AI tools helped expose CBSE portal flaws; IIT experts flag serious security gaps in OSM vendor
NEW DELHI: The controversy surrounding the Central Board of Secondary Education's (CBSE) On-Screen Marking (OSM) system has taken a fresh turn, with a high-level team of experts from IIT Kanpur and IIT Madras reportedly finding that artificial intelligence tools were used to identify vulnerabilities in the Board's digital infrastructure.
IIT team reportedly flags concerns over vendor capabilities
One of the most significant observations made by the expert group relates to the capability of the vendor entrusted with the OSM infrastructure.
As reported by The Economic Times, the panel found that Coempt Eduteck, the company handling the OSM platform, lacked adequate capability and conceptual understanding of portal security mechanisms.
The development is likely to intensify questions surrounding the procurement and implementation of the OSM system, which has already been facing scrutiny following complaints about scanned answer sheets, portal glitches and alleged cybersecurity weaknesses.
Data shifted to government-controlled cloud infrastructure
In a move aimed at strengthening security, all CBSE-OSM data has now been shifted from infrastructure managed by the private vendor to a government-controlled segment of Amazon Web Services (India), The Economic Times reported.
The migration was reportedly carried out with support from the Ministry of Electronics and Information Technology (MeitY), which has become closely involved in monitoring digital examination systems following recent controversies.
The IIT-led team has also been credited with helping stabilise and secure CBSE's verification and re-evaluation portal, which eventually went live after a delay.
Wider review of examination cybersecurity underway
The implications of the CBSE episode appear to be extending beyond a single board examination system.
According to The Economic Times, the same panel also reviewed the JEE Advanced digital infrastructure after concerns emerged regarding the online availability of admit-card related records. The vulnerabilities were reportedly addressed following the review.
The report further states that MeitY and CERT-In have stepped up oversight of examination-related digital platforms and have asked for a security audit of the CBSE portal.
Officials quoted by The Economic Times indicated that the government does not necessarily view the CBSE incident as a conventional cyberattack. Instead, it is being seen as a case where ethical hackers and independent researchers identified security gaps that were subsequently addressed.
The developments have also triggered broader discussions within government circles about technology procurement, vendor due diligence and cybersecurity preparedness. The Economic Times reported that an advisory has been circulated among departments emphasising the need to assess the technical capability of private vendors more rigorously and to incorporate cybersecurity safeguards from the earliest stages of digital project design.
The latest findings come at a time when educational agencies are increasingly relying on digital systems to conduct examinations, evaluate answer sheets and manage student records. As more services move online, cybersecurity is emerging as a critical component of examination governance, alongside transparency, accuracy and operational efficiency.
Ready to navigate global policies? Secure your overseas future. Get expert guidance now!
IIT team reportedly flags concerns over vendor capabilities
One of the most significant observations made by the expert group relates to the capability of the vendor entrusted with the OSM infrastructure.
As reported by The Economic Times, the panel found that Coempt Eduteck, the company handling the OSM platform, lacked adequate capability and conceptual understanding of portal security mechanisms.
The development is likely to intensify questions surrounding the procurement and implementation of the OSM system, which has already been facing scrutiny following complaints about scanned answer sheets, portal glitches and alleged cybersecurity weaknesses.
Data shifted to government-controlled cloud infrastructure
In a move aimed at strengthening security, all CBSE-OSM data has now been shifted from infrastructure managed by the private vendor to a government-controlled segment of Amazon Web Services (India), The Economic Times reported.
The migration was reportedly carried out with support from the Ministry of Electronics and Information Technology (MeitY), which has become closely involved in monitoring digital examination systems following recent controversies.
The IIT-led team has also been credited with helping stabilise and secure CBSE's verification and re-evaluation portal, which eventually went live after a delay.
Wider review of examination cybersecurity underway
The implications of the CBSE episode appear to be extending beyond a single board examination system.
According to The Economic Times, the same panel also reviewed the JEE Advanced digital infrastructure after concerns emerged regarding the online availability of admit-card related records. The vulnerabilities were reportedly addressed following the review.
The report further states that MeitY and CERT-In have stepped up oversight of examination-related digital platforms and have asked for a security audit of the CBSE portal.
Officials quoted by The Economic Times indicated that the government does not necessarily view the CBSE incident as a conventional cyberattack. Instead, it is being seen as a case where ethical hackers and independent researchers identified security gaps that were subsequently addressed.
The developments have also triggered broader discussions within government circles about technology procurement, vendor due diligence and cybersecurity preparedness. The Economic Times reported that an advisory has been circulated among departments emphasising the need to assess the technical capability of private vendors more rigorously and to incorporate cybersecurity safeguards from the earliest stages of digital project design.
The latest findings come at a time when educational agencies are increasingly relying on digital systems to conduct examinations, evaluate answer sheets and manage student records. As more services move online, cybersecurity is emerging as a critical component of examination governance, alongside transparency, accuracy and operational efficiency.
Ready to navigate global policies? Secure your overseas future. Get expert guidance now!
Comments
Be the first to share a thought and become theFirst Voiceof this News Article
end of article
Trending Stories
- UP Board Class 10th, 12th result 2026 expected soon says DigiLocker: Check expected date and steps to download scorecards
- Karnataka SSLC Class 10th result 2026 expected to be released in early May, DigiLocker notice says "soon:" Check complete details here
- NEHU Result 2026 declared: How to check your scorecard; complete details here
- IPMAT admit card 2026 released for IIM Indore and Rohtak: Check steps to download hall tickets here
- Assam HS Class 12th result 2026 likely to be released soon, says DigiLocker notice: Here are steps to download scorecards
- “Do not go with a lot of targets in your mind,” says Rohit Gupta, CAO at PhysicsWallah: Mindset shift NEET aspirants need before exam day
- JKBOPEE CET admit card 2026 released at jkbopee.gov.in: Direct link to download hall tickets here
Featured in education
- KCET Result 2026 Live Updates: KEA scorecards expected soon, check latest updates here
09:30 Who is Sarthak Sidhant? Class 12 student stirs storm with CBSE tender allegations- AI tools helped expose CBSE portal flaws; IIT experts flag serious security gaps in OSM vendor
- JEE eligibility criteria: IIT Roorkee rules out one-time relief in 75% rule amid CBSE evaluation row
- NIOS Class 12th result 2026 released at results.nios.ac.in: Direct link to download scorecards here
- IIM Indore to study Vaibhav Suryavanshi: Is he the first to inspire academic research? Not quite
Photostories
- This palace in Jaipur has four floors underwater and appears to float on a lake; how to reach here
- 7 modern ceiling styles that add value to residential spaces
- PM Narendra Modi promotes Kalaburgi Roti in Mann ki Baat; here's why
- 5 most venomous sea snakes travellers should know about
- Want melt-in-the-mouth mutton dishes? 5 lesser-known secrets to follow at home
- Sambhavna Seth breaks down in tears as she welcomes twins via surrogacy with husband Avinash Dwivedi; cuts her babies' umbilical cords, Says 'Family Complete Ho Gayi'
- 6 lakes in India with fascinating myths about their origins
- 3 types of people you should remove from your life, as per Gauranga Das
- MMA legend Conor McGregor’s Las Vegas mansion is a millions-worth property defined by world-class luxury, private elevator and Strip views
- The 5 numbers cardiologists want every adult to know before it's too late
Up Next
Follow Us On Social Media