FAQs

General

  What is I-CAMPS? 

Indian Citizen Assistance for Mobile Privacy and Security (I-CAMPS) is an initiative by the Government of India to support Indian citizens in protecting themselves against Mobile Security & Privacy Issues. The idea behind this initiative is to create an updated and comprehensive central repository of available mobile security & privacy information. The citizen side of the initiative will consist of a Mobile App, a Web Portal and a chatbot, through which the users can access the latest and simplified information on mobile security & privacy that is filtered & curated based on their mobile phones, apps & services used by them.

What is the purpose of I-CAMPS? 

Mobile phones are an integral part of our daily lives today. This dependency and increased usage puts innocent people at security & privacy risks, a large part of which can be easily mitigated by increasing awareness among the end user. The Government is obliged to ensure the security and privacy of the citizens, hence it has undertaken this initiative to promote citizen mobile security.  I-CAMPS helps achieve these goals by empowering individuals with targeted and actionable information on protecting themselves.

Is it a Mobile Antivirus apps ?

No, I-CAMPS is not a mobile antivirus application. I-CAMPS is a platform which aims to provide users with targeted and actionable information regarding cyber threats through various channels, which include a mobile application, web portal and chatbot. 

Is I-CAMPS a mobile application?

The I-CAMPS technology stack includes multiple delivery modes to the citizens to provide customised information on mobile security and privacy. Mobile application will be one such mode of delivery.

How can I access the information given by I-CAMPS? 

The information can be accessed by 

Is it a paid service?

No, this will be a free service for all the citizens of India. 

Who will run I-CAMPS?

A dedicated team duly supported by

What operating systems will I-CAMPS support?

ICAMPS will support all OSs but since Android OS is on 95.8% of phones in India. Hence I-CAMPS will begin with Android and later include IOS. 

Can it prevent cyber-crimes executed on mobile phones?

The objective of I-CAMPS is to help users take preventive & protective actions. It will do so by proactively guiding users to resolve vulnerabilities and optimize digital habits that are exploited by bad actors. 

What parts of mobile phone security will I-CAMPS cover?

I-CAMPS will provide inputs on all six layers of a mobile device - Network, Device Hardware, Operating System, Applications, User Settings, and Services. 

CERT-In has a similar initiative known as the Cyber Swachhta Kendra. How is I-CAMPS different?

The "Cyber Swachhta Kendra" (Botnet Cleaning and Malware Analysis Centre) is a part of the Government of India's Digital India initiative under the Ministry of Electronics and Information Technology (MeitY) to create a secure cyber space by detecting botnet infections in India and to notify, enable cleaning and securing systems of end users so as to prevent further infections. They also provide and recommend security Tools for the users but none for Smartphones. 

CDAC also provides a similar Mobile Device Security Solution, M-Kavach. How is I-CAMPS different?

M-Kavach focuses only on detecting malware and threat analyser for the user's device, more like an Antivirus solution with deep permissions. I-CAMPS adopts a holistic approach by providing information on all 6 Layers of the mobile device without taking deep permissions from the user. 

How is it different from a Tech News Application?

I-CAMPS differs from a Tech News Application in the way it provides information. While tech news applications offer generalized and broad-spectrum information and updates, I-CAMPS takes a different approach. It focuses on delivering contextual, relevant, and simplified information specifically related to mobile privacy and security threats. The goal of I-CAMPS is to inform and educate the common citizen about these specific threats, offering a more targeted and specialized resource compared to a typical tech news application.

There are many Government websites and applications for user awareness. How is this different?

All are restricted to their specific domains and objectives of that particular Ministry or department. I-CAMPS will include and combine information from these initiatives and present it to users in a simplified and contextual manner.

How is this initiative unique?

I-CAMPS is the only Government initiative in the world focused on the benefit of it's citizens free of cost.

Why is this a Government initiative?

i. Indian smartphone users are unique and supporting them does not make a business case hence Govt initiative to support them. 

ii. Multiple Govt departments working under six different Ministries are involved and only a Govt initiative can coordinate with them as well as with industry.

Why can't it be replicated?

No other way to bring all government departments and different industry segments under one roof.

PrIVACY

Do I need to share any information to benefit from I-CAMPS?

No, to give customised advice on each phone, the application will not require any personally identifiable information to be transmitted outside the application. The relevant dataset containing security information will be sent to the user's device, and data processing will take place on the user's device itself.

Why should I trust an application promoted by the Government?

While the initiative is from the Government of India, the responsibility of execution has been given to the Industry with transparent participation of privacy and cyber security experts. The initiative aims to be transparent at each level by publicly declaring the source code, the standards adopted, industry participation, meeting minutes, etc. Public consultations will also be undertaken to streamline the initiative and make the processes even more transparent. 

What Privacy Standards will be adopted in testing and benchmarking the application?

The Standards Group and the Advisory Committee of I-CAMPS will determine the privacy principles for the application. These principles will be aligned with global best practices. The I-CAMPS app itself will also be tested and rated against the same standards and procedure. All the results will be published in the public domain.

Providing customized ratings on Apps downloaded on the device may require the app to transmit the list of apps to the server. Will that not be a privacy issue?

To give customised advice on each phone, the application will not require any personally identifiable information to be transmitted outside the app. The relevant dataset containing security information will be sent to the user's device, and data processing will take place on the user's device itself. In this way, the app will need limited permissions, but no data will be shared outside the phone, ensuring user privacy.

Will I-CAMPS share user information with any of its partners or any other third parties?

I-CAMPS does not have access to user information hence it can not and does not share it with any third parties.

Features

How will it tackle fraudulent/cloned applications on Google Play Store?

I-CAMPS team will proactively scan the Play Store to identify such apps and create blacklists of potential and confirmed fraudulent apps. At the user's end, the I-CAMPS application will crosscheck if any apps in the latest blacklist are being used on the phone and alert the users accordingly. 

Can a user also register mobile cyber crime complaints on the I-CAMPS app?

Yes, citizens can use I-CAMPS application or the web portal to report any cyber/mobile security incident. The complaint will be forwarded to the Indian Cybercrime Coordination Centre in real time. 

Will I-CAMPS be connected to Cybercrime Cells and Government departments?

The I-CAMPS knowledge management platform will be connected to I4C, NCCC & CERT-IN to receive real-time information on threats and vulnerabilities. 

Why not include Antivirus features in the app to make it a holistic solution?

Antivirus features require extensive user permissions, which will affect its adoption, degrade its privacy aspects and hence its overall acceptability. 

How will it tackle fraudulent/cloned applications not hosted on Google Play Store?

Dedicated I-CAMPS teams will proactively scan known APK websites and identify and alert the users accordingly.

How will applications be tested without the source code?

Application source code is not a hard requirement for performing security assessment. Instead, these applications will be put through an automated process that will check for privacy and security issues. This will generate useful insights efficiently even in the absence of the source code.

Mobile device testing requires sophisticated infrastructure. How will these devices be tested?

I-CAMPS has partnered with Telecommunication Engineering Centre (TEC) and the National Centre for Communication Security (NCCS). The I-CAMPS platform is designed to collaborate and obtain useful insights from the existing and proposed labs under these departments. 

The information would need to be updated continuously to make it effective. How will the platform do that?

Continuous information updation is undoubtedly one of the core aspects of I-CAMPS. The platform will have dedicated teams at the backend responsible for liaising with specific sources and organizations and following procedures to ensure continuous updation. 

Google Play store has close to 3 million applications. How will I-CAMPS carry out testing at such a massive scale?

The advisory group will recommend the list of apps to be tested. It will contain the most used apps in India and specific apps flagged by law enforcement agencies. Again, the platform's primary purpose is not to test apps but to bridge the information gap with the citizens on all mobile security and privacy issues. 

Transparency

How can I access the architecture of I-CAMPS?

This is the architecture we are using for ICAMPS as of now.

Will the I-CAMPS App be open source ?

Yes, the entire code base of the app will be public.

What will be the standards for device testing and rating?

The standards which will decide device testing and rating in the proposed platform will be similar to the international standards on device security and privacy, as determined by the Standards Group and the Advisory Committee.

Can anyone access the standards for testing and ratings?

Yes, the standards for testing and ratings will be public.