Cybersecurity
Science & Technology
- PYQs8
- Articles1
Background
Cybersecurity is a critical aspect of national security, governance, economic development, and international relations in the digital age. India faces significant cyber threats, making robust cybersecurity policies and infrastructure essential for protecting its digital economy and critical infrastructure.
Cybersecurity refers to the protection of internet-connected systems, including hardware, software, and data, from cyber threats. It encompasses technologies, processes, and controls designed to protect networks, computers, programs, and data from attack, damage, or unauthorized access.
Facts & tables
- Purpose
- Protects digital assets from unauthorized access, damage, or disruption.
- Scope
- Safeguards sensitive data, intellectual property, and critical infrastructure.
- Importance
- Crucial for national security, economic stability, and individual privacy.
- Threats
- Includes malware, phishing, ransomware, and state-sponsored attacks.
| Type | Reference |
|---|---|
| Conceptual area | National Security |
| Conceptual area | Information Technology |
| Body | Role |
|---|---|
| CERT-In (Indian Computer Emergency Response Team) | Implements |
| National Cyber Security Coordinator (NCSC) | Advises |
Prelims angle
Prelims angle: Factual recall
Prelims angle: Multi-statement analysis
- Protection of digital systems and data from cyber threats.
- Essential for national security, critical infrastructure, and privacy.
- Common threats: malware, phishing, ransomware, state-sponsored attacks.
- India's initiatives: National Cyber Security Policy, CERT-In.
- Challenges include data breaches, cyber espionage, and digital warfare.
| Year | Framing tags |
|---|---|
| 2026 | Statement-based questions, Conceptual understanding |
| 2026 | Statement-based questions, Factual recall |
| 2026 | Multi-statement analysis, Conceptual understanding |
| 2025 | Factual recall, Multi-statement analysis |
| 2022 | Multi-statement analysis, Conceptual understanding |
| 2020 | Terminology-based question, Factual recall |
| 2019 | Conceptual understanding, Multi-statement analysis |
| 2017 | Factual recall, Multi-statement analysis |
Timeline
-
National Security
Conceptual area
-
Information Technology
Conceptual area
-
Prelims 2017
Factual recall, Multi-statement analysis
-
Prelims 2019
Conceptual understanding, Multi-statement analysis
-
Prelims 2020
Terminology-based question, Factual recall
-
Prelims 2022
Multi-statement analysis, Conceptual understanding
-
Prelims 2025
Factual recall, Multi-statement analysis
-
Prelims 2026
Statement-based questions, Conceptual understanding
-
Prelims 2026
Statement-based questions, Factual recall
-
Prelims 2026
Multi-statement analysis, Conceptual understanding
-
U.S. Homeland Security probing ‘recent’ cyber breach at information-sharing network
Cybersecurity is the practice of protecting digital systems and data from cyber threats, vital for national security, economic stability, and individual privacy in the digital age.
See also
Past papers
2017–2026 · 8 questions
In the news
U.S. Homeland Security probing ‘recent’ cyber breach at information-sharing network
Cybersecurity is the practice of protecting digital systems and data from cyber threats, vital for national security, economic stability, and individual privacy in the digital age.
Try these PYQs
In India, it is legally mandatory for which of the following to report on cybersecurity incidents?
1. Service providers
2. Data centres
3. Body corporate
Select the correct answer using the code given below:
In India, section 70-B of the Information Technology Act, 2000 (the IT Act) gives the Central Government the power to appoint an agency of the government to be called the Indian Computer Emergency Response Team. Further, it is legally mandatory for service providers, data centres and body corporates to report on cybersecurity incidents as outlined in the Information Technology (The Indian Computer Emergency Response Team and Manner of Performing Functions and Duties) Rules, 2013, which were notified under the Information Technology Act, 2000.
With reference to communication technologies, what is/are the difference/differences between LTE (Long-Term Evolution) and VoLTE (Voice over Long-Term Evolution)?
1. LTE is commonly marketed as 3G and VoLTE is commonly marketed as advanced 3G.
2. LTE is data-only technology and VoLTE is voice-only technology.
Select the correct answer using the code given below.
Statement 1 is incorrect: LTE is actually marketed as 4G, not 3G. VoLTE is not marketed as advanced 3G, but rather as an advancement over 4G LTE, allowing for voice calls over the 4G network. Statement 2 is incorrect: LTE does primarily focus on providing high-speed data services, but it's not a data-only technology. VoLTE, on the other hand, is not a voice-only technology. It allows for voice calls to be made over the 4G LTE network, but it doesn't exclude data services. Therefore, both statements are incorrect.
With reference to Web 3-0, consider the following statements :
1. Web 3-0 technology enables people to control their own data.
2. In Web 3-0 world, there can be blockchain based social networks.
3. Web 3-0 is operated by users collectively rather than a corporation.
Which of the statements given above are correct?
Statement 1 is correct. A key aspect of Web 3.0 is the concept of decentralization, where users have more control and ownership over their personal data, rather than having it stored and controlled by centralized platforms. Statement 2 is correct. Blockchain technology is a core component of Web 3.0, and it can enable the creation of decentralized, user-owned social networks and platforms. Statement 3 is correct. The decentralized nature of Web 3.0 means that it is not controlled by a single corporation or entity, but rather operated and maintained collectively by the users and participants in the network. Therefore, all three statements regarding Web 3.0 are correct.
Which of the following statements with regard to Large Language Models (LLMs) used in machine learning is/are correct ?
1. LLMs assign probabilities to the next possible words and then pick the one with the highest probability.
2. LLMs process data through mathematical optimization to minimise prediction errors.
3. LLMs produce unbiased outputs.
Select the answer using the code given below :
Statement 1 is Correct: At their core, Large Language Models (LLMs) function by analyzing input context and calculating a statistical probability distribution for the next possible words (tokens) in a sequence. In their most basic form of text generation (known as "greedy decoding"), they pick the word with the absolute highest probability. While standard applications often introduce controlled randomness (stochastic sampling like *top-k* or *temperature scaling*) to make text more creative, the foundational mechanism relies on assigning probabilities to select the next word. Statement 2 is Correct: LLM training relies heavily on mathematical optimization. Algorithms such as Stochastic Gradient Descent and backpropagation are used to iteratively adjust billions of model parameters. The explicit goal of this process is to minimize a "loss function," which mathematically represents the model's prediction errors compared to the actual training data. Statement 3 is Incorrect: LLMs do not produce inherently unbiased outputs. Because they learn from massive, human-generated datasets scraped from the internet, they are well-documented to inherit, reflect, and sometimes amplify historical and societal biases (e.g., gender, racial, or cultural stereotypes) present in their training data. Therefore, the correct option is B.
Consider the following statements:
I. Indian Railways have prepared a National Rail Plan (NRP) to create a future ready railway system by 2028.
II. 'Kavach' is an Automatic Train Protection system developed in collaboration with Germany.
III. 'Kavach' system consists of RFID tags fitted on track in station section.
Which of the statements given above are **not** correct?
❌ Statement I: Incorrect
The National Rail Plan targets 2030 for a future-ready railway, not 2028. ❌ Statement II: Incorrect
Kavach is an indigenous Automatic Train Protection system developed under 'Make in India', not with Germany. ✅ Statement III: Correct
Kavach uses RFID tags on tracks in station sections to track train location and speed continuously. Therefore, Statements I and II are incorrect, and Statement III is correct.
Show 3 more PYQs
Which of the following statements regarding the features of blockchain technology are correct?
1. Records stored in the database may be made visible to relevant stakeholders without risk of alteration.
2. Copies of the entire database are stored on multiple computers on a network, syncing within seconds.
3. Consortium blockchain is a blend of public and private blockchains allowing selective data access.
4. Mathematical algorithms make it impossible to change or delete any data once recorded and accepted.
Select the answer using the code given below:
Statement 1 is Correct: Blockchain's architecture allows data to be shared transparently with relevant stakeholders. Because the ledger is append-only and secured by network consensus, users can view records without the risk of unauthorized alteration. Statement 2 is Correct: Blockchain operates as a decentralized database (Distributed Ledger Technology). Identical copies of the entire ledger are stored across multiple computers (nodes) on a network. These nodes continuously communicate and sync rapidly (often within seconds, depending on the specific blockchain protocol) to maintain a single source of truth. Statement 3 is Correct: A consortium blockchain is a hybrid model that blends features of both public (open) and private (closed) blockchains. It is governed by a pre-approved group of organizations rather than a single entity or the open public, allowing for semi-decentralized control and selective data access. Statement 4 is Correct: Blockchain uses complex mathematical algorithms (cryptographic hashing) to link blocks. Once data is recorded and validated by the network, changing or deleting it requires altering all subsequent blocks and gaining majority network control, making tampering practically impossible. *Note: While all four statements are factually correct based on the principles of blockchain technology, there is no option provided that includes all of them (1, 2, 3, and 4). Option C is the most comprehensive and appropriate choice as it correctly identifies statements 1, 2, and 4 as a valid set.* Therefore, the correct option is C.
In India, the term “Public Key Infrastructure” is used in the context of
In India, the term "Public Key Infrastructure" (PKI) is used in the context of digital security infrastructure. PKI is a system that facilitates secure electronic communication and transactions by using digital certificates, certificate authorities, and other related components. It plays a vital role in ensuring the authenticity, confidentiality, and integrity of data exchanged online.
Consider the following statements with respect to the AI Impact Summit, 2026 held in New Delhi :
1. The Summit's intellectual framework was based on three foundational Sutras : People, Planning, and Progress.
2. The Preamble of the Summit stresses Democratising AI Resources, which acknowledges the Charter for Democratic Diffusion of AI as a binding framework to support locally relevant innovation and strengthen resilient AI ecosystems while respecting national laws.
3. The New Delhi Declaration on AI Impact was structured around seven Chakras (Pillars), which included Access for Social Empowerment, AI for Science, and Secure and Trusted AI.
Which of the statements given above is/are correct ?
Statement 1 is Incorrect: The Summit's intellectual framework and core philosophy were anchored in three foundational principles (Sutras): People, Planet, and Progress, not People, Planning, and Progress. Statement 2 is Incorrect: The New Delhi Declaration introduced the Charter for Democratic Diffusion of AI to promote affordable access to foundational AI resources, support local innovation, and build resilient AI ecosystems. However, it was established as a voluntary and non-binding framework, respecting national laws, rather than a binding treaty. Statement 3 is Correct: The New Delhi Declaration on AI Impact was structured around seven thematic pillars of action, officially referred to as Chakras. These foundational areas included Access for Social Empowerment, AI for Science, and Secure and Trusted AI, alongside Democratizing AI Resources, Economic Growth & Social Good, Human Capital Development, and Resilient, Efficient & Innovative AI Systems. Therefore, option D is the correct answer.