Digital Security Challenges in South Asia
Exploring critical policy hurdles in internet access, cybersecurity, and rights protection across South Asian nations amid rapid digital growth.
South Asia stands at a digital crossroads, where expanding internet connectivity collides with mounting security and policy dilemmas. With nearly 80% of the population now within reach of online services, the region grapples with governments imposing stringent controls under the banner of national security. This has led to over 170 documented internet shutdowns and thousands of human rights cases tied to digital restrictions. As techno-nationalism rises, nations like India, Pakistan, Bangladesh, Nepal, and Sri Lanka prioritize sovereign digital infrastructures, often at the expense of user freedoms and regional collaboration.
The Surge of Internet Disruptions
Internet shutdowns have become a hallmark of governance in South Asia, deployed to quell protests, manage elections, or address security threats. India alone recorded 65 regional shutdowns in 2017, a sharp rise from previous years, with ongoing patterns into the 2020s. Pakistan experienced 10 blackouts since 2016, including prolonged mobile service halts in tribal areas. These measures, often enacted via executive orders like Pakistan’s Section 144, bypass judicial review and inflict economic damage by disrupting businesses and public services.
- India: Frequent shutdowns in conflict zones like Kashmir, justified by public order needs.
- Pakistan: Extended blackouts in FATA regions, limiting access to information.
- Bangladesh and Myanmar: Shutdowns tied to political unrest, echoing regional contagion effects.
Such disruptions violate Article 19 of the Universal Declaration of Human Rights, which safeguards the freedom to seek and share information across borders. Economically, they cost billions; for instance, India’s shutdowns have been estimated to drain millions daily from local economies reliant on digital transactions.
Surveillance and Executive Control Mechanisms
Governments in the region have expanded surveillance apparatuses, centralizing internet traffic through state-controlled gateways. Nepal’s proposed cybersecurity framework exemplifies this, enabling content censorship and monitoring without transparency. Pakistan grants broad powers to intelligence agencies for platform bans, while India’s Digital Public Infrastructure (DPI), including Aadhaar, has influenced neighbors like Nepal and Myanmar—the so-called ‘Delhi Effect.’
Executive overreach is facilitated by regulatory bodies under direct government control, sidestepping accountability. This allows unilateral actions like content takedowns and online policing, eroding trust in digital systems. The COVID-19 pandemic amplified these trends, with mis- and disinformation campaigns targeting minorities in India, Sri Lanka, and Nepal.
| Country | Key Surveillance Measure | Impact |
|---|---|---|
| India | Aadhaar-linked DPI | Exported to neighbors; biometric tracking |
| Pakistan | Intelligence agency powers | Platform bans without oversight |
| Nepal | Centralized internet gateway | Censorship of critical content |
| Sri Lanka | Online Safety Act | Government-critical takedowns |
Vague Legislation Undermining Rights
Sweeping laws framed around ‘national security’ and ‘public interest’ enable oppression. Sri Lanka’s Online Safety Act permits removal of government-critical content sans judicial precedent. Similar provisions in Pakistan and India facilitate content moderation as censorship tools. These laws lack public consultation, concentrating power among elites and limiting digital freedoms.
Techno-nationalism drives AI investments and sovereign infrastructures to reduce Western dependency, but it fosters opaque policymaking. Bangladesh Bank’s 2016 cyber heist and Mumbai’s power grid hack underscore vulnerabilities, yet responses prioritize control over resilience.
Infrastructure Barriers to Inclusive Access
Despite progress—India’s internet penetration jumped from 27% in 2015 to 47% by 2021—challenges persist. Poor electricity, low device penetration, and high costs hinder rollout. Telecom monopolies, long treated as revenue sources, stifle competition and convergence technologies.
Zero-rating bans, like India’s 2016 regulation prohibiting discriminatory tariffs (except emergencies), aim for net neutrality but limit affordable access for the poor. Campaigns against Facebook’s Free Basics highlighted risks of walled gardens over open internet.
Cyber Threats to Critical Infrastructure
South Asia faces escalating cyber risks, from fraud in Nepal to regional attacks. Outdated laws and siloed agencies hamper responses. The UN Norms of Responsible State Behaviour in Cyberspace offer guidance, yet adoption lags amid trust deficits.
- Bangladesh Bank Heist (2016): Exposed banking vulnerabilities.
- Mumbai Power Grid Hack: Critical infrastructure at risk.
- Nepal Cyber Fraud Surge: Needs updated frameworks and education.
Pathways for Regional Cooperation
The absence of South Asia-wide digital rights networks exacerbates issues. Proposals for coalitions to counter state overreach and corporate exploitation are gaining traction. Balanced policy frameworks should integrate e-commerce facilitation, data privacy revisions, cybercrime laws, and electronic evidence admissibility.
Striking a balance between security and freedoms requires transparent consultations, judicial oversight, and infrastructure investments. Regional forums could harmonize standards, preventing policy contagion while building resilience.
FAQs
What are the most common reasons for internet shutdowns in South Asia?
Shutdowns are typically justified by national security, election management, or quelling unrest, but they often curb free expression.
How does India’s digital policy influence neighbors?
The ‘Delhi Effect’ sees India’s DPI and Aadhaar models adopted in Nepal and Myanmar, spreading surveillance practices.
Are there effective laws protecting digital rights?
Many laws are vague, enabling abuse; reforms for privacy, cybercrime, and net neutrality are urgently needed.
What economic impacts do shutdowns have?
They disrupt businesses, e-commerce, and services, costing economies millions daily.
How can South Asia improve cybersecurity governance?
Through updated laws, interagency collaboration, public awareness, and adherence to global norms like UN cybersecurity standards.
References
- From Contagion to Coalition: Advancing Digital Rights in South Asia — Tech Policy Press. 2024. https://techpolicy.press/from-contagion-to-coalition-advancing-digital-rights-in-south-asia
- Cybersecurity Governance in South Asia — DCAF. 2020. https://www.dcaf.ch/sites/default/files/publications/documents/Cybersecurity_Governance_in_South_Asia_EN.pdf
- From Internet Blackouts to Violent Attacks, South Asia Saw New Threats to Free Expression Online in 2017 — Global Voices Advox. 2017-12-29. https://advox.globalvoices.org/2017/12/29/from-internet-blackouts-to-violent-attacks-south-asia-saw-new-threats-to-free-expression-online-in-2017/
- Access to the Internet – South and Southeast Asia — Media Defence. 2023. https://www.mediadefence.org/resource-hub/access-to-the-internet-south-and-southeast-asia/
- Digital Governance and Rights in South Asia, and the Path Forward — Tech Global Institute. 2025-02. https://techglobalinstitute.com/wp-content/uploads/2025/02/Digital-Governance-and-Rights-in-South-Asia-and-the-Path-Forward.pdf
- Protecting Critical Infrastructure in South Asia: Cyber Threats — South Asian Voices. 2025-06-14. https://southasianvoices.org/sec-f-in-r-critical-infrastructure-cyber-06-14-2025/
Similar Articles
Read full bio of medha deb
