Why govt is adding an extra security layer to your Aadhaar
IT Security
Continue reading

Unique Identification Authority of India (UADAI) is planning to introduce an extra layer of security to every Aadhaar cardholder. The government wants to address the privacy and protection concerns voiced by various groups. 


A top team from UIDAI is exploring possibilities to add dummy numbers as an extra layer of security. The framework will need individuals to share dummy or pseudo numbers to government agencies. UIDAI will hold the rights to the original Aadhaar number. The concept is being discussed but it will take few months to be finalized.


The primary job of Aadhaar authentication is to ensure the identity of the individual for using the service. The dynamic authentication system will help the citizens verify their identity with a new dummy number. The system could be similar to the bank transaction's authentication where an OTP is generated to verify the transaction. 


Dummy numbers and frequency at which it is generated may depend on the design architecture of the system. The dynamic system to authenticate whether the person is using genuine Aadhaar number or not will be introduced, which could help in ensuring the identity of the person. The absence of a single number will help in tracing if the person is misusing Aadhaar to track someone's personal data.


The statutory authority for Aadhaar, UIDAI takes care of issuance of Aadhaar numbers. The authority wants to ensure the security of identity information and authentication. In recent data breach events that were reported, many of the reported incidents could have been avoided if the two-step authentication was in place. 


Government directive, banks, utilities and cared card issuers have asked their customers to link Aadhaar with a respective account by December 31, 2017. The public notice warns these users to restrict such coercion to link Aadhaar with multiple service providers. The citizens are contemplating on providing the details due to recently reported data leaks.


- Rajat Kabade