DAW 20th November 2025, Mains Answer Writting 2026

DAW 20th November 2025, Mains Answer Writting 2026

Question

The rise of encrypted platforms and covert online communication in recent terror incidents highlights new security challenges. How are non-state actors exploiting the Internet, and what measures can address this threat? Suggest effective guidelines to curb the above threat. (250 Words, 15 Marks).

Model Answer

Approach: Introduction:

  • Define the shift: Mention how the Red Fort blast reflects the rise of digital tradecraft in terrorism.

  • Highlight trend: State that terror networks increasingly use encrypted, decentralised online ecosystems, creating new surveillance challenges.

Body:

  • How Non-State Actors Exploit the Internet

  • Why This Creates Security Challenges

  • Measures to Address the Threat

  • Guidelines to Curb the Threat

Conclusion:

  • Terrorism has shifted into a hybrid physical- digital era, exploiting encrypted and decentralised online ecosystems. A balanced, multi-layered strategy- combining technology, legal reforms, institutions, and diplomacy- is essential to counter cyber-enabled threats while safeguarding privacy.

Introduction:

  • The recent Red Fort car blast highlights how terror modules now depend on advanced digital tradecraft- using end-to-end encrypted apps, decentralised servers, VPN anonymity, and covert online communication- to plan and hide operations. This marks a global shift of terrorism into encrypted, decentralised digital spaces, challenging traditional surveillance.

Body: How Non-State Actors Exploit the Internet:

  • Encrypted & Decentralised Platforms:

  • Suspects used the encrypted app Threema- no phone/email, no metadata, mutual deletion- and possibly a private server, creating a sealed network.

  • Covert “Spy-Style” Communication:

  • Suspects used a shared email account to exchange messages through unsent drafts, leaving no email trail- a digital version of Cold War dead-drops.

  • Terror actors also use steganography, ephemeral cloud links, and burner devices

  • Digital Reconnaissance:

  • Recce missions allegedly relied on digital mapping, photos, and encrypted file-sharing. Ammonium nitrate was transported using a familiar vehicle.

  • Dark Web, Crypto & Anonymous Infrastructure:

  • Global cases show terrorists using TOR/I2P, crypto mixers, and darknet markets to access explosives manuals, malware kits, forged IDs, and anonymous funding, reducing traceability

  • Recruitment & Radicalisation:

  • Encrypted channels create closed ideological ecosystems for recruitment and indoctrination.

  • The Red Fort case- involving three doctors- reflects how technically skilled recruits exploit these spaces and remain harder to detect.

Why This Creates New Security Challenges:

  • Loss of visibility: End-to-end encryption eliminates metadata needed for intelligence reconstruction.

  • App bans ineffective: Despite bans under Section 69A of IT Act, apps like Threema can be accessed via VPNs and proxies.

  • Jurisdiction hurdles: Private servers or cloud nodes may be located abroad.

  • Legal gaps: India’s IT Act and UAPA were not designed for today’s decentralised communication tools.

  • Privacy–security balance: Investigations must navigate constitutional protections post–Puttaswamy.

Measures to Address the Threat:

  • Build Advanced Digital Forensics Capacity:

  • Establish specialised counter-encryption and server-forensics units within NIA/IB.

  • Invest in AI-based metadata analytics, memory forensics, and lawful decryption tools.

  • Regulate Self-Hosted Communication Infrastructure:

  • Create legal obligations for private messaging servers used within India to enable judicially supervised lawful access.

  • Promote cooperation with tech platforms while protecting civil liberties.

  • Strengthen Legal & Policy Architecture:

  • Update IT Act, UAPA, and digital evidence rules to include:

  • encrypted communication misuse,

  • decentralised networks,

  • digital dead-drop techniques.

  • Deploy trained cyber-investigators in every State ATS and police unit.

  • Institutional & Community Safeguards:

  • Educational institutions and professional spaces must adopt early-warning mechanisms for behavioural changes and online radicalisation.

  • Develop counter-radicalisation programmes tailored for highly educated, technically skilled recruits.

  • Deepen International Cooperation:

  • Strengthen intelligence-sharing on darknet markets, crypto transactions, and private communication networks.

  • Engage in tech diplomacy for privacy-respecting lawful access frameworks.

  • Crypto & Dark Web Oversight:

  • Mandate stronger KYC for crypto exchanges, blockchain analytics, and monitoring of mixers/tumblers.

  • Create specialised Dark Web Monitoring Cells to infiltrate and track extremist forums.

Guidelines to Curb the Threat:

  • For Government

  • Adopt a National Encryption Policy 2.0 balancing privacy and national security.

  • Establish a nationwide Integrated Counter-Cyber Terrorism Grid.

  • For Law Enforcement

  • Mandatory cyber-forensics training.

  • Develop rapid-response cyber-terror units with cross-agency coordination.

  • For Digital Platforms

  • Time-bound lawful response protocols.

  • Traceability of originators only in terrorism cases, without compromising encryption for general users.

  • For Legal System

  • Fast-track cyber-terror cases through dedicated courts.

  • Clear judicial benchmarks for targeted surveillance.

  • For Civil Society

  • Public awareness programmes on online radicalisation.

  • Collaboration with universities, tech communities, and cyber-security researchers.

Conclusion:

  • The Red Fort blast shows terrorism has entered a hybrid era, combining physical attacks with encrypted, decentralised, and covert digital ecosystems. As modules exploit anonymity, private servers, and advanced digital tradecraft, traditional surveillance is inadequate. India needs a multi-layered legal, technological, institutional, and diplomatic response that protects both security and privacy. Only a future-ready, calibrated approach can counter cyber-enabled terrorism.