Every citizen first goes through the step of document verification. Following this, demographic data on the citizen, classified under Know Your Resident (KYR) and KYR+ (which are questions added on by the registrar) is entered into the Aadhaar client. A simple software client developed by the UIDAI, the Aadhaar client stores demographic data before moving on to the more complicated process of recording and storing biometric data.
Biometrics include capturing three sets of fingerprints, four fingers on both hands and two thumbs, and an image of the iris. In the case of fingerprints, a maximum of four tries are allowed; with agricultural workers or labourers or the elderly, when the lines are not clear enough, this is a problem.
The entire enrolment process is conducted offline. Once the enrolment is complete, the package is first encrypted using a 256-bit session encryption key. Then, a 1,024-bit UIDAI public key is used to encrypt, the private key for which is stored within the application at the Aadhaar data centre, used by the machine only during processing.
After adding an additional layer of tamper-proofing, the packet is exported to the Aadhaar data centre to be processed using external hard disks or securely uploaded electronically.
SECURELY STORED
At the UIDAI Tech Centre, enrolment packets from across the country arrive to be processed daily. After the number is generated, after de-duplication, the data is stored by the CIDR at its secure back-end. This data centre is the permanent abode for Aadhaar data, and houses servers and equipment that are remotely managed from the tech centre.
Comments
Post a Comment