Connect with us

News

UIDAI is there to protect your Aadhaar data, hackers will be shocked to know the reason!

Published

on

The Unique Identification Authority of India (UIDAI) has invited 20 candidates from the top 100 bug bounty leader boards like HackerOne and Bugcrowd in its endeavor to secure Aadhaar data hosted in UIDAI’s Central Identities Data Repository (CIDR).
The candidates could also be listed in the Bounty Programs conducted by reputable companies such as Microsoft, Google, Facebook, Apple, etc.
Aadhaar is the world’s largest digital identity program that provides for good governance, efficient, transparent, and targeted delivery of subsidies, benefits, and services to over 1.32 billion Indians.

UIDAI’s Central Identity Data Repository (CIDR)

In the new program, the government is looking for top hackers who can trace and spot loopholes in the Aadhaar data security system. Selected hackers will get a chance to study UIDAI’s Central Identity Data Repository (CIDR). This is where all the information about Indians has been collected. UIDAI said that it has been decided to keep Aadhaar data in CIDR which is a very responsible task.

It has not yet been told by UIDAI whether these hackers will be paid for the entire exercise or not. But it has already been made clear by the government department that no ex-employee of UIDAI will be able to participate in it. Even if he has been a part of the Technology Support and Audit Organization for the last seven years, he will not be entitled to participate in this program.

Companies like Microsoft, Google, and Facebook.

The order states that the chosen hacker will be included in the 100 bug bounty leader board, which also includes many well-known companies. Companies like Microsoft, Google, Facebook, and Apple are also part of it. The candidate must be active in the bug bounty community or program. Hackers will also have to sign a Non-Disclosure Agreement with UIDAI. For the 20 hackers who will be selected, it will be mandatory for them to have a valid Aadhaar number and they should be Indian citizens.

Unique step

UIDAI will perhaps be the first government agency to conduct such a program. It is not clear from the order if the ethical hackers will be paid for the exercise. But they will be registered or impaneled before being brought on board.

UIDAI says its endeavor is to secure Aadhaar data hosted in the CIDR, “along with responsible disclosure of vulnerabilities”. No candidate can be a current or former employee of UIDAI. Or one of its contracted technology support and audit organizations during the past seven years.

“In case more than 20 applications are received. Then UIDAI reserves the right to evaluate and select the top 20 suitable candidates. An independent committee shall be formulated to assess and verify the candidates’ credentials. Past bug hunting records, or references and citations,” the order says.

Also Read :

New feature will be added to Tesla electric cars, will be able to play many awesome games

Netflix Introduces Password-Sharing Payment Plan With ‘Add a Home’ Feature in Five Countries

Click to comment

Leave a Reply

Your email address will not be published.

Copyright © 2020 - 2021 TechZimo.com, All rights reserved.