Distributed by Prof Shafaat Yar Khan for CSS Aspirants

A PAPER PRESENTED ON:

CYBER LAWS IN PAKISTAN;

A SITUATIONAL ANALYSIS AND

WAY FORWARD

June 24, 2006

Presented by:

Zibber Mohiuddin

President and CEO

ERICSSON PAKISTAN (PVT.) LTD.
.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

TABLE OF CONTENTS

1 Abstract ............................................................................................................3
2 Background ......................................................................................................4
2.1 Internet Origin............................................................................................................ 4
2.2 The World Wide Web (WWW) ....................................................................................... 4
3 Cyber Crime......................................................................................................6
3.1 Emergence of Cyber Crime .......................................................................................... 6
3.2 Disputes in the Cyber World ....................................................................................... 6
3.3 Cyber Crime v/s Conventional Crime .......................................................................... 6
3.4 Complexity of Cyber Disputes ..................................................................................... 7
3.5 Types of Cyber Crime .................................................................................................. 7
3.6 Targets of Cyber Crime ............................................................................................... 8
4 Cyber Law....................................................................................................... 10
5 International Aspects of Cyber Law ................................................................. 11
6 Role of Pakistan in the Cyber World ................................................................ 17
7 Conclusion...................................................................................................... 19
8 Recommendations............................................................................................20
9 Bibliography ................................................................................................... 22

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

1 Abstract

The revolution in information technologies has changed society fundamentally and will
probably continue to do so in the foreseeable future. Where originally only some specific
sectors of society had rationalized their working procedures with the help of information and
communication technology, now hardly any sector of society has remained unaffected. They
have changed our society profoundly.

These developments have given rise to unprecedented economic and social changes, but
they also have a dark side: the emergence of new types of crime as well as the commission
of traditional crimes by means of new technologies. Moreover, the consequences of criminal
behavior can be more far-reaching than before because they are not restricted by
geographical limitations or national boundaries.

Along with encouraging the use of Information and Communication technologies from their
inception, countries have been looking at ways to counteract the negatives simultaneously.
Technical measures to protect computer systems are being implemented along with legal
measures to prevent and deter criminal behavior.

Pakistan has seen an adequate increase in the use of Information and Communications
Technologies over the past half decade. We now have 75,00,0001 internet users, grown by
5,501.2% from 2000-2005. The technology is currently less penetrated, 4.6%2, and yet to
compete with international standards.

This paper tends to probe into the networked economy, its impact on society in general and
economic wellbeing of states along with the parallel and anticipated downsides. We analyze
the increased and far increasing dependency on the networked economy impacting
individuals, companies and nations both nationally and globally. The loop holes in the cyber
space leading to cyber crimes pressurize countries to look for jurisdictions. A situational
analysis of the international aspects of cyber law is carried out to analyze how China, USA,
European Union among others have achieved a level of control over cyber activities while
trying to minimize the negative impact on their societies.

Finally, the Electronic Transactions Ordinance 2002 and the Electronic Crime Act 2004 as a
basis, for the way forward for Pakistan is discussed.

1 Nielsen//NetRatings ,2005
2 Internet Usage Statistics – The Big Picture: World Internet Users and Population Stats, www.InternetWorldStats.com, Copyright 2005,
Miniwatts International, LLC.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

2 Background

From their modest beginnings some 20 years ago3, computer networks have become a
critical element of modern society. These networks not only have global reach but
they also have impact on virtually every aspect of human endeavor. Networked
systems are principal enabling agents in business, industry, government, and defense.
Major economic sectors, including defense, energy, transportation,
telecommunications, manufacturing, financial services, health care, and education, all
depend on a vast array of networks operating on local, national, and global scales.

Internet has changed the very perceptions of mankind. Internet today represents and
embodies the single most important development in the history of civilization. On-line
culture has become an integral part of modern existence.

2.1 Internet Origin

In 1969 the U.S. government undertook an experiment, today known to people all
around the world as the 'Internet'. The purpose of this experiment was to create a way
of preserving communications in the event of a nuclear war. Through the collaboration
of ARPA (Advanced Research Project Agency) and some academic institutions involved
in joint research on defence technologies via interconnected networks ARPANET, the
earliest version of the Internet was created.

As time passed the popularity of the Internet grew and what was originally a network
of a small handful of computers in the United States was now a growing phenomenon
amongst educational establishments and enterprising entrepreneurs who were
beginning to see the potential in selling Internet access into people’s homes.

In the 1980's the UK and Europe realized the potential of the Internet and an
academic network called CSNET, which enabled the computer science departments of
some universities to be connected, was established.

The CSNET further established the Internet with TCP/IP with the support of the
country's major networking companies.

Even though the Internet clearly existed since the 1980's it was not until the early
1990's that the corporate world were able to make use of it instead of just the
academic community and government sponsored organizations. This limited use was
due to the 'user unfriendly' nature of the system, which led to the need for an interface
to be designed to make the Internet easier to use. This interface is what is now known
as the WWW (World Wide Web).

2.2 The World Wide Web (WWW)

In 1993 a researcher called Tim Berners-Lee with the aim of making the Internet a
user-friendly environment introduced the WWW. Designers had the task of designing

3 CERT® Coordination Center Software Engineering Institute Carnegie Mellon University

Pittsburgh, PA 15213-3890

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

and formatting web pages with the use of HTTP (Hypertext Transport Protocol) and
HTML (Hypertext Mark-up Language) to link documents together electronically. This
new technology enabled a world wide web of information to be provided.

However real usability came shortly after the introduction of the WWW when in 1993 a
team led by Marc Anderson at the University of Illinois developed a browser called
Mosaic which was a graphical user interface for the Internet to facilitate point and
click navigation, more commonly referred to as browsing. N.Bandyo-padhyay cites
Reid (1997) who states that by July 1996, 150,000 server computers were 'web-
enabled'. In 1994, the same team developed Netscape, which is today the most
commonly used browser. Netscape was equipped with a search engine to type
keywords into and was created using advanced HTTP.

Being able to perform keyword searches was a huge factor in the increased popularity
of the Internet. Other browsers such as Internet Explorer by Microsoft soon followed
and shortly after that several websites dedicated to producing keyword searches such
as Yahoo and Lycos appeared. These are today known more popularly as search
engines. The WWW also contributed to providing increased levels of security on the
Internet by encrypting the messages that moved between servers. Security on the
Internet is today a huge cause of debate.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

3 Cyber Crime

3.1 Emergence of Cyber Crime

The first recorded cyber crime took place in the year 1820! 4 That is not surprising
considering the fact that the abacus, which is thought to be the earliest form of a
computer, has been around since 3500 B.C. in India, Japan and China. The era of
modern computers, however, began with the analytical engine of Charles Babbage.

In 1820, Joseph-Marie Jacquard, a textile manufacturer in France, produced the loom.

This device allowed the repetition of a series of steps in the weaving of special fabrics.
This resulted in a fear amongst Jacquard's employees that their traditional
employment and livelihood were being threatened. They committed acts of sabotage to
discourage Jacquard from further use of the new technology. This is the first recorded
cyber crime! 5

Cyber crime is an evil having its origin in the growing dependence on computers in
modern life. In a day and age when everything from microwave ovens and refrigerators
to nuclear power plants are being run on computers, cyber crime has assumed rather
sinister implications.

3.2 Disputes in the Cyber World

Disputes are not new to our existence but disputes relating to on-line transactions
and culture are extensively different in their nature, scope and treatment.

The pervasive societal dependence on networks magnifies the consequences of

intrusions, accidents, and failures, and amplifies the critical importance of ensuring
network survivability. A new network paradigm is emerging. Networks are being used
to achieve radical new levels of organizational integration. For example, commercial
organizations are integrating operations with business units, suppliers, and
customers through large-scale networks that enhance communication and services.
This new paradigm represents a shift from bounded networks with central control to
unbounded networks.

Thus, the extremely important feature of today’s unbounded networks is the

emergence of tremendous disputes, differences, fights and controversies on the
Internet relating to varied aspects of ‘on-lineism’.

3.3 Cyber Crime v/s Conventional Crime

CONVENTIONAL CRIME

Crime is a social and economic phenomenon and is as old as the human society.
Crime is a legal concept and has the sanction of the law. Crime or an offence is “a
legal wrong that can be followed by criminal proceedings which may result into

4 Asian School of Cyber Laws http://www.asianlaws.org/cyberlaw/library.htm

5 Asian School of Cyber Laws Owned Resource

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

punishment.”6 The hallmark of criminality is that, it is breach of the criminal law. Per
Lord Atkin “the criminal quality of an act cannot be discovered by reference to any
standard but one: is the act prohibited with penal consequences”.7

CYBER CRIME

Cyber crime is the most complicated problem in the cyber world. “Cyber crime may be
said to be those species, of which, genus is the conventional crime, and where either
the computer is an object or subject of the conduct constituting crime”8. “Any criminal
activity that uses a computer either as an instrumentality, target or a means for
perpetuating further crimes comes within the ambit of cyber crime”. 9

A generalized definition of cyber crime may be “unlawful acts wherein the computer is
either a tool or target or both”10. Thus, crimes are unlawful acts wherein the computer
is either a tool or a target or both.

3.4 Complexity of Cyber Disputes

Cyber disputes are complex in nature due to the following reasons:

- The world itself becomes a big courtroom when cyber crimes across geographic
boundaries take place.
- Because of the global nature of the internet, the clarity as to which court would
have the exclusive jurisdiction to try the case is missing.
- Thirdly litigation and the legal systems in different countries are different and
can be extremely expensive and threaten to wipe out millions of legal entities
into oblivion.
- And there is considerable doubt relating to the efficacy of decisions given by the
courts of one jurisdiction on a global level and the sanctions are questionable.

3.5 Types of Cyber Crime

Let us examine the typical types of cyber crimes:

Type Examples
Financial crimes Cheating, credit card frauds, money laundering etc.
Cyber pornography Pornographic websites etc.
Sale of illegal Sale of narcotics, weapons and wildlife etc., through websites or email
articles communication.
Online gambling Online gambling, money laundering etc.
Intellectual Software piracy, copyright infringement, trademarks violations, theft of
Property crimes computer source code etc.
Email spoofing Sending e-mails that appear to originate from one source but actually
has been sent from another source.

6 Granville Williams
7 Proprietary Articles Trade Association v. A.G.for Canada (1932)
8 Author of CYBER CRIME by Parthasarathi Pati (naavi.org)
9 Duggal Pawan
10 Nagpal R. – What is Cyber Crime?

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Forgery Counterfeit currency notes, postage and revenue stamps, mark sheets
etc.
Cyber Defamation Publishing/distributing defamatory matter about someone.
Cyber stalking Victimizing someone online.
Unauthorized Hacking.
access to
computer
systems or
networks
Theft of Stealing information on computer hard disks, removable storage media
information etc.
contained in
electronic form
Email bombing Sending a large number of emails crashing email accounts or servers.
Data diddling Altering data.
Salami attacks Commissioning financial crimes.
Denial of Service Flooding systems by sending excessive demands etc.
attack
Virus / worm Spread of viruses and worms.
attacks
Logic bombs Triggering programs at events.
Trojan attacks Unauthorized programs.
Internet time Stealing internet hours.
theft
Web jacking Stealing control over websites.
Theft /damaging Theft of a computer, peripherals etc.
of computer
system
Unauthorized The cyber crime of “gaining entry into, instructing or communicating
Access with the logical, arithmetical, or memory function resources of a
computer, computer system or computer network”11 known as access
has the greatest impact Packet sniffing, tempest attack, password
cracking and buffer overflow etc. are some techniques for gaining
access.

3.6 Targets of Cyber Crime

Cyber crimes are targeted and have an impact at three levels: Individuals,
Organizations, Society at large 12 . Examples of crimes targeted at the three levels
mentioned is as follows:

Against Individual Property Against Organization Against Society at large

i. Computer vandalism i. Unauthorized i. Pornography (basically
ii. Transmitting virus control/access over child pornography)
iii. Unauthorized computer system ii. Polluting the youth
control/access over ii. Possession of through indecent exposure

11 Section 2(1)(a) of theUS Information Technology Act

12 Author of CYBER CRIME by Parthasarathi Pati (naavi.org)

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

computer system unauthorized information iii. Trafficking

iv. Intellectual Property iii. Cyber terrorism against iv. Financial crimes
crimes the government organization v. Sale of illegal articles
v. Internet time thefts iv. Distribution of pirated vi. Online gambling
software etc. vii. Forgery

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

4 Cyber Law

In an increasing networked economy, safeguarding cyberspace as well as Information

and Communication Technology systems (ICTs) and infrastructure have taken on real
urgency. It is essential to instill confidence in online trade, commerce, banking,
telemedicine, e-governance and host of other applications. It is also critical for the
future social and economic development of the world, said ITU secretary general
Yoshio Utsumi13.

Achieving cyber-security depends upon the security practices of each and every
networked country, business and citizen.

To guard against the sophisticated skills of cyber-criminals, a global culture of cyber-

security needs to be developed. This will require not only good policing and legislation
but also acute threat awareness and development of tough ICT-based counter
measures.

Cyber law is the intersection of technology and law. Controversy exists in that one
school of thought thinks that the technology should not (or can not) be regulated.

Cyber law encompasses a wide variety of political and legal issues related to the
Internet and other communications technology, including intellectual property,
privacy, freedom of expression, and jurisdiction.

Cyber law has been a vibrant field in which numerous developments took place in the
year 2001 on the global level. Cyber law tends to addresses a more definitive,
regulated and orderly cyberspace and towards evolving the regulated code of conduct
for online activities in the context of electronic mediums around it.

13 ITU secretary general Yoshio Utsumi International Telecom Union (ITU) 141st Anniversary 2006

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

5 International Aspects of Cyber Law

Information and communications flow more easily around the world. Borders are no
longer boundaries to this flow. This causes difficulty, as the internet-based society has
no physical boundaries and thus much traffic escapes national supremacy. Criminals
are increasingly located in places other than where their acts produce their effects.

Over the past thirty years, developed nations’ transit from the industrial era to the
new information age has enabled them to develop the nascent technology and produce
ever greater quality in standards and value. Between 2000 and 2005, the average
internet user growth rate was of 183.4%, the highest rate being in the Middle East
with 454.2%. Not far behind was Africa with 423.9% and Latin America and the
Caribbean collectively with 342.5%14. It is clear from these statistics that these regions,
in which most developing countries subsist, are eager to implement and exploit the
advantages of ICTs and the internet superhighway.

WORLD INTERNET USAGE AND POPULATION STATISTICS15

Usage
Usage
Population Population Internet Usage, % Population Growth
World Regions % of
( 2006 Est.) % of World Latest Data ( Penetration ) 2000-
World
2005
Africa 915,210,928 14.1 % 23,649,000 2.6 % 2.3 % 423.9 %
Asia 3,667,774,066 56.4 % 364,270,713 9.9 % 35.6 % 218.7 %
Europe 807,289,020 12.4 % 291,600,898 36.1 % 28.5 % 177.5 %
Middle East 190,084,161 2.9 % 18,203,500 9.6 % 1.8 % 454.2 %
North America 331,473,276 5.1 % 227,303,680 68.6 % 22.2 % 110.3 %
Latin
553,908,632 8.5 % 79,962,809 14.4 % 7.8 % 342.5 %
America/Caribbean
Oceania /
33,956,977 0.5 % 17,872,707 52.6 % 1.7 % 134.6 %
Australia
100.0
WORLD TOTAL 6,499,697,060 100.0 % 1,022,863,307 15.7 % 183.4 %
%

As developing countries are jumping onto the bandwagon, penetration of Internet and
awareness is on an overall low level. Different National Governments in Asia have yet
to galvanize themselves into action vis a vis Internet and cyberspace. The future holds
tremendous promise for Asia and Asian countries have to respond to the same with
lightening speed. The problem is nonetheless that many have neither the expertise nor
the experience to deal with the legal and policy issues necessary.

14 Internet Usage Statistics – The Big Picture: World Internet Users andPopulation Stats, www.InternetWorldStats.com, Copyright 2005,
Miniwatts International, LLC.

15 NOTES: (1) Internet Usage and World Population Statistics were updated for March 31, 2006. (2) CLICK on each world region for
detailed regional information. (3) Demographic (Population) numbers are based on data contained in the world-gazetteer website. (4)
Internet usage information comes from data published by Nielsen//NetRatings, by the International Telecommunications Union, by local
NICs, and other other reliable sources. (5) For definitions, disclaimer, and navigation help, see the Site Surfing Guide. (6) Information
from this site may be cited, giving due credit and establishing an active link back to www.internetworldstats.com. ©Copyright 2006,
Miniwatts Marketing Group. All rights reserved.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

INTERNET USERS AND POPULATION STATISTICS FOR ASIA16

ASIA Population % Pop. Internet Users, Penetration % Usage Use Growth

REGION ( 2006 Est. ) of World Latest Data (% Population) of World ( 2000-2005 )
Asia Only 3,667,774,066 56.4 % 364,270,713 9.9 % 35.8 % 218.7 %
Rest of
2,831,922,994 43.6 % 653,786,676 23.1 % 64.2 % 165.0 %
the World
WORLD
6,499,697,060 100.0 % 1,018,057,389 15.7 % 100.0 % 182.0 %
TOTAL

International Telecommunications Union has helped certain developing countries to

become actively involved in the deployment and use of services aimed at building
security and trust, thereby extending the benefits of ICTs beyond commercial to
societal applications such as government and health.

ITU-D (Development Bureau) has been mandated to:17

• Enhance security and build confidence in the use of public networks for e-
services/applications.
• Provide assistance to Member States in developing laws and model legislation for e-
services/applications, prevention of cyber crime, security, ethical issues and data
privacy.
• Identify security requirements and propose solutions for the development of secure IP
infrastructure for e-services/applications on various types of networks using relevant
technologies.
• Develop tools to facilitate the exchange of best practices on IT security, legal issues
related to the areas of activity of this Programme.

The European Union, on the other hand, has enabled harmonized implementation of
regulation on electronic commerce through directives in almost all European countries,
with non-member countries aligning themselves with the EU movement. Similarly, the
US has both important knowledge and experience in the legal field of cyber security,
with significant influence in the area.

The U.S has a very well defined structure for reporting crimes. The primary federal law
enforcement agencies that investigate domestic crime on the Internet include: the

16 Internet Usage Statistics

17 ITU-D: E-Strategies Unit website, www.itu.int/ITU-D/e-strategy/

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Federal Bureau of Investigation (FBI), the United States Secret Service, the United
States Immigration and Customs Enforcement (ICE) , the United States Postal
Inspection Service, and the Bureau of Alcohol, Tobacco and Firearms (ATF) . Each of
these agencies has offices conveniently located in every state to which crimes may be
reported. Contact information regarding these local offices may be found in local
telephone directories. In general, federal crime may be reported to the local office of an
appropriate law enforcement agency by a telephone call and by requesting the "Duty
Complaint Agent."

Each law enforcement agency also has a headquarters (HQ) in Washington, D.C.,
which has agents who specialize in particular areas. For example, the FBI and the U.S.
Secret Service both have headquarters-based specialists in computer intrusion (i.e.,
computer hacker) cases.

Following federal investigative law enforcement agencies are responsible for reporting
of crimes:

Type of Crime Appropriate federal investigative law

enforcement agencies
Computer intrusion (i.e. • FBI local office
hacking)
• U.S. Secret Service
• Internet Fraud Complaint Center

Password trafficking • FBI local office

• U.S. Secret Service
• Internet Fraud Complaint Center
Copyright (software, movie, • FBI local office
sound recording) piracy • If imported, U.S. Immigration and Customs
Enforcement
• Internet Fraud Complaint Center
Theft of trade secrets • FBI local office
Trademark counterfeiting • FBI local office
• If imported, U.S. Immigration and Customs
Enforcement
• Internet Fraud Complaint Center
Counterfeiting of currency • U.S. Secret Service
Child Pornography or • FBI local office
Exploitation • If imported, U.S. Immigration and Customs
Enforcement
• Internet Fraud Complaint Center
Child Exploitation and Internet • U.S. Postal Inspection Service
Fraud matters that have a mail
• Internet Fraud Complaint Center
nexus
Internet fraud and SPAM • FBI local office
• U.S. Secret Service (Financial Crimes

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Division)
• Federal Trade Commission (online complaint)
• If securities fraud or investment-related
SPAM e-mails, Securities and Exchange
Commission (online complaint)
• The Internet Fraud Complaint Center
Internet harassment • FBI local office
Internet bomb threats • FBI local office
• ATF local office
Trafficking in explosive or • FBI local office
incendiary devices or firearms
• ATF local office
over the Internet

The US Internet Crime Complaint Center (IC3): The Internet Crime Complaint Center (IC3) is
a partnership between the Federal Bureau of Investigation (FBI) and the National White
Collar Crime Center (NW3C). IC3's mission is to serve as a vehicle to receive, develop, and
refer criminal complaints regarding the rapidly expanding arena of cyber crime. The IC3
gives the victims of cyber crime a convenient and easy-to-use reporting mechanism that
alerts authorities of suspected criminal or civil violations. For law enforcement and
regulatory agencies at the federal, state, and local level, IC3 provides a central referral
mechanism for complaints involving Internet related crimes.

Other US Government Initiatives to Combat Cyber crime:

o Department of Homeland Security's National Infrastructure Coordinating Center:

(202) 282-9201 (report incidents relating to national security and infrastructure
issues).
o U.S. Computer Emergency Readiness Team (U.S. CERT) (online reporting for
technicians)
o Internet Fraud Complaint Center (IFCC) (online reporting for Internet related
crime).
o National Association of Attorney General's Computer Crime Point of Contact List
(all state related cyber questions).
o Digital Millennium Copyright Act - the epidemic law that outlaws not only
software piracy but also the activities that help it.
o Online Copyright Infringement Liability Limitation Act technically a part of the
DMCA but distinct from it.
o Uniform Computer Information Transactions Act
o Can Spam Act of 2003
o Proposed EU Directive on the patentability of computer-implemented inventions

Most domestic laws for the developed countries are generally confined to a specific
territory. Thus solutions to the problems posed must be addressed by international
law, necessitating the adoption of adequate international legal instruments.

Shenzhen, China and Saudi Arabia are two more examples of nations that have
achieved high degrees of success in regulating their citizens’ access to the internet.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

China boasts of 111 million internet users, the world's second largest number after
the United States. But the lack of police supervision has caused rampant spread of
pornographic information, slanders and gambling on the Internet.

China's booming special economic zone of Shenzhen is leading the way in curbing
online crimes and the spread of hazardous information with the use of cyber police.
Shenzhen has about 4 million users and more than 5,000 major websites, 400 of
which support cyber forums and chat rooms. With rapid website development, on-line
crimes, such as on-line stealing, cheating and gambling, have become rampant.

The local police authorities said that since the cyber police appeared this year, the
amount of hazardous information at the city's major portal websites have reduced by
60 percent.18

Since January, cyber policeman and cyber policewoman have performed their duties
at major portal websites. Both have cartoon icons on Internet.

Cyber police in China have been at work in three areas:

- Firstly, the police folks patrol areas where crimes frequently occur to warn cyber
criminals.
- Secondly, users can find, by clicking on icons of police folk, information on rules
and regulations of cyber space management and typical online criminal cases. In a
few months, the police icons have received an accumulated 100,000 clicks,
provided more than 600 legal consultations and received more than 1,600 reports
on online crimes, 235 of which have been proved effective.
- The virtual reality cops are also responsible for receiving online crime reports from
users and providing legal consultations concerning cyber crimes.

Considering the success of the cyber space in Shenzhen, the Ministry of Public
Security in early May decided to establish cyber police in another eight major cities.

For developing countries to trade with the developed ones, they must ensure that their
national legislation ensures the same level of protection granted by other countries
regarding storage and processing of personal data. This is imperative if these countries
want to trade with European Union countries, which have very strong data protection
laws.

Following are the stronger International Fora for Cyber Crime:

Two treaties, negotiated under the auspices of the World Intellectual Property
Organization (WIPO), the Copyright Treaty of 1996 and the Phonograms and
Performers Treaty of 1996 attempt to interpret traditional rules of copyright in the
new internet environment. These are implemented in the US, the European Union
(EU), Canada and other countries

The Council of Europe Convention on Cyber Crime in 2001 was the first
international initiative on computer crime. It has been signed by 37 States and
entered into force in July 2004. This Convention helps to foster international

18 Xinhua News Agency 2006.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

cooperation by criminalizing the basic cyber crimes. The ideal is that all signatory
states have the same legislative foundation, regardless of further domestic laws in this
area, which will enable prosecution of crimes committed in one country but which
have an effect on several different countries.19

The UN Guidelines concerning computerized personal data files list a few

principles for the elaboration of legislation in States. Initiatives are, however, left to the
States regarding implementation of such legislation.

The United Nations Resolutions 55/63 and 56/121 on Combating the Criminal Misuse
of Information Technology tried to address the problem of safe havens for those who
criminally misuse information technology by requesting that States put into place laws
to eliminate such havens. Two further Resolutions were adopted, Resolutions 57/239
and 58/199 on the Creation of a Global Culture of Security and the Protection of
Criminal Information Infrastructure.

The US Department of Justice is working with foreign governments through many

channels to address global threats related to computer crime.

OECD-APEC Global Forum: Policy Frameworks for the Digital Economy

The Organization for Economic Cooperation and Development (OECD) announced on
August 7, 2002 the completion of "Guidelines for the Security of Information Systems
and Networks: Towards a Culture of Security." These guidelines, which replace the
original guidelines published in 1992, provide a set of principles to help ensure the
security of today's interconnected communications systems and networks.

19 A Draft Commentary on the Council of Europe’s Convention on Cybercrime, October 2000,

www.privacy.openflows.org/pdf/coe_analysis.pdf

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

6 Role of Pakistan in the Cyber World

The Pakistan market has now grown manifolds with the largest majority of internet
users in Karachi and then Lahore and Islamabad. These three cities jointly provide
over 90% of the customer base and expansion in activity is also likely to remain
primarily confined to these cities because of the concentration of economic activity in
these cities.20

It is no surprise that Pakistan is not free from the cyber space dilemma. The
availability of computers and Internet connections provides unprecedented
opportunities to communicate and learn in Pakistan. However, certain individuals do
exploit the power of the Internet for criminal purposes as well.

Pakistan has a legal framework in place to address cyber crimes. The Electronic
Transaction Ordinance 2002 was passed by Pakistan Government with the objective
to recognize and facilitate documents, records, information, communications and
transactions in electronic form, and to provide for the accreditation of certification
service providers. With this legal framework we do have legal backing for electronic
information and communication, as any written and signed document. With ETO in
place, Pakistan has joined an exclusive band of countries that provide necessary
framework and an impetus for growth of electronic commerce in Pakistan.

The Electronic Transaction Ordinance is an essential prerequisite for e-commerce

growth and termed as "a landmark decision for the IT development of the country"21.

The Ordinance aimed to achieve:

- Great economic impact.
- E-commerce and projecting Pakistan’s products such as textile, leather goods,
sports goods and surgical items to the world.
- Increased e-transactions.
- Major benefits for the small and medium business enterprises as the cost of
transactions are greatly reduced electronically.
- Legal and safe trading to take place as the necessary laws to protect the
interests of both the buyers and the sellers in the process of electronic sales
and purchases are protected through the promulgation of the Electronic
Transaction Ordinance 2002.

The Federal Government, by notification in the official Gazette, makes rules to

carry out the Purposes of the Ordinance.

The ordinance has laid down clauses for the following offenses related to electronic
transactions:

• Provision of false information

20 Internet Service Providers Association of Pakistan (ISPAK) Internet Service Providers Association of Pakistan (ISPAK)
21 Electronic Transaction Ordinance to help e-commerce growth- The News, 13/7/2002
http://www.jang-group.com/thenews/jul2002-daily/13-07/2002/metro/i3.htm

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

• Issue of false certificate

• Damage to information system

Furthermore, the Electronic Crime Act 2004 was prepared by the Ministry of
Information Technology, Pakistan with the Electronic Transaction Ordinance 2002 as
the basis.

The Act addresses and lays down legislative terms for the following cyber crimes:

• Criminal access
• Criminal data access
• Data damage
• System damage
• Electronic fraud
• Electronic forgery
• Misuse of devices
• Misuse of encryption
• Malicious code
• Cyber stalking
• Spamming
• Spoofing
• Unauthorized interception
• Cyber Terrorism
• Waging cyber war
• Enhanced punishment for offences involving sensitive electronic systems
• Attempt and aiding or abetting

Other initiatives taken by GoP include the formation of a National Response Center
to stop internet misuse and trace those involved in cyber crimes. The Accreditation
Council, in line with the National IT Policy and the Electronic Transactions Ordinance
2002, was also formed for Certificate Authorities by the Ministry of Information
Technology. This voluntary licensing program aims at promoting high integrity
licensed CAs that can be trusted. A CA wishing to get licensed will have to meet
stringent licensing criteria in various aspects, including financial soundness,
personnel integrity, strict security controls and procedures.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

7 Conclusion

It is not possible to eliminate cyber crime from the cyber space in its entirety. However,
it is quite possible to check it. Any legislation in its entirety might be less successful in
totally eliminating crime from the globe. The primary step is to make people aware of
their rights and duties (to report crime as a collective duty towards the society) and
further making the application of the laws more stringent to check crime.

Developing nations must learn from the experiences of developed nations and leap
forward to prepare against the inevitable cyber crime. In order to strengthen the
overall infrastructure, efforts by each country must be made at an international level
to cooperate and coordinate with each other so as to come to harmonized terms on
matters regarding security. In this regards, international instruments such as the
Council of Europe’s Convention on Cyber Crime 2001, could prove extremely valuable
in fighting cyber crime at an international level.

However, in any draft legislation it is important that the provisions of the cyber law
are not made so stringent that it may retard the growth of the industry and prove to
be counter-productive.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

8 Recommendations

Cyber crime is a global phenomenon and therefore the initiative to fight it should come
from the same level. The need of the hour is a worldwide uniform cyber law to combat
cyber crime.

Following is the proposed way forward and recommendations to equip the country to
counteract cyber crimes at the national and global levels.

i. Fostering Linkages
- Creating liaison with the international community will further create sharing of
experiences and good practices in the field of information security and network
security and encourage their use by all parties concerned.

- Given the cross-border nature of information and communication technologies, a

concerted international effort is needed to deal with misuse. A binding international
instrument can ensure the necessary efficiency in the fight against these new
phenomena. In addition to measures of international co-operation, such a framework
should also address questions of substantive and procedural law, as well as matters
that are closely connected with the use of information and communication
technologies.

- The value of fostering co-operation internationally with other countries/regions and

parties needs to be enhanced. This includes fostering international cooperation in the
areas of internet, information technology, e-business, e-commerce, and cyber crime.
Liaison with national governments, local, national and international bodies,
organizations and other groups in order to demand immediate and necessary national
legislations is vital.

- Co-operation between governments and the private sector in combating cyber crime
and the need to protect legitimate interests in the use and development of information
and communication technologies is essential.

- Furthermore, strengthening of the trust and security of the governing framework

among nationals is essential to enhance usage. Encouraging development of secure
and reliable applications to facilitate online transactions will also generate trust in the
systems. Define processes for all cyber crimes, including illegal access, data
interference, system interference, misuse of devices, computer-related forgery,
computer-related fraud, offences related to child pornography, offences related to
infringements of copyright and related rights, which would contribute to the overall
trust and security process.

ii. Building National level Partnerships and Creating Awareness

- Create specialized forums for exchange of experiences and information which would
entail initiating and promoting literary, technical and scientific activity; research;
education; and training pertaining to cyber laws. These activities should be catered to
law enforcement agencies, government departments, bar associations, judiciary,
institutes, universities, corporations and other private organizations.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

- Setting up a cyber crime cell consisting of experts to deal with cyber-crime will
encourage reporting and evolve into a process inline with the legislature. These cyber
crime cells should be constituted in all metropolitan and other important cities.

iii. Training and Awareness Raising

- It is essential to educate and empower youth to safely and responsibly take control of
their Internet experience.

- Disseminate general awareness of cyber crimes and user laws/rights by arranging

symposia, seminars, lectures, classes, demonstrations, presentations, briefings, to
educate the society and gain their comfort level.

- Creating awareness of the Electronic Transaction Ordinance 2000 and Electronic

Crime Act 2004 of 2000 among the target groups will prove successful and inform the
concerned about their rights. People need to be aware of the appropriate law
enforcement investigative authorities at the local, state, federal, or international levels.

- Introducing Cyber Crimes awareness in schools and adding it to curriculum will

create the required awareness amongst the youth.

- Disseminate information for consumers and businesses on computer security and

safeguarding personal information. Along with this contact numbers of authorities, the
process etc. should be explicitly stated.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

9 Bibliography

FAQ: The Anti-cyber squatting Consumer Protection Act, by Richard Keyt, April 20, 2001, Keyt Law:
Business, Internet, E-commerce and Domain Name Law. Domain Name Disputes
www.keytlaw.com/urls/acpa.htm#What%20is%20the%20ACPA.

Trademarks, domain names and patents, by M. Viljoen, G.M. du Plessis, G. Vivier Beng, Partners at
Adams and Adams, Pretoria.

Cyberlaw India: To Link or Not to Link-The Judicial View by Shri Pavan Duggal, Cyberlaw Consultant,
President Cyberlaws.net, MAC, ICANN http://www.cyberlaws.net/cyberindia/linking.html.

www.virtulaw.com/e-law.htm, Virtulaw, L.L.C. Copyright © 1999 Virtulaw, L.L.C. All rights reserved.
Revised: June 04, 1999.

CERT® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA
15213-3890 Proprietary Articles Trade Association v. A.G for Canada (1932).

Electronic Communications Act 2000 (ECA).

Electronic Signatures Regulations 2002 (ESR).

Electronic Signatures in Global and National Commerce Act 2000 (E-Sign Act).

Council of Europe Convention on Cyber Crime, 2001.

Computer Misuse Act, 1990.

Regulation of Investigatory Powers Act 2000 (RIPA).

Harmonizing National Legal Approaches on Cyber Crime, by Judge Stein Schjolberg and Amanda M.
Hubbard, ITU WSIS Thematic Meeting on Cyber Security, Geneva, 28 June – 1 July 2005.

Asian School of Cyber Laws, Cyber Crime Cases, Emerging Jurisprudence,

www.asianlaws.org/cyberlaw/library/cc/cc_caselaw.htm.

Convention on Cyber crime, 2001.

Data Protection Act 1998.

Privacy and Electronic Communications (EC Directive) Regulations, 2003.

Nagpal R. – What is Cyber Crime?.

Nagpal R- Defining Cyber Terrorism.

Duggal Pawan – The Internet: Legal Dimensions.

Kumar Vinod – Winning the Battle against Cyber Crime.

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

China focus: China's cyber police curbs online crimes: Xinhua News Agency 2006.

Computer-related crime, Report by the European Committee on Crime Problems.

Code and Other Laws of Cyberspace, The Future of Ideas, and Free Culture by Lawrence Lessig.

Intellectual Property and the Internet by Rodney D. Ryder; Lexis Nexis Butterworths, 2002.

Cyberlaw for Non-Lawyers - an archive of articles on cyberlaw compiled by the Electronic Frontier
Foundation.

Law And Borders-The Rise of Law in Cyberspace.

Electronic Transaction Ordinance to help e-commerce growth- The News, 13/7/2002

http://www.jang-group.com/thenews/jul2002-daily/13-07/2002/metro/i3.htm.

Creating a Safer Information Society by Improving the Security of Information Infrastructures and
Combating Computer-related Crime, Communication of the European Commission, 26 January 2001,
COM(2000)890,
http://europa.eu.int/information_society/topics/telecoms/internet/crime/index_en.htm.

Network and Information Security: Proposal for a European Policy Approach, Communication of the
European Commission, 6 June 2001, COM(2001)298,
http://europa.eu.int/information_society/eeurope/2005/highlights/news/index_en.htm
http://www.itu.int/ITU-D/e-strategy/publications-articles/pdf/Guide_cybercrime_fin.pdf

http://www.pakcon.org

http://www.cnn.com

http://www.isbpak.com

Nielsen//NetRatings Dec/2005

International Telecommunications Union 2005- http://www.itu.int

Internet World Stats http://www.internetworldstats.com/stats3.htm#asia

Internet Service Providers Association of Pakistan (ISPAK)http://www.ispak.com.pk

Asian School of Cyber Laws Resources http://www.asianlaws.org/cyberlaw/library.htm

Proprietary Articles Trade Association v. A.G.for Canada (1932)

Author of CYBER CRIME by Parthasarathi Pati (naavi.org)

Nagpal R. – What is Cyber Crime?

Computer Misuse and the Criminal Law,

www.cosgrave.com/courses/ProfIssues/Computermisuseandthecriminallaw.html

Internet Laws, Laws and Case Law, Bogdan Manolea, www.legiinternet.ro/en/laws.htm

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Privacy and Human Rights 2004: Romania, Bogdan Manolea with assistance from Cedric Laurant,
www.legi-internet.ro/privacy_ro2004.htm

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Appendix 1 ASIA INTERNET USAGE AND POPULATION

Use
Internet Internet Penetration (%)
Population Growth
ASIA Users, Users, (% Users
( 2006 Est.) ( 2000-
(Year 2000) Latest Data Population) in Asia
2005 )
Afganistan 26,508,694 - 25,000 0.1 % 0.0 % n/a %
Armenia 2,967,116 30,000 150,000 5.1 % 0.0 % 400.0 %
Azerbaijan 8,388,479 12,000 408,000 4.9 % 0.1 % 3,300.0 %
Bangladesh 136,138,461 100,000 300,000 0.2 % 0.1 % 200.0 %
Bhutan 796,314 500 20,000 2.5 % 0.0 % 3,900.0 %
Brunei
393,568 30,000 56,000 14.2 % 0.0 % 86.7 %
Darussalem
Cambodia 15,017,110 6,000 41,000 0.3 % 0.0 % 583.3 %
China 1,306,724,067 22,500,000 111,000,000 8.5 % 30.5 % 393.3 %
East Timor 947,401 - 1,000 0.1 % 0.0 % 0.0 %
Georgia 4,435,046 20,000 175,600 4.0 % 0.0 % 778.0 %
Hong Kong * 7,054,867 2,283,000 4,878,713 69.2 % 1.3 % 113.7 %
India 1,112,225,812 5,000,000 50,600,000 4.5 % 13.9 % 912.0 %
Indonesia 221,900,701 2,000,000 18,000,000 8.1 % 4.9 % 800.0 %
Japan 128,389,000 47,080,000 86,050,000 67.2 % 23.7 % 83.3 %
Kazakhstan 14,711,068 70,000 400,000 2.7 % 0.1 % 471.4 %
Korea, North 23,312,595 - - - - n/a %
Korea, South 50,633,265 19,040,000 33,900,000 67.0 % 9.3 % 78.0 %
Kyrgystan 5,377,484 51,600 263,000 4.9 % 0.1 % 409.7 %
Laos 5,719,497 6,000 20,900 0.4 % 0.0 % 248.3 %
Macao* 490,696 60,000 201,000 41.0 % 0.1 % 235.0 %
Malaysia 27,392,442 3,700,000 10,040,000 36.7 % 2.8 % 171.4 %
Maldives 298,841 6,000 19,000 6.4 % 0.0 % 216.7 %
Mongolia 2,568,204 30,000 200,000 7.8 % 0.1 % 566.7 %
Myanmar 54,021,571 1,000 63,700 0.1 % 0.0 % 6,270.0 %
Nepal 25,408,817 50,000 175,000 0.7 % 0.0 % 250.0 %
Pakistan 163,985,373 133,900 7,500,000 4.6 % 2.1 % 5,501.2 %
Philippines 85,712,221 2,000,000 7,820,000 9.1 % 2.1 % 291.0 %
Singapore 3,601,745 1,200,000 2,421,000 67.2 % 0.7 % 101.8 %
Sri Lanka 19,630,230 121,500 280,000 1.4 % 0.1 % 130.5 %
Taiwan 22,896,488 6,260,000 13,800,000 60.3 % 3.8 % 120.4 %
Tajikistan 6,620,008 2,000 5,000 0.1 % 0.0 % 150.0 %

Centre of Academic Solutions & Training, Lahore. 0332-4191070

 Distributed by Prof Shafaat Yar Khan for CSS Aspirants

Thailand 66,527,571 2,300,000 8,420,000 12.7 % 2.3 % 266.1 %

Turkmenistan 6,723,715 2,000 36,000 0.5 % 0.0 % 1,700.0 %
11,633.3
Uzbekistan 26,311,197 7,500 880,000 3.3 % 0.2 %
%
Vietnam 83,944,402 200,000 5,870,000 7.0 % 1.6 % 2,835.0 %
100.0
TOTAL ASIA 3,667,774,066 114,303,000 364,270,713 9.9 % 218.7 %
%
NOTES: (1) The Asian Internet Statistics were updated for December 31, 2005. (2) CLICK on each
country name to see detailed data for individual countries and regions. (3) The demographic
(population) numbers are based on data contained in world gazetteer. (4) The usage numbers come
from various sources, mainly from data published by Nielsen//NetRatings , ITU , and other
trustworthy sources. (5) Data may be cited, giving due credit and establishing an active link to Internet
World Stats. (6) For definitions and help, see the site surfing guide.

22©Copyright 2006, www.internetworldstats.com. All rights reserved.

22 www.internetworldstats.com.

Centre of Academic Solutions & Training, Lahore. 0332-4191070