The Information Technology act , 2000 received the assent of
president of India on 9 June 2000 and came into force from 17
October in that same year .The act was enacted to provide legal
recognition for transaction carried out by means of electronic data
interchange and other means of electronic communication
, commonly referred to as “Electronic Commerce” , to facilitate
electronic filling of documents with governments agencies which
involve the use of alternative to paper based method of
communication and storage information This law applies to any
kind of information in the form of data message used in the context
of commercial activities.
Objective

 to grant legal recognition for transaction carried out by
  means of electronic data interchange and other means of
  electronic communication;
 To give legal recognition to digital signature / electronic
  signature for authentication accepting of any information
  or matter which require authentication under any law;
 To facilitate electronic of documents with Government
  departments;
 To facilitate electronic storage of data ;
 To facilitate and give legal sanction to electronic fund
  transfer between banks and financial institution ;
 To give legal recognition for keeping books of account by
  bankers in electronic form.
The Act does not apply to:
1.a negotiable instrument as defined in section 13 of the
Negotiable Instruments Act,1881;
2.a power-of-attorney as defined in section 1A of the Powers-
of-Attorney Act, 1882;
3.a trust as defined in section 3 of the Indian Trusts Act, 1882;
4.a will as defined in clause (h) of section 2 of the Indian
Succession Act, 1925 including any other testamentary
disposition by whatever name called;
5.any contract for the sale or conveyance of
immovable property or any interest in such property;
6.any such class of documents or transactions as may be
notified by the Central Government in the Official Gazette.
Amendment act 2008
 Being the first legislation in the nation on technology, computers and
ecommerce and e-communication, the Act was the subject of
extensive debates, elaborate reviews and detailed criticisms, with one
arm of the industry criticizing some sections of the Act tobe draconian
and other stating it is too diluted and lenient. There were some
conspicuous omissions too resulting in the investigators relying more
and more on the time-tested (one and half century-old) Indian Penal
Code even in technology based cases with the I.T. Act also being
referred in the process and the reliance more on IPC rather on the ITA.
Thus the need for an amendment – a detailed one – was felt forthe I.T.
Act almost from the year 2003-04 itself. Major industry bodies were
consulted and advisory groups were formed to go into the perceived
lacunae in the I.T. Act and comparing it with similar legislations in other
nations and to suggest recommendations.
Continue……..

  Such recommendations were analyzed and subsequently taken up
  as a comprehensive Amendment Act and after considerable
  administrative procedures, the consolidated amendment called the
  Information Technology Amendment Act 2008was placed in the
  Parliament and passed without much debate, towards the end
  of2008 (by which time the Mumbai terrorist attack of 26 November
  2008 had taken place). This Amendment Act got the President
  assent on 5 Feb 2009 and was made effective from 27
  October2009.
Some of the notable features of the ITAA are as follows:
 Focusing on data privacy
 Focusing on Information Security
 Defining cyber café
 Making digital signature technology neutral
 Defining reasonable security practices to be followed by corporate
Continue….

 Redefining the role of intermediaries
 Recognizing the role of Indian Computer Emergency Response Team
 Inclusion of some additional cyber crimes like child pornography and
  cyber terrorism
 authorizing an Inspector to investigate cyber offences (as against the
  DSP earlier)
DIGITAL SIGNATURE


A digital signature is an electronic scheme for demonstrating
the authenticity of a digital message or document. A valid digital
signature gives recipient a reason to believe that the message was
created by a known sender and that it was not altered in transit.
Digital signatures are commonly used for software distribution,
financial transactions, and in other cases where it is important to
detect imitation or tampering.
Authentication of Digital Signature

A digital signature shall –
 be created and verified by cryptography that concerns itself with
   transforming electronic records.

 use ―Public Key Cryptography‖ which employs an algorithm using
  two different mathematical ―keys‖ – one for creating a digital
  signature or transforming it and another key for verifying the
  signature or returning the electronic record to original form. Hash
  function shall be used to create this signature. Software utilizing
  such keys are termed as ―asymmetric cryptography‖ [Rule 3 of IT
  Rules, 2000].
Continued……

Digital signatures can be used to authenticate the source of
messages. When ownership of a digital signature secret key is bound
to a specific user, a valid signature shows that the message was sent
by that user. The importance of high confidence in sender authenticity
is obvious in a financial context.

For example, suppose a bank's branch office sends instructions to the
central office requesting a change in the balance of an account. If the
central office is not convinced that such a message is truly sent from
an authorized source, acting on such a request could be a grave
mistake.
Verification of Digital Signature


   Verification means to determine whether –
 the initial record was affixed with the digital signature by
  using the ―keys‖ of the subscriber.

 the original record is retained intact or has been altered since
  such electronic record was bounded with the digital signature
  [Sec.2(1)(zh)].
DIGITAL SIGNATURE CERTIFICATE
A digital signature certificate is an electronic document which uses
a digital signature to bind an identity — information such as the name
of a person or an organization, their address, and so forth. The
certificate can be used to verify that it belongs to an individual.
 Any person can make an application to the Certifying Authority for
the issue of this digital certificate. The Authority charges fees (as
prescribed by the Central Government) for the issue of ―digital
signature certificate‖.
Generation of Digital Certificate
 The generation of digital signature certificate shall involve –
 receipt of an approved and verified certificate request.
 creating a new digital signature certificate.
 a distinguished name associated with the digital certificate
  owner.
 a recognized and relevant policy as defined in certification
  practice statement [Rule 24 of the IT rules].
Compromise of Digital Certificate

Digital signature certificate shall be deemed to be compromised where
   the integrity of –
 the key associated with the certificate is in doubt.

 the certificate owner is in doubt, as to the attempted use of his key
  pairs, or otherwise for malicious or unlawful purposes.
 The digital certificate shall remain in the compromise state for only such
  time as it takes to arrange for revocation.
Expiry of Digital Signature Certificate

A digital signature certificate shall be issued with a designated expiry
date. It will expire automatically and on expiry, it shall not be re-
used. The period for which a digital certificate has been issued shall
not be extended, but a new digital signature certificate may be
issued after the expiry of such period [Rules 26 of IT Act, 2000].
Cyber crime and Cyber law

What is a cyber crime?
Cyber crime is a generic term that refers to all criminal activities done
using the medium of computers, the Internet, cyber space and the
world wide web . There isn‟t really a fixed definition for cyber crime.
The Indian Law has not given any definition to the term „cyber crime‟.
In fact, the Indian Penal Code does not use the term „cyber crime‟ at
any point even after its amendment by the Information Technology
(amendment) Act 2008, the Indian Cyber law. But “Cyber Security” is
defined under Section (2) (b) meansprotecting information,
equipment, devices computer, computer resource, communication
device and informationstored therein from unauthorized access,use,
disclosure, disruption, modification or destruction.
United Nations’ Definition of
               Cybercrime
At the Tenth United Nations Congress on the Prevention of Crime and
Treatment of Offenders, in a workshop devoted to the issues of crimes
related to computer networks, cyber crime was broken into two categories
and defined thus:
      a. Cybercrime in a narrow sense (computer crime): Any illegal
behavior directed by means of electronic operations that targets the security
of computer systems and the data processed by them.
      b. Cybercrime in a broader sense (computer-related crime): Any
illegal behavior committed by means of, or in relation to, a computer
system or network, including such crimes as illegal possession [and]
offering or distributing information by means of a computer systemor
network.
What is Cyber law…?
Cyber law is a term used to describe the legal issues related to use
of communications technology, particularly“cyberspace”, i.e. the
Internet. It is less of a distinct field of law in the way that property or
contract are, as it is an intersection of many legal fields including
intellectual property, privacy, freedom of expression, and jurisdiction.
In essence, cyber law is an attempt to apply laws designed for the
physical world, to human activity on the Internet. In India, The IT Act,
 2000 as amended by The IT (Amendment) Act, 2008 is known as
the Cyber law. It has a separate chapter XI entitled “Offences” in
which various cyber crimes have been declared as penal offences
punishable with imprisonment and fine.
OFFENCES, COMPENSATION AND PENALTIES

1.   Penalty and compensation for damage computer, computer system etc: If any
     person, without permission of the owner or any other person who is in charge of a
     computer, computer system or computer network-
        a.    Accesses or secures access to such computer . Computer system or computer
              network or computer resource;
        b.    Downloads, copies or extracts any data ,computer database or information from such
              computer, computer system or computer network including information data held or
              stored in any removable storage medium.
        c.    Introduces or causes to be introduced any computer contaminant or computer virus
              into any computer , computer system or computer network.
        d.    Damages or cause to be damage to any computer , computer system or computer
              network , data, computer database or any other programmes residing in such
              computer , computer system or computer network .
        e.    Disrupts or cause of disruption of any computer , computer system or computer
              network .
Continue….
f. denies or causes the denial of access to any person authorized to access any
computer , computer system or computer network by any means;
g. provides any assistance to any computer to facilitate access to a computer
, computer system or computer network in contravention of the provision of
the Act , rules or regulations made there under;
h. Charges the service availed of by a person to the account of any other
person by tampering or manipulating with or manipulating any computer
, computer system or computer network ;
i. destroy, delete or alters any information residing in a computer resource or
diminishes its value or utility or affects it injuriously by nay means;
j. steals , conceals , destroys or alters or cause any person to steel
, conceal, destroy or alter any computer source code used for computer
resource with an intention to cause damage,
 he shall be liable to pay damage by way of compensation to the person so
affected.
Continued…
2.   Compensation for failure to protect data[Sec. 43-A] : where a body corporate
     , possessing, dealing or handling any sensitive personal data or information
     in a computer resource which it owns , control or operates , is negligent in
     implementing and maintaining reasonable security practices and produces and
     thereby causes wrongful loss and wrongful gain to any person , such body
     corporate shall be liable to pay damage s by way of compensation to the
     person so affected.

3.   Penalty to failure to furnish information , return etc.[Sec. 44] :If any person is
     required to
          a. furnish any document , return or report to the controller or the
     Certifying Authority, fails to furnish the same , he shall be liable to penalty
     not exceeding rupees one lakh and fifty thousand for each such failure.
          b. maintain books of account or records , fails to maintain the
          same, he shall be a liable to a penalty not exceeding rupees ten
          thousand for every day during which the failure continues;
Continue..
4. Penalty for securing access to a protected system[Sec 70]: The appropriate
  government may declare that any computer resource which directly or
  indirectly affects the facility of critical Information Infrastructure to be
  protected system and may , by in order in writing , authorize the person who
  are to access protected notified system. Any person who secure access or
  attempts to secure to such a protected system unauthorisely shall be
  punished with imprisonment
  of a term which may extend to 10 years and shall also be liable to fine. The
  central Government has prescribed the Information Technology (Security
  Procedure) Rules, 2004.
5 Tampering with computer source documents [sec.65] :Whoever knowingly or
  intentionally conceal , destroy or alters any computer source code used for
  computer , computer programmed , computer system is required to be
  maintained by law, shall be punishable with imprisonment up to three years
  or with fine which may extend up to rupees two lacs or with both .
Continued….
6.   Punishment for sending offensive message through communication service
     , etc[Sec.66-A] : Any person who sends . by means of a computer resource
     or a communication device –
          a. any information that is grossly offensive or have menacing character
          ; or
          b. any information which he knows to be false , but for the     purpose
          of annoyance , inconvenience, danger, obstruction , insult, injury ,
          criminal intimidation, hatred, persistently by making use of such
          computer resource or a communication device;
          c. any electronic mail or electronic mail message for the purpose
          of causing annoyance or inconvenience or to device or to mislead
          the address or recipient about the origin of such message, shall be
          punishable with imprisonment for a term which may extend to three
          years with fine.
PUNISHMENT FOR VIOLATION OF PRIVACY

7. PUNISHMENT FOR VIOLATION OF PRIVACY
 Whoever, intentionally or knowingly capture, publishes or transmit the
image of a private area of any person without his or her consent, under
circumstances violating the privacy of that person, shall be punished with
imprisonment of at least three years or with a fine no exceeding Rs 2 lacks,
or with both.
PUNISHMENT FOR CYBER TERRORISM
  An offence of cyber terrorism is committed when whoever –

(a) With intent to threaten the unity, integrity, security or sovereignty of India
    or to strike terror in the people by –

(1) Denying or cause the denial of access to any person authorised to access
    computer resource; or

(2) Attempting to penetrate or access a computer resource without
     authorisation or exceeding authorised access.
CONTINUE...

(b) Knowingly or intentionally penetrates or access a computer resource
without authorisation or exceeding authorised access and by means of
such conduct obtains access to information, data or computer database
that is restricted for reasons for the security of the State of foreign
relations; or any restricted information, data or computer database, with
reasons to believe that such information, data or computer database so
obtained may be used to cause injury to the interests of the sovereignty &
integrity of India.
Whoever commits cyber terrorism shall be punishable with imprisonment
which may extend to imprisonment for life.
PUNISHMENT FOR PUBLISHING OR TRANMITTING OF
MATERIAL CONTAINING SEXUALLY EXPLICIT ACT, ETC. IN
               ELECTRONIC FORM


 Whoever publishes or transmits or causes to be published or transmitted in
 the electronic form, any material which contains sexually explicit act or
 conduct shall be punished on first conviction with imprisonment of either
 description for a term which may extend to five years and with fine which
 may extend to Rs 10 lacks. In the event of second or subsequent conviction
 with imprisonment of either description for a term which may extend to
 seven years and also with fine which may extend to Rs 10 lacks.
Typical Cyber Crime Cases

 State of Tamil Nadu Vs Suhas Katti
This case related to posting of obscene, defamatory and annoying message
about a divorcee woman in the yahoo message group. E-Mails were also
forwarded to the victim for information by the accused through a false e-mail
account opened by him in the name of the victim. The posting of the message
resulted in annoying phone calls to the lady in the belief that she was
soliciting. Based on a complaint made by the victim in February 2004, the
Police traced the accused to Mumbai and arrested him within the next few
days. The accused was a known family friend of the victim and was
reportedly interested in marrying her. She however married another person.
This marriage later ended in divorce and the accused started contacting her
once again. On her reluctance to marry him, the accused took up the
harassment through the Internet.
Continue….

On 24-3-2004 Charge Sheet was filed u/s 67 of IT Act 2000, 469 and 509
IPC before The Hon‟ble Addl. CMM Egmore by citing 18 witnesses and 34
documents and material objects. The same was taken on file in
C.C.NO.4680/2004. On the prosecution side 12 witnesses were examined
and entire documents were marked as Exhibits. The Defence argued that
the offending mails would have been given either by ex-husband of the
complainant or the complainant her self to implicate the accused as accused
alleged to have turned down the request of the complainant to marry her.
Further the Defence counsel argued that some of the documentary evidence
was not sustainable under Section 65 B of the Indian Evidence Act.
However, the court relied upon the expert witnesses and other evidence
produced before it, including the witnesses of the Cyber Cafe owners and
came to the conclusion that the crime was conclusively proved.
Continue…
Ld. Additional Chief Metropolitan Magistrate, Egmore, delivered the
judgement on 5-11-04 as follows:

" The accused is found guilty of offences under section 469, 509 IPC
and 67 of IT Act 2000 and the accused is convicted and is sentenced
for the offence to undergo RI for 2 years under 469 IPC and to pay
fine of Rs.500/-and for the offence u/s 509 IPC sentenced to undergo 1
year Simple imprisonment and to pay fine of Rs.500/- and for the
offence u/s 67 of IT Act 2000 to undergo RI for 2 years and to pay fine
of Rs.4000/- All sentences to run concurrently."
     The accused paid fine amount and he was lodged at Central Prison,
Chennai. This is considered as the first case convicted under section 67 of
Information Technology Act 2000 in India
Bazee.com case



CEO of Bazee.com was arrested in December 2004 because a CD with
objectionable material was being sold on the website. The CD was also
being sold in the markets in Delhi. The Mumbai city police and the Delhi
Police got into action. The CEO was later released on bail. This opened up
the question as to what kind of distinction do we draw between Internet
Service Provider and Content Provider. The burden rests on the accused
that he was the Service Provider and not the Content Provider.

More Related Content

What's hot

Cyber laws in India
Cyber laws in IndiaCyber laws in India
Cyber laws in Indiasaumi17
 
Cyberspace jurisdiction meaning and concept
Cyberspace jurisdiction meaning and conceptCyberspace jurisdiction meaning and concept
Cyberspace jurisdiction meaning and conceptgagan deep
 
Cyberlaw An Overview
Cyberlaw   An OverviewCyberlaw   An Overview
Cyberlaw An OverviewTalwant Singh
 
Cyberspace
CyberspaceCyberspace
CyberspaceUtchi
 
Cyber Obscenity
Cyber ObscenityCyber Obscenity
Cyber Obscenitysneha164
 
Cyber defamation
Cyber defamationCyber defamation
Cyber defamationTuhin Batra
 
Jurisdiction in cyberspace
Jurisdiction in cyberspaceJurisdiction in cyberspace
Jurisdiction in cyberspaceDr. Arun Verma
 
cyber security legal perspective
cyber security legal perspectivecyber security legal perspective
cyber security legal perspectiveShoeb Ahmed
 
Information technology act 2000
Information technology act 2000Information technology act 2000
Information technology act 2000Akash Varaiya
 
IT ACT, 2000 (Information Technology Act, 2000)
IT ACT, 2000 (Information Technology Act, 2000)IT ACT, 2000 (Information Technology Act, 2000)
IT ACT, 2000 (Information Technology Act, 2000)Ms. Parasmani Jangid
 
Cyber crime and security ppt
Cyber crime and security pptCyber crime and security ppt
Cyber crime and security pptLipsita Behera
 
It Amendments Act
It Amendments ActIt Amendments Act
It Amendments Actanthony4web
 
Information Technology Act 2000
Information Technology Act 2000Information Technology Act 2000
Information Technology Act 2000Dr. Heera Lal IAS
 
Digital signatures
Digital signaturesDigital signatures
Digital signaturesatuljaybhaye
 
Information Technology Amendment Act 2008
Information Technology Amendment Act 2008Information Technology Amendment Act 2008
Information Technology Amendment Act 2008Nanda Mohan Shenoy
 
Cyber Crime & Information technology Act 2000
Cyber Crime & Information technology Act 2000Cyber Crime & Information technology Act 2000
Cyber Crime & Information technology Act 2000V'vek Sharma
 

What's hot (20)

Cyber laws in India
Cyber laws in IndiaCyber laws in India
Cyber laws in India
 
Cyberspace jurisdiction meaning and concept
Cyberspace jurisdiction meaning and conceptCyberspace jurisdiction meaning and concept
Cyberspace jurisdiction meaning and concept
 
Cyberlaw An Overview
Cyberlaw   An OverviewCyberlaw   An Overview
Cyberlaw An Overview
 
Cyberspace
CyberspaceCyberspace
Cyberspace
 
Cyber Obscenity
Cyber ObscenityCyber Obscenity
Cyber Obscenity
 
Cyber defamation
Cyber defamationCyber defamation
Cyber defamation
 
Cybercrime investigation
Cybercrime investigationCybercrime investigation
Cybercrime investigation
 
Jurisdiction in cyberspace
Jurisdiction in cyberspaceJurisdiction in cyberspace
Jurisdiction in cyberspace
 
IT Act 2000
IT Act 2000IT Act 2000
IT Act 2000
 
cyber security legal perspective
cyber security legal perspectivecyber security legal perspective
cyber security legal perspective
 
Information technology act 2000
Information technology act 2000Information technology act 2000
Information technology act 2000
 
Introduction to cyber law.
Introduction to cyber law. Introduction to cyber law.
Introduction to cyber law.
 
IT ACT, 2000 (Information Technology Act, 2000)
IT ACT, 2000 (Information Technology Act, 2000)IT ACT, 2000 (Information Technology Act, 2000)
IT ACT, 2000 (Information Technology Act, 2000)
 
Cyber crime and security ppt
Cyber crime and security pptCyber crime and security ppt
Cyber crime and security ppt
 
It Amendments Act
It Amendments ActIt Amendments Act
It Amendments Act
 
Information Technology Act 2000
Information Technology Act 2000Information Technology Act 2000
Information Technology Act 2000
 
Digital signatures
Digital signaturesDigital signatures
Digital signatures
 
Information Technology Amendment Act 2008
Information Technology Amendment Act 2008Information Technology Amendment Act 2008
Information Technology Amendment Act 2008
 
Cyber Crime & Information technology Act 2000
Cyber Crime & Information technology Act 2000Cyber Crime & Information technology Act 2000
Cyber Crime & Information technology Act 2000
 
Electronic evidence
Electronic evidenceElectronic evidence
Electronic evidence
 

Viewers also liked

cyber crime & cyber law
cyber crime & cyber lawcyber crime & cyber law
cyber crime & cyber lawhimanshumunjal
 
Misuse of Internet
Misuse of InternetMisuse of Internet
Misuse of InternetAreeb Khan
 
Cyber crime presentation
Cyber crime presentation Cyber crime presentation
Cyber crime presentation Priya Saluja
 
Firewall presentation
Firewall presentationFirewall presentation
Firewall presentationAmandeep Kaur
 
Cyber laws
Cyber lawsCyber laws
Cyber lawsmadhu190
 
Types of firewall
Types of firewallTypes of firewall
Types of firewallPina Parmar
 
Cybercrime presentation
Cybercrime presentationCybercrime presentation
Cybercrime presentationRajat Jain
 
Cybercrime.ppt
Cybercrime.pptCybercrime.ppt
Cybercrime.pptAeman Khan
 
Intrusion detection system
Intrusion detection system Intrusion detection system
Intrusion detection system gaurav koriya
 
Cyber security presentation
Cyber security presentationCyber security presentation
Cyber security presentationBijay Bhandari
 
Cyber security
Cyber securityCyber security
Cyber securitySiblu28
 
Cyber crime ppt
Cyber crime pptCyber crime ppt
Cyber crime pptMOE515253
 

Viewers also liked (15)

Cyber Law And Ethics
Cyber Law And EthicsCyber Law And Ethics
Cyber Law And Ethics
 
Cyber Law
Cyber  LawCyber  Law
Cyber Law
 
cyber crime & cyber law
cyber crime & cyber lawcyber crime & cyber law
cyber crime & cyber law
 
Misuse of Internet
Misuse of InternetMisuse of Internet
Misuse of Internet
 
Cyber crime presentation
Cyber crime presentation Cyber crime presentation
Cyber crime presentation
 
Firewall presentation
Firewall presentationFirewall presentation
Firewall presentation
 
Cyber laws
Cyber lawsCyber laws
Cyber laws
 
Types of firewall
Types of firewallTypes of firewall
Types of firewall
 
Cybercrime presentation
Cybercrime presentationCybercrime presentation
Cybercrime presentation
 
Cybercrime.ppt
Cybercrime.pptCybercrime.ppt
Cybercrime.ppt
 
Intrusion detection system
Intrusion detection system Intrusion detection system
Intrusion detection system
 
Cyber security presentation
Cyber security presentationCyber security presentation
Cyber security presentation
 
Cyber security
Cyber securityCyber security
Cyber security
 
Cyber-crime PPT
Cyber-crime PPTCyber-crime PPT
Cyber-crime PPT
 
Cyber crime ppt
Cyber crime pptCyber crime ppt
Cyber crime ppt
 

Similar to Cyber law (20)

Cyber
CyberCyber
Cyber
 
It act law ppt
It act law pptIt act law ppt
It act law ppt
 
Introduction to cyber law.
Introduction to cyber law. Introduction to cyber law.
Introduction to cyber law.
 
INFORMATION TECHNOLOGY ACT 2000 and its provisions.pptx
INFORMATION TECHNOLOGY ACT 2000 and its provisions.pptxINFORMATION TECHNOLOGY ACT 2000 and its provisions.pptx
INFORMATION TECHNOLOGY ACT 2000 and its provisions.pptx
 
Cyber crime
Cyber crimeCyber crime
Cyber crime
 
Cyber crime 1
Cyber crime 1Cyber crime 1
Cyber crime 1
 
It act 2000
It act 2000It act 2000
It act 2000
 
Information technology act
Information technology actInformation technology act
Information technology act
 
IT Act 2000 & IT Act 2008
IT Act 2000 & IT Act 2008IT Act 2000 & IT Act 2008
IT Act 2000 & IT Act 2008
 
INDIAN CYBERLAW AND SECURITY
INDIAN CYBERLAW AND SECURITYINDIAN CYBERLAW AND SECURITY
INDIAN CYBERLAW AND SECURITY
 
Advanced Electronic Signatures
Advanced Electronic SignaturesAdvanced Electronic Signatures
Advanced Electronic Signatures
 
It act,2000 note
It act,2000 noteIt act,2000 note
It act,2000 note
 
Cyber Law and Cyber Crime
Cyber Law and Cyber Crime Cyber Law and Cyber Crime
Cyber Law and Cyber Crime
 
Business Law - Unit 3
Business Law - Unit 3Business Law - Unit 3
Business Law - Unit 3
 
Cyber law final
Cyber law finalCyber law final
Cyber law final
 
The Cyber Law regime in India.ppt
The Cyber Law regime in India.pptThe Cyber Law regime in India.ppt
The Cyber Law regime in India.ppt
 
Cyber law-it-act-2000
Cyber law-it-act-2000Cyber law-it-act-2000
Cyber law-it-act-2000
 
IT Act,2000
IT Act,2000IT Act,2000
IT Act,2000
 
It act
It actIt act
It act
 
Information Technology Act 2008
Information Technology Act 2008Information Technology Act 2008
Information Technology Act 2008
 

More from Arnab Roy Chowdhury

Working of barcode reader Ppt - Unitedworld School of Business
Working of barcode reader Ppt - Unitedworld School of BusinessWorking of barcode reader Ppt - Unitedworld School of Business
Working of barcode reader Ppt - Unitedworld School of BusinessArnab Roy Chowdhury
 
Unnati - Unitedworld School of Business
Unnati - Unitedworld School of BusinessUnnati - Unitedworld School of Business
Unnati - Unitedworld School of BusinessArnab Roy Chowdhury
 
Classification and Characteristics of All Banks - Unitedworld School of Busi...
Classification and Characteristics of All Banks  - Unitedworld School of Busi...Classification and Characteristics of All Banks  - Unitedworld School of Busi...
Classification and Characteristics of All Banks - Unitedworld School of Busi...Arnab Roy Chowdhury
 
Training and developement - Unitedworld School of Business
Training and developement - Unitedworld School of BusinessTraining and developement - Unitedworld School of Business
Training and developement - Unitedworld School of BusinessArnab Roy Chowdhury
 
The organizational structure, managers and activities Ppt - Unitedworld Schoo...
The organizational structure, managers and activities Ppt - Unitedworld Schoo...The organizational structure, managers and activities Ppt - Unitedworld Schoo...
The organizational structure, managers and activities Ppt - Unitedworld Schoo...Arnab Roy Chowdhury
 
The IT - IS and its influence Ppt - Unitedworld School of Business
The IT - IS and its influence Ppt - Unitedworld School of BusinessThe IT - IS and its influence Ppt - Unitedworld School of Business
The IT - IS and its influence Ppt - Unitedworld School of BusinessArnab Roy Chowdhury
 
The environment protection act,1986 - Unitedworld School of Business
The  environment protection act,1986 - Unitedworld School of BusinessThe  environment protection act,1986 - Unitedworld School of Business
The environment protection act,1986 - Unitedworld School of BusinessArnab Roy Chowdhury
 
Tean color - Unitedworld School of Business
Tean color - Unitedworld School of BusinessTean color - Unitedworld School of Business
Tean color - Unitedworld School of BusinessArnab Roy Chowdhury
 
Target market - Unitedworld School of Business
Target market - Unitedworld School of BusinessTarget market - Unitedworld School of Business
Target market - Unitedworld School of BusinessArnab Roy Chowdhury
 
Service marketing - Unitedworld School of Business
Service marketing - Unitedworld School of BusinessService marketing - Unitedworld School of Business
Service marketing - Unitedworld School of BusinessArnab Roy Chowdhury
 
Selection Process in HR - Unitedworld School of Business
Selection Process in HR - Unitedworld School of BusinessSelection Process in HR - Unitedworld School of Business
Selection Process in HR - Unitedworld School of BusinessArnab Roy Chowdhury
 
Sales of goods act - Unitedworld School of Business
Sales of goods act - Unitedworld School of BusinessSales of goods act - Unitedworld School of Business
Sales of goods act - Unitedworld School of BusinessArnab Roy Chowdhury
 
Sales force automation - Unitedworld School of Business
Sales force automation - Unitedworld School of BusinessSales force automation - Unitedworld School of Business
Sales force automation - Unitedworld School of BusinessArnab Roy Chowdhury
 
Sage advance case - Unitedworld School of Business
Sage advance case - Unitedworld School of BusinessSage advance case - Unitedworld School of Business
Sage advance case - Unitedworld School of BusinessArnab Roy Chowdhury
 
Recruitment - Unitedworld School of Business
Recruitment - Unitedworld School of BusinessRecruitment - Unitedworld School of Business
Recruitment - Unitedworld School of BusinessArnab Roy Chowdhury
 
R.m case study - Unitedworld School of Business
R.m case study - Unitedworld School of BusinessR.m case study - Unitedworld School of Business
R.m case study - Unitedworld School of BusinessArnab Roy Chowdhury
 
Personal values - Unitedworld School of Business
Personal values - Unitedworld School of BusinessPersonal values - Unitedworld School of Business
Personal values - Unitedworld School of BusinessArnab Roy Chowdhury
 
Personal selling & sales management - Unitedworld School of Business
Personal selling & sales management - Unitedworld School of BusinessPersonal selling & sales management - Unitedworld School of Business
Personal selling & sales management - Unitedworld School of BusinessArnab Roy Chowdhury
 
Normal distribution - Unitedworld School of Business
Normal distribution - Unitedworld School of BusinessNormal distribution - Unitedworld School of Business
Normal distribution - Unitedworld School of BusinessArnab Roy Chowdhury
 
New media literacy - Unitedworld School of Business
New media literacy - Unitedworld School of BusinessNew media literacy - Unitedworld School of Business
New media literacy - Unitedworld School of BusinessArnab Roy Chowdhury
 

More from Arnab Roy Chowdhury (20)

Working of barcode reader Ppt - Unitedworld School of Business
Working of barcode reader Ppt - Unitedworld School of BusinessWorking of barcode reader Ppt - Unitedworld School of Business
Working of barcode reader Ppt - Unitedworld School of Business
 
Unnati - Unitedworld School of Business
Unnati - Unitedworld School of BusinessUnnati - Unitedworld School of Business
Unnati - Unitedworld School of Business
 
Classification and Characteristics of All Banks - Unitedworld School of Busi...
Classification and Characteristics of All Banks  - Unitedworld School of Busi...Classification and Characteristics of All Banks  - Unitedworld School of Busi...
Classification and Characteristics of All Banks - Unitedworld School of Busi...
 
Training and developement - Unitedworld School of Business
Training and developement - Unitedworld School of BusinessTraining and developement - Unitedworld School of Business
Training and developement - Unitedworld School of Business
 
The organizational structure, managers and activities Ppt - Unitedworld Schoo...
The organizational structure, managers and activities Ppt - Unitedworld Schoo...The organizational structure, managers and activities Ppt - Unitedworld Schoo...
The organizational structure, managers and activities Ppt - Unitedworld Schoo...
 
The IT - IS and its influence Ppt - Unitedworld School of Business
The IT - IS and its influence Ppt - Unitedworld School of BusinessThe IT - IS and its influence Ppt - Unitedworld School of Business
The IT - IS and its influence Ppt - Unitedworld School of Business
 
The environment protection act,1986 - Unitedworld School of Business
The  environment protection act,1986 - Unitedworld School of BusinessThe  environment protection act,1986 - Unitedworld School of Business
The environment protection act,1986 - Unitedworld School of Business
 
Tean color - Unitedworld School of Business
Tean color - Unitedworld School of BusinessTean color - Unitedworld School of Business
Tean color - Unitedworld School of Business
 
Target market - Unitedworld School of Business
Target market - Unitedworld School of BusinessTarget market - Unitedworld School of Business
Target market - Unitedworld School of Business
 
Service marketing - Unitedworld School of Business
Service marketing - Unitedworld School of BusinessService marketing - Unitedworld School of Business
Service marketing - Unitedworld School of Business
 
Selection Process in HR - Unitedworld School of Business
Selection Process in HR - Unitedworld School of BusinessSelection Process in HR - Unitedworld School of Business
Selection Process in HR - Unitedworld School of Business
 
Sales of goods act - Unitedworld School of Business
Sales of goods act - Unitedworld School of BusinessSales of goods act - Unitedworld School of Business
Sales of goods act - Unitedworld School of Business
 
Sales force automation - Unitedworld School of Business
Sales force automation - Unitedworld School of BusinessSales force automation - Unitedworld School of Business
Sales force automation - Unitedworld School of Business
 
Sage advance case - Unitedworld School of Business
Sage advance case - Unitedworld School of BusinessSage advance case - Unitedworld School of Business
Sage advance case - Unitedworld School of Business
 
Recruitment - Unitedworld School of Business
Recruitment - Unitedworld School of BusinessRecruitment - Unitedworld School of Business
Recruitment - Unitedworld School of Business
 
R.m case study - Unitedworld School of Business
R.m case study - Unitedworld School of BusinessR.m case study - Unitedworld School of Business
R.m case study - Unitedworld School of Business
 
Personal values - Unitedworld School of Business
Personal values - Unitedworld School of BusinessPersonal values - Unitedworld School of Business
Personal values - Unitedworld School of Business
 
Personal selling & sales management - Unitedworld School of Business
Personal selling & sales management - Unitedworld School of BusinessPersonal selling & sales management - Unitedworld School of Business
Personal selling & sales management - Unitedworld School of Business
 
Normal distribution - Unitedworld School of Business
Normal distribution - Unitedworld School of BusinessNormal distribution - Unitedworld School of Business
Normal distribution - Unitedworld School of Business
 
New media literacy - Unitedworld School of Business
New media literacy - Unitedworld School of BusinessNew media literacy - Unitedworld School of Business
New media literacy - Unitedworld School of Business
 

Cyber law

  • 1. Cyber Law Submitted by: Arnab Roy Chowdhury (06) Braja Mani Das (10) Subhasish Ishar (54) Sayantan Saha (52) Vrushabh Vira (60)
  • 2. IT ACT 2000 The Information Technology act , 2000 received the assent of president of India on 9 June 2000 and came into force from 17 October in that same year .The act was enacted to provide legal recognition for transaction carried out by means of electronic data interchange and other means of electronic communication , commonly referred to as “Electronic Commerce” , to facilitate electronic filling of documents with governments agencies which involve the use of alternative to paper based method of communication and storage information This law applies to any kind of information in the form of data message used in the context of commercial activities.
  • 3. Objective  to grant legal recognition for transaction carried out by means of electronic data interchange and other means of electronic communication;  To give legal recognition to digital signature / electronic signature for authentication accepting of any information or matter which require authentication under any law;  To facilitate electronic of documents with Government departments;  To facilitate electronic storage of data ;  To facilitate and give legal sanction to electronic fund transfer between banks and financial institution ;  To give legal recognition for keeping books of account by bankers in electronic form.
  • 4. The Act does not apply to: 1.a negotiable instrument as defined in section 13 of the Negotiable Instruments Act,1881; 2.a power-of-attorney as defined in section 1A of the Powers- of-Attorney Act, 1882; 3.a trust as defined in section 3 of the Indian Trusts Act, 1882; 4.a will as defined in clause (h) of section 2 of the Indian Succession Act, 1925 including any other testamentary disposition by whatever name called; 5.any contract for the sale or conveyance of immovable property or any interest in such property; 6.any such class of documents or transactions as may be notified by the Central Government in the Official Gazette.
  • 5. Amendment act 2008 Being the first legislation in the nation on technology, computers and ecommerce and e-communication, the Act was the subject of extensive debates, elaborate reviews and detailed criticisms, with one arm of the industry criticizing some sections of the Act tobe draconian and other stating it is too diluted and lenient. There were some conspicuous omissions too resulting in the investigators relying more and more on the time-tested (one and half century-old) Indian Penal Code even in technology based cases with the I.T. Act also being referred in the process and the reliance more on IPC rather on the ITA. Thus the need for an amendment – a detailed one – was felt forthe I.T. Act almost from the year 2003-04 itself. Major industry bodies were consulted and advisory groups were formed to go into the perceived lacunae in the I.T. Act and comparing it with similar legislations in other nations and to suggest recommendations.
  • 6. Continue…….. Such recommendations were analyzed and subsequently taken up as a comprehensive Amendment Act and after considerable administrative procedures, the consolidated amendment called the Information Technology Amendment Act 2008was placed in the Parliament and passed without much debate, towards the end of2008 (by which time the Mumbai terrorist attack of 26 November 2008 had taken place). This Amendment Act got the President assent on 5 Feb 2009 and was made effective from 27 October2009. Some of the notable features of the ITAA are as follows:  Focusing on data privacy  Focusing on Information Security  Defining cyber café  Making digital signature technology neutral  Defining reasonable security practices to be followed by corporate
  • 7. Continue….  Redefining the role of intermediaries  Recognizing the role of Indian Computer Emergency Response Team  Inclusion of some additional cyber crimes like child pornography and cyber terrorism  authorizing an Inspector to investigate cyber offences (as against the DSP earlier)
  • 8. DIGITAL SIGNATURE A digital signature is an electronic scheme for demonstrating the authenticity of a digital message or document. A valid digital signature gives recipient a reason to believe that the message was created by a known sender and that it was not altered in transit. Digital signatures are commonly used for software distribution, financial transactions, and in other cases where it is important to detect imitation or tampering.
  • 9. Authentication of Digital Signature A digital signature shall –  be created and verified by cryptography that concerns itself with transforming electronic records.  use ―Public Key Cryptography‖ which employs an algorithm using two different mathematical ―keys‖ – one for creating a digital signature or transforming it and another key for verifying the signature or returning the electronic record to original form. Hash function shall be used to create this signature. Software utilizing such keys are termed as ―asymmetric cryptography‖ [Rule 3 of IT Rules, 2000].
  • 10. Continued…… Digital signatures can be used to authenticate the source of messages. When ownership of a digital signature secret key is bound to a specific user, a valid signature shows that the message was sent by that user. The importance of high confidence in sender authenticity is obvious in a financial context. For example, suppose a bank's branch office sends instructions to the central office requesting a change in the balance of an account. If the central office is not convinced that such a message is truly sent from an authorized source, acting on such a request could be a grave mistake.
  • 11. Verification of Digital Signature Verification means to determine whether –  the initial record was affixed with the digital signature by using the ―keys‖ of the subscriber.  the original record is retained intact or has been altered since such electronic record was bounded with the digital signature [Sec.2(1)(zh)].
  • 12. DIGITAL SIGNATURE CERTIFICATE A digital signature certificate is an electronic document which uses a digital signature to bind an identity — information such as the name of a person or an organization, their address, and so forth. The certificate can be used to verify that it belongs to an individual. Any person can make an application to the Certifying Authority for the issue of this digital certificate. The Authority charges fees (as prescribed by the Central Government) for the issue of ―digital signature certificate‖.
  • 13. Generation of Digital Certificate The generation of digital signature certificate shall involve –  receipt of an approved and verified certificate request.  creating a new digital signature certificate.  a distinguished name associated with the digital certificate owner.  a recognized and relevant policy as defined in certification practice statement [Rule 24 of the IT rules].
  • 14. Compromise of Digital Certificate Digital signature certificate shall be deemed to be compromised where the integrity of –  the key associated with the certificate is in doubt.  the certificate owner is in doubt, as to the attempted use of his key pairs, or otherwise for malicious or unlawful purposes. The digital certificate shall remain in the compromise state for only such time as it takes to arrange for revocation.
  • 15. Expiry of Digital Signature Certificate A digital signature certificate shall be issued with a designated expiry date. It will expire automatically and on expiry, it shall not be re- used. The period for which a digital certificate has been issued shall not be extended, but a new digital signature certificate may be issued after the expiry of such period [Rules 26 of IT Act, 2000].
  • 16. Cyber crime and Cyber law What is a cyber crime? Cyber crime is a generic term that refers to all criminal activities done using the medium of computers, the Internet, cyber space and the world wide web . There isn‟t really a fixed definition for cyber crime. The Indian Law has not given any definition to the term „cyber crime‟. In fact, the Indian Penal Code does not use the term „cyber crime‟ at any point even after its amendment by the Information Technology (amendment) Act 2008, the Indian Cyber law. But “Cyber Security” is defined under Section (2) (b) meansprotecting information, equipment, devices computer, computer resource, communication device and informationstored therein from unauthorized access,use, disclosure, disruption, modification or destruction.
  • 17. United Nations’ Definition of Cybercrime At the Tenth United Nations Congress on the Prevention of Crime and Treatment of Offenders, in a workshop devoted to the issues of crimes related to computer networks, cyber crime was broken into two categories and defined thus: a. Cybercrime in a narrow sense (computer crime): Any illegal behavior directed by means of electronic operations that targets the security of computer systems and the data processed by them. b. Cybercrime in a broader sense (computer-related crime): Any illegal behavior committed by means of, or in relation to, a computer system or network, including such crimes as illegal possession [and] offering or distributing information by means of a computer systemor network.
  • 18. What is Cyber law…? Cyber law is a term used to describe the legal issues related to use of communications technology, particularly“cyberspace”, i.e. the Internet. It is less of a distinct field of law in the way that property or contract are, as it is an intersection of many legal fields including intellectual property, privacy, freedom of expression, and jurisdiction. In essence, cyber law is an attempt to apply laws designed for the physical world, to human activity on the Internet. In India, The IT Act, 2000 as amended by The IT (Amendment) Act, 2008 is known as the Cyber law. It has a separate chapter XI entitled “Offences” in which various cyber crimes have been declared as penal offences punishable with imprisonment and fine.
  • 19. OFFENCES, COMPENSATION AND PENALTIES 1. Penalty and compensation for damage computer, computer system etc: If any person, without permission of the owner or any other person who is in charge of a computer, computer system or computer network- a. Accesses or secures access to such computer . Computer system or computer network or computer resource; b. Downloads, copies or extracts any data ,computer database or information from such computer, computer system or computer network including information data held or stored in any removable storage medium. c. Introduces or causes to be introduced any computer contaminant or computer virus into any computer , computer system or computer network. d. Damages or cause to be damage to any computer , computer system or computer network , data, computer database or any other programmes residing in such computer , computer system or computer network . e. Disrupts or cause of disruption of any computer , computer system or computer network .
  • 20. Continue…. f. denies or causes the denial of access to any person authorized to access any computer , computer system or computer network by any means; g. provides any assistance to any computer to facilitate access to a computer , computer system or computer network in contravention of the provision of the Act , rules or regulations made there under; h. Charges the service availed of by a person to the account of any other person by tampering or manipulating with or manipulating any computer , computer system or computer network ; i. destroy, delete or alters any information residing in a computer resource or diminishes its value or utility or affects it injuriously by nay means; j. steals , conceals , destroys or alters or cause any person to steel , conceal, destroy or alter any computer source code used for computer resource with an intention to cause damage, he shall be liable to pay damage by way of compensation to the person so affected.
  • 21. Continued… 2. Compensation for failure to protect data[Sec. 43-A] : where a body corporate , possessing, dealing or handling any sensitive personal data or information in a computer resource which it owns , control or operates , is negligent in implementing and maintaining reasonable security practices and produces and thereby causes wrongful loss and wrongful gain to any person , such body corporate shall be liable to pay damage s by way of compensation to the person so affected. 3. Penalty to failure to furnish information , return etc.[Sec. 44] :If any person is required to a. furnish any document , return or report to the controller or the Certifying Authority, fails to furnish the same , he shall be liable to penalty not exceeding rupees one lakh and fifty thousand for each such failure. b. maintain books of account or records , fails to maintain the same, he shall be a liable to a penalty not exceeding rupees ten thousand for every day during which the failure continues;
  • 22. Continue.. 4. Penalty for securing access to a protected system[Sec 70]: The appropriate government may declare that any computer resource which directly or indirectly affects the facility of critical Information Infrastructure to be protected system and may , by in order in writing , authorize the person who are to access protected notified system. Any person who secure access or attempts to secure to such a protected system unauthorisely shall be punished with imprisonment of a term which may extend to 10 years and shall also be liable to fine. The central Government has prescribed the Information Technology (Security Procedure) Rules, 2004. 5 Tampering with computer source documents [sec.65] :Whoever knowingly or intentionally conceal , destroy or alters any computer source code used for computer , computer programmed , computer system is required to be maintained by law, shall be punishable with imprisonment up to three years or with fine which may extend up to rupees two lacs or with both .
  • 23. Continued…. 6. Punishment for sending offensive message through communication service , etc[Sec.66-A] : Any person who sends . by means of a computer resource or a communication device – a. any information that is grossly offensive or have menacing character ; or b. any information which he knows to be false , but for the purpose of annoyance , inconvenience, danger, obstruction , insult, injury , criminal intimidation, hatred, persistently by making use of such computer resource or a communication device; c. any electronic mail or electronic mail message for the purpose of causing annoyance or inconvenience or to device or to mislead the address or recipient about the origin of such message, shall be punishable with imprisonment for a term which may extend to three years with fine.
  • 24. PUNISHMENT FOR VIOLATION OF PRIVACY 7. PUNISHMENT FOR VIOLATION OF PRIVACY Whoever, intentionally or knowingly capture, publishes or transmit the image of a private area of any person without his or her consent, under circumstances violating the privacy of that person, shall be punished with imprisonment of at least three years or with a fine no exceeding Rs 2 lacks, or with both.
  • 25. PUNISHMENT FOR CYBER TERRORISM An offence of cyber terrorism is committed when whoever – (a) With intent to threaten the unity, integrity, security or sovereignty of India or to strike terror in the people by – (1) Denying or cause the denial of access to any person authorised to access computer resource; or (2) Attempting to penetrate or access a computer resource without authorisation or exceeding authorised access.
  • 26. CONTINUE... (b) Knowingly or intentionally penetrates or access a computer resource without authorisation or exceeding authorised access and by means of such conduct obtains access to information, data or computer database that is restricted for reasons for the security of the State of foreign relations; or any restricted information, data or computer database, with reasons to believe that such information, data or computer database so obtained may be used to cause injury to the interests of the sovereignty & integrity of India. Whoever commits cyber terrorism shall be punishable with imprisonment which may extend to imprisonment for life.
  • 27. PUNISHMENT FOR PUBLISHING OR TRANMITTING OF MATERIAL CONTAINING SEXUALLY EXPLICIT ACT, ETC. IN ELECTRONIC FORM Whoever publishes or transmits or causes to be published or transmitted in the electronic form, any material which contains sexually explicit act or conduct shall be punished on first conviction with imprisonment of either description for a term which may extend to five years and with fine which may extend to Rs 10 lacks. In the event of second or subsequent conviction with imprisonment of either description for a term which may extend to seven years and also with fine which may extend to Rs 10 lacks.
  • 28. Typical Cyber Crime Cases State of Tamil Nadu Vs Suhas Katti This case related to posting of obscene, defamatory and annoying message about a divorcee woman in the yahoo message group. E-Mails were also forwarded to the victim for information by the accused through a false e-mail account opened by him in the name of the victim. The posting of the message resulted in annoying phone calls to the lady in the belief that she was soliciting. Based on a complaint made by the victim in February 2004, the Police traced the accused to Mumbai and arrested him within the next few days. The accused was a known family friend of the victim and was reportedly interested in marrying her. She however married another person. This marriage later ended in divorce and the accused started contacting her once again. On her reluctance to marry him, the accused took up the harassment through the Internet.
  • 29. Continue…. On 24-3-2004 Charge Sheet was filed u/s 67 of IT Act 2000, 469 and 509 IPC before The Hon‟ble Addl. CMM Egmore by citing 18 witnesses and 34 documents and material objects. The same was taken on file in C.C.NO.4680/2004. On the prosecution side 12 witnesses were examined and entire documents were marked as Exhibits. The Defence argued that the offending mails would have been given either by ex-husband of the complainant or the complainant her self to implicate the accused as accused alleged to have turned down the request of the complainant to marry her. Further the Defence counsel argued that some of the documentary evidence was not sustainable under Section 65 B of the Indian Evidence Act. However, the court relied upon the expert witnesses and other evidence produced before it, including the witnesses of the Cyber Cafe owners and came to the conclusion that the crime was conclusively proved.
  • 30. Continue… Ld. Additional Chief Metropolitan Magistrate, Egmore, delivered the judgement on 5-11-04 as follows: " The accused is found guilty of offences under section 469, 509 IPC and 67 of IT Act 2000 and the accused is convicted and is sentenced for the offence to undergo RI for 2 years under 469 IPC and to pay fine of Rs.500/-and for the offence u/s 509 IPC sentenced to undergo 1 year Simple imprisonment and to pay fine of Rs.500/- and for the offence u/s 67 of IT Act 2000 to undergo RI for 2 years and to pay fine of Rs.4000/- All sentences to run concurrently." The accused paid fine amount and he was lodged at Central Prison, Chennai. This is considered as the first case convicted under section 67 of Information Technology Act 2000 in India
  • 31. Bazee.com case CEO of Bazee.com was arrested in December 2004 because a CD with objectionable material was being sold on the website. The CD was also being sold in the markets in Delhi. The Mumbai city police and the Delhi Police got into action. The CEO was later released on bail. This opened up the question as to what kind of distinction do we draw between Internet Service Provider and Content Provider. The burden rests on the accused that he was the Service Provider and not the Content Provider.