India has ordered the immediate blocking of Telegram, the encrypted messaging app, following a massive leak of question papers for the country’s most competitive university entrance exams. The ban, enforced under Section 69A of the Information Technology Act, targets what officials describe as a “persistent conduit for organised cheating networks”.
The decision comes after a coordinated leak of papers for the Joint Entrance Examination (JEE) and the Common University Entrance Test (CUET) surfaced on Telegram channels just hours before the exams. Over 200 groups were allegedly used to distribute the material, some with thousands of subscribers. For a nation already grappling with educational fraud, this was the final straw.
Meanwhile, across the Atlantic, Britain’s Home Office has issued a stark warning to Big Tech: weaken your encryption or face legal consequences. The Online Safety Bill, currently winding through Parliament, includes provisions that could compel platforms like WhatsApp and Signal to break end-to-end encryption for child safety monitoring. The language is unambiguous. “Encryption cannot be absolute,” said a Home Office spokesperson. “If companies cannot design products that are safe by default, the law will force their hand.”
These twin events represent a pivotal moment in the global tension between digital privacy and state control. India’s ban on Telegram is a blunt instrument. It will not stop cheating; it will simply move it to other platforms. The question is whether we are witnessing a necessary crackdown on digital anarchy or the beginning of a panoptical future where every message is open to inspection.
A cryptographic paradox is emerging. The same tools that protect journalists and dissidents also shield criminals. India’s move is a reminder that unregulated encryption has a dark side. But the UK’s approach is equally dangerous. By demanding backdoors, it creates vulnerabilities that can be exploited by bad actors everywhere.
The tragedy here is that neither government is asking the right question. They are not designing for the user experience of society. An informed public deserves cryptographic guarantees of privacy, but also transparency in how these tools are used. We need new architectures: verifiable encryption that can prove compliance without revealing content. Or ephemeral key systems that remove data after a set period.
Silicon Valley built the cage we now live in. We created end-to-end encryption and sovereign clouds because we feared the state. But we forgot to build accountability. Now the pendulum swings back.
For India, the ban is likely a short-term fix. Telegram’s cloud-based architecture made it ideal for sharing large files anonymously, but its resistance to moderation has always been a feature, not a bug. The app’s founder has long refused to cooperate with Indian authorities. Now that refusal has costs.
The UK’s warning is more insidious. It targets the very fabric of trust. If every encrypted message is potentially breakable by law enforcement, what stops a foreign power from demanding the same? This is a game of technological geopolitics where the rules are being written by politicians who barely understand the code.
Yes, encryption enables harm. But so does total surveillance. The middle path is not a backdoor but a new generation of audit trails and zero-knowledge proofs. It means demanding that companies like Telegram and Meta demonstrate they can detect abuse without reading private messages. It means building systems that are transparent by design.
India’s ban is a sledgehammer. The UK’s warning is a scalpel that could still cut too deep. Neither should be cheered. What we need is a new digital constitution: one that protects both the whistleblower and the student from being cheated. The user experience of a free society depends on it.
