India is actively pursuing access to Anthropic’s advanced AI model, Mythos, as part of Project Glasswing to bolster defenses against emerging AI-driven cybersecurity threats. However, strict data residency laws and selective access policies currently hinder Indian firms’ full engagement with the initiative.
- India seeks to include domestic firms in Anthropic’s Project Glasswing
- Data localization rules complicate Mythos access for Indian payment providers
- Government coordinates with RBI and international partners on AI security
What happened
The Indian Ministry of Electronics and Information Technology is in active discussions with the US government and Anthropic to grant Indian companies access to Claude Mythos under Project Glasswing. Currently, no Indian firms are among the approximately 40 organizations participating in the program, which focuses on leveraging AI to autonomously identify software vulnerabilities across critical platforms.
This initiative has gained urgency following the release of Mythos, which accentuates the risks of AI exploited cyber threats. Government officials acknowledge the threat from other emerging AI models potentially entering the market without advance notice, prompting India to build defensive capacities proactively. High-level meetings involving key financial and cybersecurity institutions have underscored the significance and unprecedented nature of this cyber challenge.
Why it matters
Anthropic's Mythos capabilities highlight a strategic technology divide, with the US and its allies positioned to maintain a decisive lead in AI-powered cybersecurity. India’s efforts to gain access signal recognition of this technology's importance for both national security and its global tech industry, as Indian firms manage crucial software components worldwide.
However, the country faces significant compliance challenges due to its data localization regulations, particularly impacting entities like the National Payments Corporation of India. The requirement for all payment transaction data to be stored domestically conflicts with Mythos’s operational model of using US-based servers. This legal and operational impasse complicates broader participation and necessitates careful policy calibration to avoid exclusion.
What to watch next
The government’s ongoing negotiations and logistical arrangements with US authorities and Anthropic will be critical in determining if and when Indian companies can integrate with Project Glasswing. The outcome will influence India’s cybersecurity posture amid rising AI-driven cyber threats and shape future policy on access to advanced AI tools.
Additionally, how India resolves the compliance issues around data localization, alongside the development of a national framework for governing high-capability AI models, will be essential to monitor. The evolution of rival AI models globally and any potential unauthorized disclosures of such technologies will also impact Indian cybersecurity strategies moving forward.