Aadhaar software hacked, sanctity jeopardized: Congress

Sep 11, 2018, 15:55 IST | IANS

According to the report, any unauthorized person from anywhere in the world can generate Aadhaar ID using the patch which is freely available for Rs 2,500

Aadhaar software hacked, sanctity jeopardized: Congress
Congress President Rahul Gandhi

Amid reports of an alleged breach of the Aadhaar database, the Congress on Tuesday said the sanctity of the unique identification system was jeopardized.

The party's remarks came after an investigation by HuffPost India revealed that the Aadhaar database, which contains the biometrics and personal information of over one billion Indians, "had been compromised by a software patch which disables critical security features of the software used to enrol new Aadhaar users".

According to the report, any unauthorized person from anywhere in the world can generate Aadhaar ID using the patch which is freely available for Rs 2,500.

"The hack of the Aadhaar enrolment software jeopardizes the sanctity of the Aadhaar database. We hope the authorities will take the appropriate moves to secure future enrolments and verify the suspect enrolments," the Congress said in a tweet.

French security expert Elliot Alderson -- who had last month sparked a controversy by asking the Unique Identification Authority of India (UIDAI) to explain why its helpline number was stored on many people's phone without their knowledge -- also joined in the conversation asking the UIDAI to work with the hackers to plug the breach.

"I repeat it: NOTHING IS UNHACKABLE. It does apply for Aadhaar. UIDAI, it's never too late. Listen and work with hackers instead of threatening them. History is looking to you," he said.

According to the HuffPost report, "the patch lets a user bypass critical security features such as biometric authentication of enrolment operators to generate unauthorised Aadhaar numbers".

It also disables the GPS security feature of the software allowing anyone from any location to enrol users.

"The patch reduces the sensitivity of the enrolment software's iris-recognition system, making it easier to spoof the software with a photograph of a registered operator, rather than requiring the operator to be present in person," the report said.

It claimed to have the patch analysed by three internationally reputed experts and two Indian analysts, all of whom confirmed it could be used to breach the Aadhaar software.

Catch up on all the latest Crime, National, International and Hatke news here. Also, download the new mid-day Android and iOS apps to get latest updates

This story has been sourced from a third party syndicated feed, agencies. Except for the change in the headline, the story has been provided "AS-IS," "AS AVAILABLE, without any verification or editing from our side. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever.

DISCLAIMER: mid-day and its affiliates shall have no liability for any views, thoughts and comments expressed on this article.

Do you know Manmohan Singh cannot read Hindi?

This website uses cookie or similar technologies, to enhance your browsing experience and provide personalised recommendations. By continuing to use our website, you agree to our Privacy Policy and Cookie Policy. OK