Module 10 Quiz
Test your understanding of emerging technologies and future regulations. 40 questions covering IoT, metaverse, quantum computing, drones, CBDC, and regulatory frameworks.
0
Correct
0
Incorrect
Question 1IoT Law
What is the primary challenge in providing DPDPA-compliant notice for IoT devices?
Explanation
A key DPDPA compliance challenge for IoT is providing meaningful notice when devices like smart speakers or sensors lack screens. Alternative methods like companion apps, spoken notices, or packaging information must be used.
Question 2IoT Law
Which party is typically liable for security vulnerabilities in IoT firmware?
Explanation
Manufacturers face product liability for security vulnerabilities in IoT firmware, including negligent design, failure to patch known vulnerabilities, and inadequate security testing. This is covered under both product liability law and CPA 2019.
Question 3IoT Law
What is "inference privacy" in the context of IoT?
Explanation
Inference privacy refers to the concern that patterns in IoT data can reveal sensitive information beyond what individual data points disclose. For example, smart meter data can infer lifestyle, health conditions, or occupancy patterns.
Question 4Metaverse
Under Indian law, virtual property in metaverse platforms is primarily governed by:
Explanation
Most virtual property rights are governed by platform Terms of Service agreements, not traditional property law. Users typically hold licenses rather than ownership rights, and these contractual arrangements determine what users can do with virtual assets.
Question 5Metaverse
Which IT Act provision addresses identity theft in the context of avatar impersonation?
Explanation
IT Act Section 66C addresses identity theft by penalizing fraudulent use of electronic signatures, passwords, or other unique identification features. This can apply to avatar impersonation in virtual worlds.
Question 6Metaverse
What test is commonly used to determine jurisdiction for metaverse activities affecting India?
Explanation
Jurisdiction for virtual world activities typically involves targeting (whether the platform specifically targets Indian users) and effects tests (where the effects of conduct are felt). IT Act Section 75 provides extraterritorial application for offenses affecting India.
Question 7Metaverse
Under IT Rules 2021, what timeframe applies to metaverse platforms for taking down specified content?
Explanation
IT Rules 2021 require intermediaries, including metaverse platforms, to remove specified content (such as content depicting sexual acts) within 24 hours of receiving a complaint or government order.
Question 8Quantum Computing
Which encryption algorithm is NOT vulnerable to Shor's quantum algorithm?
Explanation
AES-256 is a symmetric encryption algorithm that is not broken by Shor's algorithm. While Grover's algorithm can weaken symmetric encryption (effectively halving the key strength), AES-256 remains secure. RSA, ECC, and Diffie-Hellman are all vulnerable to Shor's algorithm.
Question 9Quantum Computing
What is the "harvest now, decrypt later" threat in quantum computing?
Explanation
The "harvest now, decrypt later" threat refers to adversaries collecting encrypted data today with the intention of decrypting it once sufficiently powerful quantum computers become available. This makes current data protection immediately relevant for long-lived secrets.
Question 10Quantum Computing
Which NIST post-quantum cryptography standard is designed for digital signatures?
Explanation
CRYSTALS-Dilithium is a NIST-standardized post-quantum digital signature algorithm. CRYSTALS-Kyber is for key encapsulation. These algorithms are designed to resist both classical and quantum computer attacks.
Question 11Quantum Computing
Which IT Act section recognizes digital signatures that may be affected by quantum computing?
Explanation
IT Act Section 3 deals with authentication of electronic records using digital signatures based on asymmetric cryptography. Quantum computers threaten this foundation by potentially breaking the underlying RSA/ECC algorithms.
Question 12Quantum Computing
What budget was approved for India's National Quantum Mission in 2023?
Explanation
The National Quantum Mission (NQM) was approved in 2023 with a budget of Rs 6,003 crore to develop quantum computing, communication, sensing, and materials capabilities in India.
Question 13Drones
Under Drone Rules 2021, which category of drone does NOT require registration?
Explanation
Under the Drone Rules 2021, Nano drones (up to 250g) do not require registration with DGCA. All other categories - Micro, Small, Medium, and Large - require registration through the Digital Sky platform.
Question 14Drones
What is the maximum altitude for drone flights in Green Zone without permission?
Explanation
In Green Zones under the Drone Rules 2021, drones can fly up to 400 feet Above Ground Level (AGL) with automatic permission via the Digital Sky platform. Yellow and Red zones have additional restrictions.
Question 15Drones
Which certification is required for connected vehicles under Indian regulations?
Explanation
The Automotive Research Association of India (ARAI) provides certification for connected and autonomous vehicles. ARAI develops testing protocols and certifies vehicles for road safety compliance under MoRTH oversight.
Question 16Drones
What is the validity period of a Remote Pilot Certificate under Drone Rules 2021?
Explanation
Under Drone Rules 2021, the Remote Pilot Certificate is valid for 10 years and is renewable. Training must be obtained from DGCA-authorized Remote Pilot Training Organizations (RPTOs).
Question 17Drones
What is the maximum penalty for flying a drone in a no-fly zone?
Explanation
Flying a drone in a no-fly (Red) zone can attract a penalty of up to Rs 1,00,000 under the Drone Rules 2021. Additional prosecution under the Aircraft Act may also apply if aircraft or persons are endangered.
Question 18Drones
At what level of autonomy (SAE) does the driving system fully handle all tasks without human intervention?
Explanation
SAE Level 5 represents full automation where the vehicle can handle all driving tasks in all conditions without any human intervention. Level 4 is high automation but limited to specific conditions.
Question 19CBDC
Which Act was amended in 2022 to enable RBI to issue digital currency?
Explanation
The Finance Act 2022 amended Section 22 of the RBI Act, 1934 to include "digital form" of banknotes, enabling RBI to legally issue the Digital Rupee (e-Rupee) as legal tender.
Question 20CBDC
What distribution model does India's Digital Rupee use?
Explanation
India's Digital Rupee uses a two-tier model where RBI issues the e-Rupee to participating banks, and banks then distribute it to the public through digital wallets integrated with their banking apps.
Question 21CBDC
What use case was the Wholesale Digital Rupee (e-R-W) pilot launched for?
Explanation
The Wholesale Digital Rupee (e-R-W) pilot was launched in November 2022 specifically for settlement of secondary market government securities (G-Sec) trades among participating banks.
Question 22CBDC
What is "programmable money" in the context of CBDC?
Explanation
Programmable money refers to CBDC that has embedded rules restricting or directing how it can be spent - for example, stimulus payments that expire if not used, or subsidies usable only for specific purposes like food or education.
Question 23CBDC
Under DPDPA 2023, what is RBI's status regarding Digital Rupee data?
Explanation
RBI acts as a Data Fiduciary under DPDPA 2023 for Digital Rupee transaction data, subject to data protection obligations including purpose limitation and data minimization, though Section 17 exemptions may apply for state purposes.
Question 24CBDC
Which international CBDC project involves India?
Explanation
India is exploring participation in mBridge, a multi-CBDC platform for cross-border payments involving Hong Kong, Thailand, UAE, and China. India is also part of Project Dunbar with Singapore, Australia, and Malaysia.
Question 25CBDC
What is the key difference between Digital Rupee and cryptocurrency?
Explanation
The fundamental difference is that Digital Rupee (CBDC) is issued by RBI with legal tender status and sovereign backing, while cryptocurrencies are decentralized, privately issued, and have no legal tender status in India.
Question 26Regulatory
Which regulatory approach focuses on achieving outcomes rather than prescribing methods?
Explanation
Outcomes-based regulation specifies the results that must be achieved while allowing flexibility in how entities achieve them. This contrasts with rules-based approaches that prescribe specific methods and procedures.
Question 27Regulatory
What is the typical duration of a regulatory sandbox testing period?
Explanation
Regulatory sandboxes in India typically operate for 6-12 months, extendable based on progress. This period allows sufficient time for testing while maintaining oversight and consumer protection.
Question 28Regulatory
Which Indian regulator operates a sandbox for InsurTech innovations?
Explanation
IRDAI (Insurance Regulatory and Development Authority of India) operates the regulatory sandbox for InsurTech products and distribution innovations. RBI has FinTech sandbox, SEBI has securities market sandbox.
Question 29Regulatory
Under the EU AI Act risk-based framework, which risk level results in prohibition?
Explanation
Under the EU AI Act, "Unacceptable risk" AI systems are prohibited entirely. This includes social scoring systems, manipulative AI, and certain real-time biometric surveillance applications.
Question 30Regulatory
What does the "Brussels Effect" refer to in technology regulation?
Explanation
The "Brussels Effect" describes the phenomenon where EU regulatory standards (like GDPR) become de facto global standards because companies find it easier to adopt one global standard rather than different approaches for different markets.
Question 31Regulatory
Under DPDPA 2023, which section addresses cross-border data transfers?
Explanation
DPDPA 2023 Section 16 governs cross-border data transfers. It allows the Central Government to notify countries to which personal data may be transferred, using a blacklist approach rather than an adequacy determination.
Question 32Regulatory
What is "crypto agility" in the context of post-quantum cryptography?
Explanation
Crypto agility refers to the ability of systems to upgrade or switch cryptographic algorithms without major service disruption. This is critical for transitioning to post-quantum cryptography when needed.
Question 33IoT Law
Which BIS standard applies to safety requirements for IoT electronic equipment?
Explanation
IS 13252 specifies safety requirements for information technology and electronic equipment, applicable to IoT devices. Products must also meet EMC standards and may require Compulsory Registration Scheme (CRS) certification.
Question 34Metaverse
Which BNS section addresses cheating by personation, applicable to avatar impersonation?
Explanation
BNS Section 319 addresses cheating by personation (replacing IPC Section 416). This provision can apply to avatar impersonation in virtual worlds where someone pretends to be another person for fraudulent purposes.
Question 35Drones
What is the single-window online system for all drone approvals in India?
Explanation
Digital Sky Platform is the single-window online system for all drone-related approvals in India, including registration, flight permissions, pilot licensing, and real-time airspace status through interactive maps.
Question 36CBDC
What privacy approach does India's e-Rupee use for different transaction values?
Explanation
India's e-Rupee design uses tiered anonymity where lower-value transactions have cash-like anonymity while higher-value transactions are fully traceable. This balances privacy with AML/CFT requirements.
Question 37Regulatory
Which principle ensures that laws apply regardless of the specific technology used?
Explanation
Technology neutrality is the principle that laws should not favor or discriminate against specific technologies. This ensures regulations remain relevant as technology evolves and prevents regulatory capture.
Question 38IoT Law
What regulatory approval is needed for health IoT medical devices in India?
Explanation
Health IoT devices that qualify as medical devices require approval from CDSCO (Central Drugs Standard Control Organisation). This includes connected health monitors, medical wearables, and remote patient monitoring devices.
Question 39Quantum Computing
What does QKD stand for in quantum security?
Explanation
QKD stands for Quantum Key Distribution, a method of secure communication that uses quantum mechanics principles to distribute encryption keys with theoretically unbreakable security.
Question 40Regulatory
Which international initiative focuses on digital public infrastructure that India has advocated during G20?
Explanation
During India's G20 presidency, India advocated for Digital Public Infrastructure (DPI) based on India Stack (Aadhaar, UPI, DigiLocker) as a model for inclusive digital development that other countries can adopt.