The Sri Lankan government is in discussions with local and international stakeholders to conceptualize a sovereign cloud, ensuring secure data management and compliance with global security standards, top officials said.
As Sri Lanka moves forward with its national digital ID initiative, concerns about the sovereignty and security of sensitive data remain a key focus.
“We need a sovereign cloud that meets all local and international security standards. Discussions are underway with potential partners to establish a mechanism allowing qualified players to participate in the setup process,” said Sanjaya Karunasena, Director of the Information and Communication Technology Agency of Sri Lanka (ICTA), in an interview with Biometric Update on Wednesday.
He emphasized the government’s responsibility to rigorously test security measures, safeguard citizen data, and provide service warranties to protect personal information. A biometric-backed digital ID system, he explained, would create a highly reliable and robust identity framework for Sri Lankans. Before public deployment, the system will undergo multiple security tests and access controls. Plans for a national data exchange, integrated with Sri Lanka’s sovereign cloud, were previously detailed in February.
Dr. Hans Wijesuriya, Chief Adviser to the President on Digital Economy and Secretary to the Ministry of Digital Economy, highlighted the importance of fundamental security measures. He stressed that security protocols should be assessed based on risk levels and the nature of the data involved.
“Different types of data require different risk mitigation strategies. We must integrate multiple layers of security while maintaining citizen-centric services and national security. Additionally, we aim to expand digital business opportunities across borders, enhancing regional trade and transactions through business-to-business (B2B) interfaces,” he stated at the recent Innovation Island Summit in Colombo.
