{"id":90776,"date":"2025-06-01T10:36:26","date_gmt":"2025-06-01T10:36:26","guid":{"rendered":"https:\/\/exam.pscnotes.com\/mcq\/?p=90776"},"modified":"2025-06-01T10:36:26","modified_gmt":"2025-06-01T10:36:26","slug":"consider-the-following-statements-with-reference-to-the-latest-guideli","status":"publish","type":"post","link":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/","title":{"rendered":"Consider the following statements with reference to the latest guideli"},"content":{"rendered":"<p>Consider the following statements with reference to the latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In):<\/p>\n<ul>\n<li>Data centres and service providers shall compulsorily report cyber security breaches within 24 hours.<\/li>\n<li>Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required.<\/li>\n<\/ul>\n<p>Which of the statements given above is\/are correct?<\/p>\n<p>[amp_mcq option1=&#8221;1 only&#8221; option2=&#8221;2 only&#8221; option3=&#8221;Both 1 and 2&#8243; option4=&#8221;Neither 1 nor 2&#8243; correct=&#8221;option2&#8243;]<\/p>\n<div class=\"psc-box-pyq-exam-year-detail\">\n<div class=\"pyq-exam\">\n<div class=\"psc-heading\">This question was previously asked in<\/div>\n<div class=\"psc-title line-ellipsis\">UPSC CAPF &#8211; 2022<\/div>\n<\/div>\n<div class=\"pyq-exam-psc-buttons\"><a href=\"\/pyq\/pyq-upsc-capf-2022.pdf\" target=\"_blank\" class=\"psc-pdf-button\" rel=\"noopener\">Download PDF<\/a><a href=\"\/pyq-upsc-capf-2022\" target=\"_blank\" class=\"psc-attempt-button\" rel=\"noopener\">Attempt Online<\/a><\/div>\n<\/div>\n<section id=\"pyq-correct-answer\">\nThe latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc.<br \/>\nStatement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect.<br \/>\nStatement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct.<br \/>\n<\/section>\n<section id=\"pyq-key-points\">\nThe CERT-In directions aim to improve India&#8217;s cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.<br \/>\n<\/section>\n<section id=\"pyq-additional-information\">\nThe types of data to be retained by VPN providers include validated name, address, email, and phone number of the subscriber, along with the IP address and email address used for registration, timestamp of registration, and the IP address and timestamp used for connecting to the service.<br \/>\n<\/section>\n","protected":false},"excerpt":{"rendered":"<p>Consider the following statements with reference to the latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In): Data centres and service providers shall compulsorily report cyber security breaches within 24 hours. Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. Which of &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"Consider the following statements with reference to the latest guideli\" class=\"read-more button\" href=\"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/#more-90776\">Detailed Solution<span class=\"screen-reader-text\">Consider the following statements with reference to the latest guideli<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1085],"tags":[1108,1113],"class_list":["post-90776","post","type-post","status-publish","format-standard","hentry","category-upsc-capf","tag-1108","tag-information-and-communication-technology","no-featured-image-padding"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.2 (Yoast SEO v23.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Consider the following statements with reference to the latest guideli<\/title>\n<meta name=\"description\" content=\"The latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc. Statement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect. Statement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct. The CERT-In directions aim to improve India&#039;s cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Consider the following statements with reference to the latest guideli\" \/>\n<meta property=\"og:description\" content=\"The latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc. Statement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect. Statement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct. The CERT-In directions aim to improve India&#039;s cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/\" \/>\n<meta property=\"og:site_name\" content=\"MCQ and Quiz for Exams\" \/>\n<meta property=\"article:published_time\" content=\"2025-06-01T10:36:26+00:00\" \/>\n<meta name=\"author\" content=\"rawan239\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"rawan239\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Consider the following statements with reference to the latest guideli","description":"The latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc. Statement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect. Statement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct. The CERT-In directions aim to improve India's cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/","og_locale":"en_US","og_type":"article","og_title":"Consider the following statements with reference to the latest guideli","og_description":"The latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc. Statement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect. Statement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct. The CERT-In directions aim to improve India's cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.","og_url":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/","og_site_name":"MCQ and Quiz for Exams","article_published_time":"2025-06-01T10:36:26+00:00","author":"rawan239","twitter_card":"summary_large_image","twitter_misc":{"Written by":"rawan239","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/","url":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/","name":"Consider the following statements with reference to the latest guideli","isPartOf":{"@id":"https:\/\/exam.pscnotes.com\/mcq\/#website"},"datePublished":"2025-06-01T10:36:26+00:00","dateModified":"2025-06-01T10:36:26+00:00","author":{"@id":"https:\/\/exam.pscnotes.com\/mcq\/#\/schema\/person\/5807dafeb27d2ec82344d6cbd6c3d209"},"description":"The latest guidelines issued by the Indian Computer Emergency Response Team (CERT-In) in April 2022 mandate specific requirements for entities like data centers, cloud service providers, Virtual Private Network (VPN) providers, etc. Statement 1 says data centres and service providers shall report cyber security breaches within 24 hours. The CERT-In direction requires reporting of cyber security incidents within 6 hours of noticing the incident or being informed about it. Thus, statement 1 is incorrect. Statement 2 says Virtual Private Network providers shall retain user data for at least five years and share records with authorities when required. The guidelines require VPN providers and other entities to retain certain user data for a period of five years and provide it to CERT-In when mandated. Thus, statement 2 is correct. The CERT-In directions aim to improve India's cyber security posture by enhancing incident reporting mechanisms and enabling better tracing of malicious activities.","breadcrumb":{"@id":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/exam.pscnotes.com\/mcq\/consider-the-following-statements-with-reference-to-the-latest-guideli\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/exam.pscnotes.com\/mcq\/"},{"@type":"ListItem","position":2,"name":"UPSC CAPF","item":"https:\/\/exam.pscnotes.com\/mcq\/category\/upsc-capf\/"},{"@type":"ListItem","position":3,"name":"Consider the following statements with reference to the latest guideli"}]},{"@type":"WebSite","@id":"https:\/\/exam.pscnotes.com\/mcq\/#website","url":"https:\/\/exam.pscnotes.com\/mcq\/","name":"MCQ and Quiz for Exams","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/exam.pscnotes.com\/mcq\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/exam.pscnotes.com\/mcq\/#\/schema\/person\/5807dafeb27d2ec82344d6cbd6c3d209","name":"rawan239","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/exam.pscnotes.com\/mcq\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/761a7274f9cce048fa5b921221e7934820d74514df93ef195a9d22af0c1c9001?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/761a7274f9cce048fa5b921221e7934820d74514df93ef195a9d22af0c1c9001?s=96&d=mm&r=g","caption":"rawan239"},"sameAs":["https:\/\/exam.pscnotes.com"],"url":"https:\/\/exam.pscnotes.com\/mcq\/author\/rawan239\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/posts\/90776","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/comments?post=90776"}],"version-history":[{"count":0,"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/posts\/90776\/revisions"}],"wp:attachment":[{"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/media?parent=90776"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/categories?post=90776"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exam.pscnotes.com\/mcq\/wp-json\/wp\/v2\/tags?post=90776"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}