Question : Breach of Aadhaar Data

Will the Minister of ELECTRONICS AND INFORMATION TECHNOLOGY be pleased to state:

(a) whether the UIDAI has rolled out a three-tier security process in the wake of reports of an alleged breach of the Aadhaar database;

(b) if so, the details thereof and the steps being taken in this regard; and

(c) the details of the Virtual ID (VID) and its authentication process developed as a countermeasure?

Answer given by the minister

(a) and (b): Aadhaar today is backed by a proper law passed by the Parliament which contains robust security measures and protects privacy. It remains a fact that the Aadhaar has been challenged in the judicial forum and that the final verdict is awaited. However, it is to be noted that Aadhaar has been issued to 121.65 crore residents as on 30.06.2018. Aadhaar has evolved as an instrument for promoting good governance and enabling the poor to rightfully secure their due benefits by availing all direct transfer of benefits to their Aadhaar linked bank accounts which number around 60.22 crore as on 30.06.2018. The UIDAI continues to update the security architecture to ensure that there is no breach of data.

(c): Virtual ID (VID) is a temporary, revocable 16-digit random number mapped with the Aadhaar number and the Aadhaar number holder can use VID in lieu of Aadhaar number for authentication purposes. The requesting entities will not store VID in their database. UIDAI vide circular No. 10 dated 29.06.2018 has directed all Requesting Entities to upgrade to VID system as per the timelines mentioned in the circular (https://uidai.gov.in/images/resource/Circular_10_Dated_29_June.pdf).

*****

Download PDF Files