Deprecated (16384): The ArrayAccess methods will be removed in 4.0.0.Use getParam(), getData() and getQuery() instead. - /home/brlfuser/public_html/src/Controller/ArtileDetailController.php, line: 150
 You can disable deprecation warnings by setting `Error.errorLevel` to `E_ALL & ~E_USER_DEPRECATED` in your config/app.php. [CORE/src/Core/functions.php, line 311]
Deprecated (16384): The ArrayAccess methods will be removed in 4.0.0.Use getParam(), getData() and getQuery() instead. - /home/brlfuser/public_html/src/Controller/ArtileDetailController.php, line: 151
 You can disable deprecation warnings by setting `Error.errorLevel` to `E_ALL & ~E_USER_DEPRECATED` in your config/app.php. [CORE/src/Core/functions.php, line 311]
Warning (512): Unable to emit headers. Headers sent in file=/home/brlfuser/public_html/vendor/cakephp/cakephp/src/Error/Debugger.php line=853 [CORE/src/Http/ResponseEmitter.php, line 48]
Warning (2): Cannot modify header information - headers already sent by (output started at /home/brlfuser/public_html/vendor/cakephp/cakephp/src/Error/Debugger.php:853) [CORE/src/Http/ResponseEmitter.php, line 148]
Warning (2): Cannot modify header information - headers already sent by (output started at /home/brlfuser/public_html/vendor/cakephp/cakephp/src/Error/Debugger.php:853) [CORE/src/Http/ResponseEmitter.php, line 181]
LATEST NEWS UPDATES | UIDAI's Defensive Stance on Aadhaar Security Breaches Isn't Helping Anybody but the Government -Srinivas Kodali

UIDAI's Defensive Stance on Aadhaar Security Breaches Isn't Helping Anybody but the Government -Srinivas Kodali

Share this article Share this article
published Published on Jan 6, 2018   modified Modified on Jan 6, 2018
-TheWire.in

The biometric identification agency and the government need to start listening to those who are pointing out critical flaws instead of issuing blanket denials and template answers.

It is no surprise that the latest data and security breach surrounding the Aadhaar biometric programme has been selectively denied by the Unique Identification Authority of India (UIDAI), the government of India and the Bharatiya Janata Party.

All three have slammed news reports, calling it mis-reporting even though the process of filing a first information report (FIR) is underway and the portal where the alleged breach took place (portal.uidai.gov.in) has been shut down since the news started making waves.

Increasingly worn out defences were also mounted and trotted out – the UIDAI stated that Aadhaar biometric data is completely safe and cannot be accessed by any rogue individual. It stoically, and misleadingly, maintained that the Central Identities Database Repository (CIDR) was safe even though nobody (including The Tribune) claimed that biometrics were accessed or the CIDR was compromised.

The UIDAI also curiously engaged in a dangerous campaign of misinformation by claiming that the demographic data associated with Aadhaar numbers (name, gender, age phone numbers, addresses) is not sensitive information. Its implication is that it is wholly acceptable for this data to be in the public domain even though the Aadhaar Act of 2016 specifically states otherwise.

However, even on its claims of biometric data and the enrolment process being secure, the UIDAI falls short. It has filed two FIRs over attempts that were made to breach the biometric authentication process in Uttar Pradesh. The UP Police Special Investigation Task Force has arrested a gang believed to have built their own Aadhaar registration clients, bypassing both biometric and iris protections designed for the enrolment procedure.

Leaving this aside though, it has become clear that this is how the UIDAI acts when presented with evidence that its wider ecosystem is filled with holes and is leaking profusely. Every time a security incident is reported, the agency puts out blanket denials even before investigating what has transpired. In the latest breach, the filing of an FIR clearly indicates something has gone wrong and thus needs to be further investigated.

Please click here to read more.

TheWire.in, 5 January, 2018, https://thewire.in/210954/uidai-aadhaar-security-breach/


Related Articles

 

Write Comments

Your email address will not be published. Required fields are marked *

*

Video Archives

Archives

share on Facebook
Twitter
RSS
Feedback
Read Later

Contact Form

Please enter security code
      Close