India Needs Digital Identity for Every Device and Stronger AI-Led Cyber Defence to Curb Threats: Experts

The rapid proliferation of connected devices—from smartphones to industrial IoT sensors—has turned India’s digital ecosystem into a sprawling network of entry points for cyber‑criminals. Experts at the Cyber Security India Expo argue that assigning a unique digital identity to each device, much like the existing frameworks for personal identification, would create a traceable backbone for authentication and accountability. Such a system would enable network operators to isolate compromised hardware instantly, limit lateral movement, and enforce policy compliance across the supply chain. Global regulators are already piloting similar schemes, signaling a shift toward device‑centric security.

Artificial intelligence amplifies both the scale of attacks and the sophistication of defenses. While threat actors leverage AI to automate vulnerability scanning and launch rapid ransomware campaigns, defenders can deploy machine‑learning models to spot anomalous traffic, flag tampered firmware, and predict emerging attack vectors before they materialize. In India, the Digital Personal Data Protection (DPDP) Act provides a legislative scaffold for responsible AI use, mandating data minimization and auditability. Integrating AI‑driven analytics with the proposed device identity layer creates a synergistic shield that adapts in real time to evolving threats.

Technology alone cannot close the security gap; a culture of cyber hygiene and coordinated governance is essential. Nishant Singh emphasizes that industry, academia, and government must share threat intelligence, standardize best practices, and fund research into resilient AI algorithms. Public education campaigns, akin to road‑safety initiatives, can empower users to recognize phishing attempts and maintain secure configurations. As India pushes toward a digital‑first economy, the convergence of device identity, AI‑enabled defense, and robust regulatory oversight will be pivotal in safeguarding critical infrastructure and maintaining consumer trust.