2Aadhaar Authentication Aadhaar authentication - process wherein Aadhaar number, along with other attributes (demographic/biometrics/OTP) is submitted to UIDAI's Central Identities Data Repository (CIDR) for verificationCIDR responds with a “Yes/No”. No personal identity information is returned as part of the responseAuthentication works on a Authentication Service Agency (ASA) –Authentication User Agency (AUA) Framework. ASA provides a secure channel for sending the authentication requests to the CIDR. AUA is User Department which intends to use Aadhaar Authentication to verify its beneficiaries and deploys POS devicesBenefitsOnline real-time authentication from a secure systemBiometrics not stored in the card or local machine/server – therefore, more reliableRequired only a GPRS connectivity – size of authentication packet is < 1 KBScalable ASA-AUA ModelEconomical – when compared to life cycle costs of issuing cardsAadhaar Authentication Implementation ModelAadhaar Authentication FrameworkSecureUpdateAadhaar GenerationEnrolment
3Dos & Don’t of Aadhaar Authentication What Aadhaar Authentication Will DoWhat Aadhaar Authentication Will Not DoAuthenticate against resident’s data in UIDAI’s CIDRAuthenticate against data stored on a smart cardReturn response to requesting agencies as Yes/NoReturn personal identity information of residentsInitiate request over mobile network, Landline network and broadband networkRemain restricted to broadband networkRequire Aadhaar for every authentication request reducing transaction to1:1matchSearch for Aadhaar based on details provided requiring 1:Nmatch
4Authentication Service Delivery Model Aadhaar HolderAuthentication DevicesAUAASAUIDAI’sData CentreResponse About 1 KBAbout 100 bytes(Yes/no, auth code, err code)5671234700 bytesEncrypted PID block3-4 KB Auth packetIncluding digital signature3-4 KB with ASA license key addedTill Date, over 70 lakh Aadhaar Transactions are performed.During the authentication, match is 1:1 i.e. biometrics captured during authentication are compared with biometrics of that particular AADHAAR as existing in CIDR.Best Finger Detection helps in identifying the fingers which result in great chances of match during authentication process. BFD also helps to identify beneficiaries who may need to update their biometrics.
5Best Finger Detection BFD is against enrollment data Enrollment quality impacts BFD selection
62 Finger Authentication During multiple attempts, simplified two finger scheme can be implemented which is detailed below. By retaining the last captured fingerprint minutiae in memory, application can only request one best finger and form two finger authentication requests. Sample capture flow process is indicated below.Capture 1 – 1st best finger – single finger auth transactionIf fail, Capture 2 – 2nd best finger – two finger auth transaction ( using capture 1 and 2)If fail, Capture 3 – 1st best finger – two finger auth transaction ( using capture 2 and 3)
7Aadhaar Authentication initiatives in Andhra Pradesh Food & Civil Supplies Dept- Dept currently is disbursing commodities tobeneficiaries in 145 Fair Price Shops through Aadhaar Authentication (100 FPS in East Godavari and 45 FPS in Hyderabad). Till date, over 11lakh Aadhaar authentication transactions are performed.Multiple Seeding options are used by Dept which includeInorganic Seeding through KYR+ DataOrganic Seeding – Mobile Field staff to collect UID from beneficiary/ POS based seedingIssues Addressed:Connectivity: POS Devices are modified to support for multiple mode of connectivity GPRS/BroadBand/PSTN ( Shadow areas in Urban Regions)Acceptability by Operators: Incentive MechanismTraining and Capacity BuildingFraud Monitoring
8Aadhaar Authentication initiatives in Andhra Pradesh S.No.District% Ben Auth%Inspector Auth%OTP1East Godavari87.4830.04712.4702Hyderabad86.1421.10912.749
9Aadhaar Authentication initiatives in Andhra Pradesh S.No.DistrictRation Drawn CardsNo of TransactionsTotal Rice Sold (In Kgs.)Total Koil Sold (In Ltrs.)Total Dal Sold (In Kgs.)Total Palmoil Sold (In Ltrs.)Total Sugar Sold (In Kgs.)Total Wheat Sold (In Kgs.)Total WholeMeal Atta Sold (In Kgs.)1East Godavari1,1,2,1,20.50081.00078.00039.0002Hyderabad2,2.00065.00030.00031.000Total1,1,4,2,22.50070.000Savings Analysis in East Godavari for 100 Fair Price Shops (FPS).S.No.CommodityPercentage Savings1Rice20%2Sugar15%3K. Oil25%4P.Oil14%
10Aadhaar Authentication initiatives in Andhra Pradesh Social Welfare Dept- Govt of AP has an online application system forscholarships called Electronic Payment and Application System of Scholarships-EPASS. Aadhaar Authentication is integrated into existing workflow because ofwhich need for verification by Field officer to confirm the scholarship beneficiaryis removed.It is proposed that scholarship amount will be disbursed to successfullyauthenticated beneficiaries.Dept is requesting the scholarship beneficiary to upload the scanned copy ofAadhaar Letter and Bank Pass Book during the application for scholarship.Departmental officers are using these scanned copies to verify the seedingdetails and pass the verified information to LDM for Bank SeedingDept is also proposed to avail RASF Services for seeding..
11Aadhaar Authentication initiatives in Andhra Pradesh Rural Development Dept – Dept in partnership with ICICI, Axis Banks and Department of Post is currently disbursing NREGA wages and Social Security Pensions in districts of Chittoor, East Godavari and Anantapur through Aadhaar Authentication. Till date, over Rupees 100 Crores amount is disbursed through around 21 lakh Aadhaar authentications. Dept of Post leverages the services of Branch Post Master ( BPM) to organically seed data for pensioners. Dept of Post also made a provision for POS based seeding. State Resident Data Hub( SRDH) services are availed by RD Dept to aid in seeding efforts. UIDAI complaint MicroATMs are deployed by Banks & DoP for disbursing Payments.
12AEPS Payments AUA District AEPS Transactions Amt Disbursed (Rs.) ICICI BankEast Godavari59231Hyderabad121484Mahabubnagar27270900Karimnagar17554Medak637164400Kadapa63301Axis BankChittoor1,07,867Anantapur70,388Ranga Reddy14,914Warangal813228000Krishna3,701933000Kurnool647167000AUADistrictAEPS TransactionsAmt Disbursed (Rs.)Dept of PostChittoorEast Godavari194844Srikakulam112223Adilabad32422Guntur52462Nalgonda1428Mahabubnagar9164835Medak220236750Warangal578579920Grand Total AUAs21,59,34110226,68,960
13Aadhaar Authentication initiatives in Andhra Pradesh Rajiv Yuva Kiranalu – Dept is in process of integrating AadhaarAuthentication to conduct daily attendance monitoring of trainees ofRYK Program.Issues observed in existing project includeEnrolment of Fake Candidates by Training CenterRecording of Fake Biometrics by Training CenterTraining Center registers candidates with Ration Card, for which there is no de-duplication.Device level manipulation by Training Center90% of Training Centers are not claiming 3rd installmentIt is proposed that Aadhaar Authentication can be integrated intoexisting Business Flow to conduct attendance monitoring of students. Pilotis launched in 4 training centers of East Godavari District
14Authentication – Best Practices BFD and Two Finger Authentications- Improves the success rate for authentication. This needs to be planned at device UI level and proper operator training needs to be ensured. BFD is must do before any authentication attemptMechanism for Aadhaar Seeding verification - Authentication could be rejected because of Aadhaar seeding issues. It is highly recommended to have a mechanism to verify/correct Aadhaar in database when resident comes for availing service for the first time.Operator training and Audits - There should be regular audit and training of operators to ensure that they improve constantlyAppropriate Error Code handling at all levels -Clear and actionable messages should be configured at client levelFraud Monitoring and Analysis - Fraud monitoring mechanism required to ensure there is no misuse of exception handling mechanismsIssue reporting, tracking and resolution