India's electronics and IT secretary, S Krishnan, said the country needs greater "strategic autonomy" and control over the hardware underpinning AI and biometric systems, Economic Times reports. Speaking at a National Council of Applied Economic Research event, Krishnan warned that many Internet of Things devices function as "black boxes" and flagged industrial-espionage and supply-chain risks, singling out the integrity of India's digital public infrastructure (DPI) stack and biometric-authentication devices. He framed it as an extension of steps India already takes in telecom and surveillance, suggesting controls may widen "particularly in the context of AI." The remarks build on existing measures: an April 2024 MeitY mandate requiring CCTV systems to disclose component origins and pass security testing, and a national security directive restricting telecom sourcing to government-designated trusted suppliers.
What happened
S Krishnan, India's secretary for electronics and information technology, said the country needs greater "strategic autonomy" and control over hardware connected to AI, Economic Times reports. Speaking at an event organised by the National Council of Applied Economic Research, he argued that a market as large and device-reliant as India should not depend wholly on foreign hardware, noting that Europe and the United States take similar steps and that India already does so in telecom and CCTV. Those controls, he said, may have to widen "particularly in the context of AI," according to Economic Times.
The risks cited
Krishnan flagged that AI's spread across sectors depends on data from sensors and IoT devices that often behave as "black boxes," creating integrity and supply-chain exposure he framed in industrial-espionage and strategic terms, per Economic Times. He singled out the integrity of India's digital public infrastructure (DPI) stack and biometric-authentication devices, whose electronic components he said are increasingly security-relevant.
Existing precedent
The remarks build on controls India already applies rather than announcing new binding rules. In April 2024, the Ministry of Electronics and Information Technology introduced essential requirements for CCTV systems, mandating disclosure of the origin of critical hardware such as chipsets and lab testing against unauthorised remote access. A separate national security directive requires telecom operators to source equipment only from government-designated trusted sources and products.
Why it matters
Editorial analysis: Hardware-control regimes generally aim to reduce supply-chain opacity and limit foreign-made firmware or hidden backdoors in sensitive systems. As procurement rules tighten, provenance, firmware transparency, and component-level testing tend to move up the priority list for technical teams deploying AI-connected and authentication hardware.
Editorial analysis: Signals like this typically translate into demand for certified components, documented bills of materials, and independent lab validation. For vendors selling into Indian government and DPI projects, country-of-origin disclosure and security testing can become procurement prerequisites.
What to watch
Whether follow-on guidance names specific categories of AI-connected hardware for certification, formalises labs and testing criteria, or sets implementation timelines and "trusted" supplier lists that reshape sourcing for DPI and biometric components.
Scoring Rationale #
A senior Indian official signaling that hardware-control regimes may expand to AI and biometric systems is a relevant policy-direction story for a major market, grounded in real precedents like the April 2024 CCTV security rules and the telecom trusted-source directive. It is forward-looking commentary at a conference rather than a new binding regulation, which limits its immediate impact. Solid mid-range relevance for AI-hardware vendors and procurement teams tracking supply-chain controls.
Practice interview problems based on real data
1,500+ SQL & Python problems across 15 industry datasets — the exact type of data you work with.