|
Live Law
The Centre on Wednesday extended the March 31 deadline for mandatory Aadhaar enrolment for entitlement to 'Subsidies, Benefits and Services' under Section 7 of the Aadhaar (Targeted Deliveries of Financial and Other Subsidies, Benefits and Services) Act of 2016, to June 30. The Ministry of ...
|
|
||||||
|
The News Minute
Indian e-payment and e-commerce platform PayTM denied allegations that it is 'insisting' its customers to provide their Aadhaar card details as proof for Know Your Customer (KYC) authentication. However, several customers have come forward narrating how representatives of the e-commerce brand in ...
|
|
||||||
|
Business Standard
For the second time in the first three months of 2018, the vulnerabilities of the Aadhaar programme–the world's largest biometric database–were exposed when American business technology website ZDnet reported on March 23, 2018, that the personal data of millions of enrolled Indians could be ...
Aadhaar Card Update: Possible To Change Mobile Number, Email ID Via DigiLocker? Find Out Here - NDTV
Aadhaar Card: How To Update Address, Check Authentication History, Retrieve UID, Get Virtual ID ... - NDTV
|
|
||||||
|
Bar & Bench
The CBDT has announced that the deadline for linking Aadhaar Card with PAN has been extended to 30.06.2018. This is in ostensible compliance with the directions of the Supreme Court. Unfortunately, this extension is utterly meaningless as returns have to be filed electronically and the system does ...
|
|
||||||
|
Economic Times
Aadhaar-PAN linking deadline extended to June 30: Here's what it means for taxpayers. ET Online | Mar 29, 2018, 19:42 ... The Central Board of Direct Taxes (CBDT) has extended the deadline for PAN-Aadhaar linking to June 30, 2018. This is the fourth extension given by the government for individuals ...
|
|
||||||
|
Firstpost
A report by The Quint, tells us how the document submitted by the Aadhaar CEO indicate how his own attempts at authentication have failed 19 percent of the time. The records submitted include supporting documents, including a record of all the attempts to authenticate his own Aadhaar identity ...
|
|
||||||
|
Times of India
MUMBAI: Police on Thursday identified a woman who allegedly used a bogus Aadhaar card of actor Urvashi Rautela (24) to book a room online at a five-star hotel in Bandra west on March 27. ... A booking for the room was made online after submitting Urvashi's fake Aadhaar card. "We are making ...
Mumbai model used fake Aadhaar of Urvashi Rautela to stay at 5-star room for four hours - Hindustan Times
SHOCKING! Hate Story 4 actress Urvashi Rautela faces Aadhaar fraud and here are the details - Bollywood Hungama
|
|
||||||
|
IndiaSpend
Mumbai: For the second time in the first three months of 2018, the vulnerabilities of the Aadhaar programme–the world's largest biometric database–were exposed when American business technology website ZDnet reported on March 23, 2018, that the personal data of millions of enrolled Indians could ...
|
|
||||||
|
Deccan Herald
Roopa Raganath, an IT professional who went to file her returns, has no Aadhaar card. She had to return without her work getting done. Neither the online system nor the counter would accept her returns without Aadhaar details. "I am told to apply for an Aadhaar now. But I don't believe in that document ...
|
|
||||||
|
India Legal
The Centre on Wednesday (March 28) extended the deadline for linking Aadhaar to avail of various services, subsidies and benefits under section 7 of the Aadhaar (Targeted Delivery of Financial and other Subsidies, Benefits and Services) Act, 2016, by three months to June 30. The decision came in ...
|
|
||||||
|
E-Pao.net
Imphal, March 29 2018: The All Jiribam Tribal Union has expressed dissatisfaction against the district authority Jiribam for imposing certain rules for Aadhaar enrolment, which is against the criteria given by the Government of India, conveyed a press release issued by president of All Jiribam Tribal Union ...
|
|
||||||
|
The New Indian Express
HYDERABAD: Digital payments major Paytm on Thursday took down its Rs 200 cash back offer for customers providing their Aadhaar number for KYC authentication. The move came after Express reported on Wednesday that the offer was available only to customers opting to give their 12-digit unique ...
|
|
||||||
|
Hindustan Times
Many transgender persons have an Aadhaar card with 'transgender' as the gender reflected on the card. However, PAN only accepts 'male' and 'female' during the application procedure. As a result, many in the transgender community have a PAN card with the gender assigned to them at birth, and a ...
|
|
||||||
|
Dailyaddaa (press release)
New Delhi : Under the Digital India initiative, An Aadhaar subscriber can now store his or her Aadhaar card with DigiLocker and to request any changes - such as updation of email ID or mobile number - he or she must visit the nearest Aadhaar enrolment center. According to official DigiLocker website ...
|
Why this Blog ? News articles in the Wide World of Web, quite often disappear with time, when they are relocated as archives with a different url. Archives in this blog serve as a library for those who are interested in doing Research on Aadhaar Related Topics. Articles are published with details of original publication date and the url.
Aadhaar
The UIDAI has taken two successive governments in India and the entire world for a ride. It identifies nothing. It is not unique. The entire UID data has never been verified and audited. The UID cannot be used for governance, financial databases or anything. It’s use is the biggest threat to national security since independence. – Anupam Saraph 2018
When I opposed Aadhaar in 2010 , I was called a BJP stooge. In 2016 I am still opposing Aadhaar for the same reasons and I am told I am a Congress die hard. No one wants to see why I oppose Aadhaar as it is too difficult. Plus Aadhaar is FREE so why not get one ? Ram Krishnaswamy
First they ignore you, then they laugh at you, then they fight you, then you win.-Mahatma Gandhi
In matters of conscience, the law of the majority has no place.Mahatma Gandhi
“The invasion of privacy is of no consequence because privacy is not a fundamental right and has no meaning under Article 21. The right to privacy is not a guaranteed under the constitution, because privacy is not a fundamental right.” Article 21 of the Indian constitution refers to the right to life and liberty -Attorney General Mukul Rohatgi
“There is merit in the complaints. You are unwittingly allowing snooping, harassment and commercial exploitation. The information about an individual obtained by the UIDAI while issuing an Aadhaar card shall not be used for any other purpose, save as above, except as may be directed by a court for the purpose of criminal investigation.”-A three judge bench headed by Justice J Chelameswar said in an interim order.
Legal scholar Usha Ramanathan describes UID as an inverse of sunshine laws like the Right to Information. While the RTI makes the state transparent to the citizen, the UID does the inverse: it makes the citizen transparent to the state, she says.
Good idea gone bad
I have written earlier that UID/Aadhaar was a poorly designed, unreliable and expensive solution to the really good idea of providing national identification for over a billion Indians. My petition contends that UID in its current form violates the right to privacy of a citizen, guaranteed under Article 21 of the Constitution. This is because sensitive biometric and demographic information of citizens are with enrolment agencies, registrars and sub-registrars who have no legal liability for any misuse of this data. This petition has opened up the larger discussion on privacy rights for Indians. The current Article 21 interpretation by the Supreme Court was done decades ago, before the advent of internet and today’s technology and all the new privacy challenges that have arisen as a consequence.
Rajeev Chandrasekhar, MP Rajya Sabha
“What is Aadhaar? There is enormous confusion. That Aadhaar will identify people who are entitled for subsidy. No. Aadhaar doesn’t determine who is eligible and who isn’t,” Jairam Ramesh
But Aadhaar has been mythologised during the previous government by its creators into some technology super force that will transform governance in a miraculous manner. I even read an article recently that compared Aadhaar to some revolution and quoted a 1930s historian, Will Durant.Rajeev Chandrasekhar, Rajya Sabha MP
“I know you will say that it is not mandatory. But, it is compulsorily mandatorily voluntary,” Jairam Ramesh, Rajya Saba April 2017.
August 24, 2017: The nine-judge Constitution Bench rules that right to privacy is “intrinsic to life and liberty”and is inherently protected under the various fundamental freedoms enshrined under Part III of the Indian Constitution
"Never doubt that a small group of thoughtful, committed citizens can change the World; indeed it's the only thing that ever has"
“Arguing that you don’t care about the right to privacy because you have nothing to hide is no different than saying you don’t care about free speech because you have nothing to say.” -Edward Snowden
In the Supreme Court, Meenakshi Arora, one of the senior counsel in the case, compared it to living under a general, perpetual, nation-wide criminal warrant.
Had never thought of it that way, but living in the Aadhaar universe is like living in a prison. All of us are treated like criminals with barely any rights or recourse and gatekeepers have absolute power on you and your life.
Announcing the launch of the # BreakAadhaarChainscampaign, culminating with events in multiple cities on 12th Jan. This is the last opportunity to make your voice heard before the Supreme Court hearings start on 17th Jan 2018. In collaboration with @no2uidand@rozi_roti.
UIDAI's security seems to be founded on four time tested pillars of security idiocy
1) Denial
2) Issue fiats and point finger
3) Shoot messenger
4) Bury head in sand.
God Save India
Saturday, March 31, 2018
13158 - Aadhaar Articles Dated 30th March 2018
13157 - Insights from CEO of UIDAI's Aadhaar authentication log - Media nama
The CEO of UIDAI himself has a 19% authentication failure rate
The authentication failure rate for personal use of Aadhaar seems to be much higher
The CEO of UIDAI has locked his own biometrics – to prevent misuse?
OTP authentication does not appear to be easy either
The authentication rate of 95% claimed for banks appears to be exaggerated
How are there only 26 authentication attempts when UIDAI HQ has Aadhaar based attendance?
- Does Dr. Pandey work from home?
- Was Nandan Nilekani lying in 2013?
- Did UIDAI later abandon the use of Aadhaar for recording employee attendance? or
- Or make exceptions because of authentication failures?
- Or exceptions for specific officials?
- Or is it that Dr. Pandey bypasses AEBAS and disables biometrics? Under what government rule?
UIDAI’s claim of not storing personal data is refuted by Dr Pandey’s authentication history log
- Dr Pandey has at least one new or newly linked Vodafone number (Successful authentication with Vodafone). He also does not have any other phone numbers linked with Aadhaar after November 1, 2017.
- Dr Pandey probably has 3 accounts with ICICI that he linked with his Aadhaar just before midnight on Republic Day. Any other accounts he may have were not linked within the last 5 months.
- Dr Pandey has at least one IDFC account not linked with Aadhaar. They probably insisted on biometric authentication, since there do not seem to be any attempts made for OTP authentication.
- Based on Dr Pandey’s use of Internal AUAs and the non-standard AUA “UIDAI Services”, Anand was able to make inferences and educated guesses about his patterns around management or demonstrations of the UIDAI services, namely:
- “UIDAI services” is probably custom access he has from his office.
- He probably gave someone or tested an authentication Demo at around 5:30 pm on the 5th of February.
- Two authentications 5th Jan 2018 at 00:39:30 (think of it as a very late night on the 4th) and 6th Jan at 20:48:05 have the same UKC – sounds like extensive troubleshooting after Rachna Khaira’s expose in the Tribune about access to the UIDAI database being sold for Rs. 500 on WhatsApp.
- He probably checked the authentication services on Republic Day at 7 pm – from office, likely.
- He probably checked/tested something on 31st Jan just after 8 pm or, to extrapolate, like Anand “He definitely came home late and did not reach before 9 PM.”
- A series of authentications in November and December on UIDAIEKYCPOC seem to indicate testing or demonstration of new KYC features – Limited KYC?
The vast majority of Dr Pandey’s Aadhaar authentications appear to be for work
13155 - UIDAI, and its CEO, are Yet to Say Anything That Can Help us Trust Them - The Wire
UIDAI, and its CEO, are Yet to Say Anything That Can Help us Trust Them
With only one biometric authentication, and five failed attempts, Ajay Bhushan Pandey's authentication history for five months doesn't exactly spark more faith in the UID system.
An unsecure application programming interface (API) operated by a state-run utility service provider is leaking Aadhaar details, according to a report published on Saturday. Illustration credit: Karnika Kohli
Dear Mr. Ajay Bhushan Pandey,
Over the last five years, I have received multiple requests – some polite, some forceful, but mostly threatening – to hand over my data to the Unique Identification Authority of India (UIDAI), the organisation you head. Each time, I have most respectfully declined.
Trusting any third-party with items of importance is a task best handled with care. It also involves ascertaining that the organisation that you are handing over your data to is absolutely capable of taking good care of it.
It seems to me, from your public statements and Aadhaar authentication history – portions of which you made public in the ongoing Supreme Court hearings – that it is likely you might not be able to do so. Let me explain.
First up, finding and eliminating bugs in the Aadhaar system – which can lead to critical data leaks – is not one of your priorities.
Anand V@iam_anandv
12 Aug
Replying to @iam_anandv and 2 others
Hopefully as the series goes on, KUAs will be forced to follow standard security practices. Always happy to work with you on solutions.
CEO UIDAI
✔@ceo_uidai
UIDAI is working on a policy to enable security experts to report issues in a legal and safe manner.
1:42 AM - Aug 13, 2017
12
16 people are talking about this
Twitter Ads info and privacy
India has pushed and cajoled over a billion people into signing up, and there is no official public policy on how concerned security researchers can report potential vulnerabilities. This is akin to saying that ‘all is well, there are no problems because nobody has told us we have an issue’.
And yet, you say that hacking threats (from domestic and foreign entities) give you sleepless nights. Perhaps a bug-reporting policy would give you an extra couple of hours each night? “There are attempts almost every day to hack [the] Aadhaar system, but none has succeeded,” you said recently.
No one has succeeded? The real question is whether you would tell us if an attempt had been made, given your controversial and often misleading history of denials.
Indeed, you deny too much. In the past month, you said that the UIDAI has “trashed” the ZDNet report and “refuted” the Aadhaar data leak by a Delhi researcher.
CEO UIDAI
✔@ceo_uidai
UIDAI trashes ZDNet report, refutes Aadhaar data leak claim by Delhi researcher
3:03 AM - Mar 25, 2018
UIDAI trashes ZDNet report, refutes Aadhaar data leak claim by Delhi researcher
“There is no truth in this story as there has been absolutely no breach of UIDAIs Aadhaar database. Aadhaar remains safe and secure,” UIDAI said.economictimes.indiatimes.com
21
52 people are talking about this
Twitter Ads info and privacy
However, when you don’t say anything, it’s equally revealing. And there have been no public tweets denying The Tribune’s expose. I checked and checked, yet could not find any.
Moving on, you believe that the advent of Aadhaar and Aadhaar-linking cannot possibly result in any state or potentially hostile private entity constructing a 360-degree profile.
CEO UIDAI
✔@ceo_uidai
27 Apr
Replying to @dravirmani and 3 others
domain databases with Aadhaar name nos will remain federated/1
CEO UIDAI
✔@ceo_uidai
no database thus will have 360 degree view of any person/2
1:30 PM - Apr 27, 2017
See CEO UIDAI's other Tweets
Twitter Ads info and privacy
In the ongoing Supreme Court case, to prove this point, you made public your Aadhaar authentication history, but it actually revealed the following:
Between November 2017 to March 2018, you authenticated your Aadhaar identification a total of 26 times, of which five attempts failed. While it isn’t a good enough sample to derive any concrete conclusions, it’s more proof of how probabilistic Aadhaar is as an identification technology.
There’s a good chance that you currently hold three accounts in ICICI bank (bank accounts or credit cards), which are Aadhaar linked. It is possible to conclude that these are three distinct accounts, because the “UKC” fields are different, thus implying that these are different transactions and hence not the same account number (Linking one account number is usually a single transaction).
A screenshot of Pandey’s authentication attempts.
You also have an IDFC account, which is curiously not Aadhaar-linked, since it failed once and there were no further attempts to link it again in the history.
While there is an Aadhaar-linked Vodafone postpaid SIM card in your name, you probably don’t have your insurance accounts linked with Aadhaar. There are probably no insurance policies linked with Aadhaar, since there were no attempts from AUAs which are insurance companies.
Unlike your predecessor, Nandan Nilekani, you don’t appear to use the Aadhaar-enabled biometric attendance system as you enter your office and start a day’s work. If you did, there would be more authentication attempts recorded.
Also unlike the famous Matunga hotel in Mumbai, whose owner eats there – and hence first-hand knows the potential problems with the food cooked there – you don’t generally use biometric authentication (only once) and hence may find it difficult to empathise with the troubles facing some of India’s poorest and most vulnerable.
You are indeed a good bureaucrat who loves demos and follows up on progress methodically. And you certainly do spend time at work when there is a crisis.
I hope that I have demonstrated to you with the examples and analysis so far, why I find your proposal to hand over my data very unconvincing. Since you hold a doctorate in computer science, might I remind you of an old joke about what metadata can reveal about a person:
“I know you called your doctor, then your insurance company, then your doctor again, then two cancer treatment centers, then your ex-girlfriend, then your wife. But don’t worry, I have no idea what you talked about.”
Actually, jokes are redundant when your out-of-touch responses themselves generate laughs, as when you claimed that there were no privacy concerns with the Aadhaar ecosystem because the main database is behind “13 feet-high, five-feet thick walls”.
This is not looking good at all. If you can’t laugh at yourself, it may be difficult to handle the stress of all those hacking threats and take prompt action.
I sincerely hope that you consider my rejection to hand over my data in the right spirit. As a citizen of the country, whose tax money helps fund your organisation, we are all in this together – even if we don’t see eye to eye on about my private data and your capability to keep it safe.
13154 - The mark of the devil: Why a group of Christians in Mizoram are objecting to Aadhaar - Scroll.In
The mark of the devil: Why a group of Christians in Mizoram are objecting to Aadhaar
India’s unique identity programme is being linked by some people to a fearful Biblical prophesy.
Hexakosioihexekontahexaphobia
Devout government employees
No church support
13153 - After Rajya Sabha Was Told Tribune Reporter Is Named In Aadhaar FIR, She Says She Is Too Confused About Whom To Trust In Govt - Outlook India
13152 - SC concerned about misuse of Aadhaar data by private firms - TNN
13151 - Privacy Concerns be Damned: How the NaMo App is Being Used to Foster Modi Cult - The Wire
“Through my app I can reach out to 80 million people. Now in every party meeting we ensure that we open a stall and our people download the “NaMo” Modi app, so millions download it. So why should I have Twitter, I may as well have the Modi app and then post on social media,” Ram Madhav, BJP general secretary and the originator of the Modi app said in a taped interview to me for my investigative book I Am a Troll: Inside the BJP’s Secret Digital Army.
Unfortunately for Prime Minister Narendra Modi, who has not exactly been secretive about his disdain for two-way communication via press conferences, the gaping privacy holes in the carelessly designed NaMo app has ensured that data has been provided to third parties without the consent of those who had signed up.
Instead of being upfront about the transfer of data, first exposed by a French security researcher who claimed that the mobile application was sending personal information of users to a third party website – in.wzrkt.com – the handlers of the App surreptitiously changed the privacy policy of the website to accommodate for this lapse.
This raises larger questions about the principles and good faith policies practised by the PMO and is specially striking in the background of Modi’s office asking for personal data of 13 lakh National Cadet Corps (NCC) members so that he could individually interact with them. The NCC director general told the state directorates last month that the “collection of data will facilitate the interaction.. by downloading the Narendra Modi app in the cell phone of the cadets”.
So even impressionable children (NCC cadets are aged 13 years and above) are expected to sign up for the cult of Modi being fostered assiduously by the BJP.
In the same interview, I had asked Madhav about why the BJP and the Rashtriya Swayamsevak Sangh, which frowned on personality cults and took pride in being cadre-based organisations, were fostering a Modi cult. “No, no. We are fostering the cult of Government of India work. Modi happens to be the PM. Even the RSS is developing its app through which it will put its lectures etc online”.
Meanwhile, Congress president Rahul Gandhi launched a fierce attack on Modi, calling him the “big boss who likes to spy on Indians”. The BJP hit back, calling Gandhi a “liar” and alleging that the Congress was sharing its data with organisations like Cambridge Analytica (CA).
The BJP’s usual over-reaction was evident when it got law minister Ravi Shankar Prasad to take on Gandhi, followed by information and broadcasting minister Smriti Irani taking to Twitter to troll the Congress president: “Rahul Gandhiji even ‘chota Bheem knows that commonly asked permission on Apps don’t (sic) tantamount to snooping”. Gandhi, as is his wont, ignored her while BJP’s social media army sprung into action to make her tweet viral.
However, even the Modi government needs to understand that its huge emphasis on social media and Apps as well as Modi’s recent diktat that party tickets for all Lok Sabha MPs would depend upon their getting three lakh Facebook likes, especially in the backdrop of the data mining scandal involving CA, shows that he and his government do not care about citizens’ privacy.
Worse, despite the scandal involving CA in Donald Trump’s election campaign in the US, the Indian government has only ticked off Facebook. Modi’s emphasis on his MPs getting ‘genuine’ Facebook likes means the BJP is determined to double down on its gargantuan social media reach for the big poll battle of 2019, irrespective of charges against CA for manipulating voter preferences.
The use of data for unknown purposes by the NaMo App and also by others – the Congress too has admitted to sharing the data it collects – raises important questions related to governance. Political parties are “regulated” by the Election Commission of India but does the ECI have the technical competence to monitor the use of data by these and other Apps? Or should the telecom regulator, TRAI, be tasked with ensuring that all parties adhere to rules of the road when it comes to data security and privacy of voters/citizens?
Former chief election commissioner S Y Qureshi told me that he was “extremely concerned about the political manipulation of social media and the fact that the EC had no rules to keep an effective check on it. For example, the code of conduct applicable to mass media like newspapers and television channels does not apply to advertising on social media.
Modi’s elastic approach to the truth and the utter lack of transparency in governance have ensured that the government led by him indulges in one-way communication for which the NaMo App and social media are ideal vehicles. Modi has not addressed a single press conference in four-and-a-half years and his office repeatedly stonewalls Right to Information queries. So while a legitimate pillar of democracy – the non-embedded media– is threatened, the cheerleaders and embedded “panna pramukhs” in the media gush over their “saheb“.
So even in a democracy, if you want to reach out to the Prime Minister, you have to try using the NaMo App – privacy concerns be damned. The government’s disregard for citizens’ data privacy was also evident in the strange justification for the NaMo App and Aadhaar by tourism minister K.J. Alphons, who said “we will even strip for a white man and a US visa but complain about giving information to the our government”.
Clearly, neither Alphons nor the government he represents understands voluntary versus mandatory. Applying for a US visa is voluntary, Aadhaar is not. And nor is the Modi app when you are an NCC cadet and you are commanded to enrol.