Aadhaar Authentication &

Seeding

Application & Authentication Division

Unique Identification Authority

of India

3rd March 20161

AgendaAgenda

� Vision and background of Aadhaar

�About Authentication

� Tools and Techniques for authentication

�Architecture of Aadhaar�Architecture of Aadhaar

�About Seeding

� Contact Details

� Live demo

�Question & answer

Aadhaar VisionAadhaar Vision

To empower residents of India with a unique identity and a digital platform unique identity and a digital platform to authenticate anytime, anywhere

3

History and Status of AadhaarHistory and Status of Aadhaar

UIDAI started issuing Aadhaar (UID) from September 2010

Around 98 Crores plus of Aadhaar have been issued so far

4

far

Generating 12 Lakhs Aadhaar per day

Over 138.85 Crore of Authentication transactions are completed so far

What is Aadhaar ?What is Aadhaar ?

• It is a unique 12 digit random number issued to residents of India

• It uses demographics (Name, DOB, Gender, Address), biometric of resident

to achieve uniqueness(10 finger prints ,2 Iris and Photo)

• It is the largest biometric system of the world.

• It is world’s first identity platform where identity of a resident can be

verified online using biometrics

• 99% Authentication Acceptance rate with FAR set to .01% has been

5

• 99% Authentication Acceptance rate with FAR set to .01% has been

achieved in many POCs using online Finger Print Authentication (http://uidai.gov.in/images/authentication/role_of_biometric_technology_in_aadhaar_authentication_020412.p

df)

• 99.54% Authentication Acceptance rate with FAR set to .0001% has been

achieved in many POCs using online Iris Authentication(http://uidai.gov.in/images/authentication/iris_poc_report_14092012.pdf)

• Current Platform benchmarked for 100 million authentication per day.

Name

Address

Gender

Date of birth 1 person�1 number

4 demographics + biometrics = 1 unique Aadhaar number

Photo

Both

iris

10 Optional:Mobile

Email

10

finger-

prints

Standardized identity attributes

No duplicates(1:N check)

Minimal demographic data collected

UID = 1568 3647 6218UID = 1568 3647 6218

Basic demographic

data and biometrics

stored

Aadhaar AuthenticationAadhaar Authentication

� At the time of enrolment of resident through various enrolment centres,

the ten fingers, two IRIS ,photograph and demographic details are

captured and same is used for Authentication

� Supports answering the question “is a person s/he claims to be”

� Verifies resident information (demographics and/or biometrics) for a

given Aadhaar number

� Supports multi-factor using � Supports multi-factor using

� biometrics (fingerprint, Iris)

�One time pin (OTP) and

�combinations thereof

� Online identification verification service that is lightweight, ubiquitous,

and secure

� Only a “yes or no” is returned as part of the response

Any Place

Any Network

Any Provider

Any Device

� GPRS, Edge,2G, 3G,

Wi-Fi, LAN, WAN,

Aadhaar Authentication

8

Wi-Fi, LAN, WAN,

Broadband etc

� Personal computer,

mobile, PoS terminals, etc.

� Works with assisted and

self-service applications

SecuritySecuritySecurity and privacy of data within Aadhaar system has been foundational and is clearly reflected in UIDAI’s strategy, design and its processes throughout the system.

Raw biometrics is never stored anywhere without encryption. Data encrypted at source.

All the data transaction is on PKI infrastructure, all transactions are 2048 bit encrypted ,digitally signed and completely safe & secure

Data tamper proof

Secure connectivity from device to UIDAI data centre through secure channels

Data audited periodically

Two Data center with round the clock 24X7 security cover

Scalability for large volumesScalability for large volumes

Authentication data is about 500bytes -2.5Kb

Devices cost comparable to hand held devices

Under 1 sec in CIDR and 2- 3secs round trip

Can handle 100+ million authentication a day

Low cost, universal, easily deployable

The fingerprint device costs as low as Rs 1500 onwardsThe fingerprint device costs as low as Rs 1500 onwards

The IRIS device costs start at Rs. 6000 onwards but in near future its prices is expected to go down as low as Rs.1000 due to low cost of raw material

The android based tablet cost starts at Rs.8000 onwards

The POS device cost in the range of Rs.12-15000

Some of the Biometric DevicesSome of the Biometric Devices

YES ***

OR

AUA ServiceAUA Service

CIDR

and/or*

1:1 Match

OR

NO

**OTP – One Time Pin

*and/or – Single or multi-factor authentication

***Yes/No – Would enable service provider to take business decision

Name, Gender

DOB, Address, …

**

and/or

KUA Services KUA Services

OTP

Example for Example for eKYCeKYC

1. Takes Copy of document

2. Verifies with original

Scanned image of Document

Photocopy -Document Storage

Existing Process

1111 2222 3333

KYC – Authentication Device

e-KYC flows directly to Servers with Audit Trail

UIDAIe-KYC Service

e-KYC

E-KYC Process

Authentication Ecosystem (Overview)Authentication Ecosystem (Overview)

Auth Server

Leased lines

ASA

ASA

AUASub-AUA

Aadhaar

Holder

Server

ASA

ASA

ASA

AUA

UIDAI Data Centre

CIDR

Authentication

Devices

ASA-22AUA-212

Two Data Center1. GNDC/MDC 2. HDC

• “Live” Entities :

• Transaction Data :

AUA KUA ASA KSA

212 134 22 20

Transaction Type Number of Transactions (in Crores)

Authentication Statistics

(in Crores)

Authentication transactions

since inception

138.85

Unique IDs for Authentication

transactions since inception

36.66

e-KYC transactions since

inception

6.72

Unique IDs for e-KYC since

inception

3.41

Major Aadhaar Enabled ApplicationsMajor Aadhaar Enabled Applications

DOP : Dis of Pension

DOP : Dis of MGNREGA

wages

Ae PDS -5 states

AeBAS : Center + 2

states

EPIC CBDT : Jeevan

17

EPIC Database

CBDT : Digital filing

Jeevan Pramaan

Passport Seva Kendra

Banks, PMJDY and

BCs

DBT, Pension,

Scholarships

Telecom: Online

verification

OPD in AIIMS

What is Seeding ?What is Seeding ?

Aadhaar Seeding is a process bywhich UIDs of consenting residentswhich UIDs of consenting residentsare accurately included in the servicedelivery database of service providers

18

Why Seeding?Why Seeding?

Some of the benefits are....

To facilitate Aadhaar Enabled Service Delivery

To enable residents to easily establish their identity and claimtheir benefits/obtain services.

19

De-duplication of Database and Leakage Prevention

Increase Reach and Efficiency in delivering goods and services

No repeated KYC checks on beneficiaries

Collect and Verify Collect and Verify -- SeedingSeeding

• Aadhaar details may be collected using

• Aadhaar can be

Verification• Once verified,

Aadhaar may be be collected using different channels

Collection ,centralization and

digitization

• Aadhaar can be verified using applications / services provided by UIDAI

Aadhaar may be seeded in the beneficiary database

Linkage

SMS

Dropbox

Portal

IVRS

Camp

Collection of

Aadhaar

Aadhaar

Letter/PrintedeAadhaar

Door to door

Verification ToolsVerification Tools

Services Demographic Biometric OTP

Single Bulk Fingerprint Iris

AUA 12 3 4 5

KUA No No 6 7 8KUA No No 6 7 8

DSDV 9 NA

Apart from above tool Aadhaar Verification tool available on open

internet to verify existence & integrity of Aadhaar number and

provide Age Band, Gender and State the resident belongs to.

Objective :

� Any transaction seller and buyer should be biometrically authenticated

� Digitization of land records and seeding of Aadhaar in land owners data.

LaunchPilot project Launched in Jind-Haryana

Advantages�Digitization of all the records

Department of Land Resources

�Digitization of all the records

�Stops impersonations, leakages

�Stops benami transactions

�Seller, buyer and 2 witnesser will receive the sms based on Aadhaar

authentication

�Remove duplicity of ownership of land

Way forwardOther states can use Aadhaar based authentication by leveraging the existing

AUA if they already have one or alternatively they can sign an agreement with

UIDAI to avail Aadhaar authentication services.

Authentication References

• API Documentation:

API Reference

Authentication http://uidai.gov.in/images/FrontPageUpdates/aadhaar_authentication_api_1_6.pdf

E-KYC http://www.uidai.gov.in/images/aadhaar_kyc_api_1_0_final.pdf

OTP http://www.uidai.gov.in/images/FrontPageUpdates/aa

• Developer References : http://developer.uidai.gov.in

• On boarding References: https://authportal.uidai.gov.in/web/uidai/home-

articles?urlTitle=on-boarding-documents&pageType=resources

• Forum for AUA/ASA: https://groups.google.com/forum/#!forum/aadhaarauth

OTP http://www.uidai.gov.in/images/FrontPageUpdates/aadhaar_otp_request_api_1_5.pdf

Best Finger Detection (BFD)

http://www.uidai.gov.in/images/FrontPageUpdates/aadhaar_bfd_api_1_6.pdf

Contact Details1. Onboarding Team –

Direct -- 01123462624 Email- onboarding@uidai.net.in

2. Authentication Team—� ADG Yashwant Kumar

Mobile—+91-9871121835 Direct—011-23462606

Email --yashwant.kumar@uidai.net.in

� Rakesh Prasad

Mobile--+91-9891872302 Direct—011-23462614

Email –rakesh.prasad@uidai.net.inEmail –rakesh.prasad@uidai.net.in

� Auth Helpdesk—011--23462644

3. Enrolment Division� ADG R.K Gautam

Mobile-- +91-9818001465 Direct--011-23466850

Email --gautam.rk@uidai.net.in

� Enrollment Helpdesk--- 1947

� Email --help@uidai.gov.in

Thank You