1. Aadhaar security: Here’s how to secure your biometric data

Aadhaar security: Here’s how to secure your biometric data

The lock feature on the Aadhaar website allows you to secure your biometric details.

By: | Published: June 6, 2017 2:39 AM
Aadhaar security, Aadhaar security news, Aadhaar security feature, Aadhaar security features, Aadhaar card, Aadhaar biometric details, all about Aadhaar security Registration of Aadhaar entailed people giving their biometrics to UIDAI. (Illustration: Shyam)

While it is true that many have complained about Aadhaar being unsafe or open to hacking attempts, given that the database is accessible to private agencies, there are ways one can protect the biometric information without relying on the government for help.

Quite readily available on the Aadhaar website, there is a facility by which one can lock the biometric details to prevent unauthorised access. Once locked, not only will the service be unavailable to anybody, no organisation will be able to unlock it. And only when you unlock it would anyone be able to access any biometric details.

The ultimate key

Registration of Aadhaar entailed people giving their biometrics to UIDAI. While the government has found many uses for these—it is being used for PDS, eKYC, registrations and most recently payments—many complained about the data being unsafe as private agencies handled many services. But there is a fix for this.

You may also like to watch:

You can easily lock or unlock your details for use by registering on the UIDAI website. But first you have to register your mobile number with UIDAI, and link it with Aadhaar. While many had provided biometrics for Aadhaar, there still exist a few who did not register their mobile numbers with the authority. Once the mobile number is linked with Aadhaar—this can only be done from UIDAI enrollment centre—one needs to access the UIDAI website (uidai.gov.in) and login using Aadhaar number.

The agency will send a one-time password to your mobile, as is customary with most payments, which will allow access to your Aadhaar details. Upon accessing those details you can use the tab for locking and unlocking Aadhaar information.

A click on the checkbox (Enable Aadhaar Lock) will allow locking of Aadhaar information. Thereafter, not only will this unlock the service (this is a temporary solution and lasts for 20 minutes), there is a disable lock feature on Aadhaar also.

Locked for good

The locking feature doesn’t allow any of the service centres to use your biometric details, thus locking you out of the entire UIDAI network. You will be unable to use any of the services and even your biometric details will not be accepted at any of the service centres, unless you unlock it.

Once in the unlock mode, you can access it for 20 minutes after which the service would be locked again keeping everybody out of the system. Basically, the feature narrows the window of opportunity for hackers to just 20 minutes. So, if you have some concerns about people accessing your details, they would not be able to do so beyond the 20-minute window in this case.

Key solution

Although Aadhaar locking provides an option to secure your data, there are some drawbacks to the service pertaining to efficiency of the system. The OTP feature, at times, is not as fast as you would want it to be, for you to enable or disable the service using the uidai.gov.in website. Also, such a utility would make more sense if there was a mobile app connected to the system, with a shorter window of unlocking the details.

Earlier some banks were allowing this feature for use of debit cards, where the app would allow you to enable purchases for a short time. If UIDAI can achieve something similar it would make life much simpler, as one would receive the OTP and unlock the Aadhaar for 5-10 minutes before it is locked again.

But the biggest drawback stems from the government’s disinclination to promote this feature. Like many of its offerings, the government has not marketed this feature enough, allowing people to criticise Aadhaar on account of safety. A major step towards securing Aadhaar can come from a public information system geared towards explaining people the merits and process of using this feature.

  1. R
    Reader
    Oct 12, 2017 at 5:16 am
    A centralized and inter-linked biometric database like Aadhaar will lead to profiling and self-censorship, endangering freedom. Personal data gathered under the Aadhaar program is prone to misuse and surveillance. Aadhaar project has created a vulnerability to identi-ty fraud, even identi-ty theft. Easy harvesting of biometrics traits and publicly-available Aadhaar numbers increase the risk of impersonation, especially online and banking fraud. Centralized databases can be hacked. Biometrics can be cloned, copied and reused. Thus, BIOMETRICS CAN BE FAKED. High-resolution cameras can capture your fingerprints and iris information from a distance. Every eye hospital will have iris images of its patients. So another person can clone your fingerprints and iris images without your knowledge, and the same can be used for authentication. If the Aadhaar scheme is NOT STOPPED by the Supreme Court, the biometric features of Indians will soon be cloned, misused, and even traded.
    Reply
    1. R
      Reader
      Oct 12, 2017 at 5:16 am
      UK’s Biometric ID Database was dismantled. Why the United Kingdom's biometrics-linked National Identi-ty Card project to create a centralized register of sensitive information about residents similar to Aadhaar was scrapped in 2010?? The reasons were the massive threat posed to the privacy of people, the possibility of a surveillance state, the dangers of maintaining such a huge centralized repository of personal information, and the purposes it could be used for, and the dangers of such a centralized database being hacked. The other reasons were the unreliability of such a large-scale biometric verification processes, and the ethics of using biometric identification.
      Reply
      1. R
        Reader
        Oct 12, 2017 at 5:15 am
        The US Social Security Number (SSN) card has NO BIOMETRIC DETAILS, no photograph, no physical description and no birth date. All it does is confirm that a particular number has been issued to a particular name. Instead, a driving license or state ID card is used as an identification for adults. The US government DOES NOT collect the biometric details of its own citizens for the purpose of issuing Social Security Number. The US collects the fingerprints of only those citizens who are involved in any criminal activity (it has nothing to do with SSN), and the citizens of other countries who come to the US.
        Reply
        1. U
          Uma
          Jun 19, 2017 at 5:46 pm
          I went to have my mobile number updated. They took a photo of me and my iris and on the slip of paper put the wrong e mail id. I asked them to correct it, they AGAIN took a picture of me and my iris!..... I have reported on Twitter and FAcebook . They wanted all details and promisedto get back.... and guess what NOTHING has happened so far. I am REALLY worried about all sorts of misuse, WHAT SHOULD I DO?
          Reply
          1. H
            Harpreet
            Jun 30, 2017 at 10:57 pm
            Mam Once your aadhaar details have been updated online. You can also update manually or by yourself, through the online aadhaar . Please check the .
            Reply
          2. Ravindra Dastikop
            Jun 7, 2017 at 3:47 pm
            The Practice of Digital India s: www. /user/dastikop
            Reply
            1. Ravindra Dastikop
              Jun 7, 2017 at 3:46 pm
              The Practice of Digital India Aadhaar: Locking your biometrics s: www. /user/dastikop
              Reply
              1. Load More Comments

              Go to Top