1. Home
  2. Bengaluru: 31-yr-old techie arrested for accessing Aadhaar data

Bengaluru: 31-yr-old techie arrested for accessing Aadhaar data

coastaldigest.com news network
August 4, 2017

Bengaluru, Aug 4: Bengaluru city police has arrested a young techie on the charge of accessing Aadhaar data following a complaint filed by the Unique Identification Authority of India (UIDAI) last week.

The arrested is Abhinav Srivastav, 31, an IIT-Kharagpur graduate, who is currently employed by ANI Technologies, which owns the Ola brand, as a software development engineer. He has been accused of accessing Aadhaar information in January 2017 through an app named ‘Aadhaar e-KYC’, which was available on the Google Play store till recently.

Police said Srivastav had developed five apps and made ₹40,000 from advertisements displayed on them. Police are now scanning all his apps to see whether more violations were committed. The Aadhaar e-KYC app was downloaded over 50,000 times from the Google Play store since its launch in January, the police said.

City Police Commissioner T. Suneel Kumar said that based on the complaint, six teams of police comprising 26 personnel were formed to nab Srivastav and they tracked him down to Koramangala after a week. He has been accused of using the services of another app, ‘e-hospital’, which is listed as an authenticated user agency (AUA) authorised to access UIDAI data.

A senior police officer said there were around 400 entities that have been authorised to access the data for authentication. Srivastav’s company was not among those authorised.

A native of Kanpur, Srivastav completed his M.Sc. in Industrial Chemistry from IIT-Kharagpur and joined a private firm in 2010 as a security researcher. He launched Qarth technologies in 2012 and shut it down in 2016 owing to financial reasons. In March 2016, Ola announced that it had acquired Qarth and its mobile payments product, X-Pay. Srivastav then joined another private firm before joining ANI Technologies last year.

Investigation revealed that the e-hospital company is not aware of his activities. However, further probe is on to ascertain the facts.

The ability of a software engineer to bypass strict protocols set in place by the UIDAI to access critical data puts the spotlight firmly on the security measures employed to protect Aadhaar data.

Police investigation have revealed that Srivastav had piggy-backed on the infrastructure of another app for hacking the data base.

“Aadhaar related information, legally housed by the National Informatics Centre server, was illegally and without authorisation accessed and used to support this mobile application,” said the police statement.

Srivastav, in order to give his ‘Aadhaar e-KYC’ app an air of authenticity, hacked into the server of the NIC, which houses the e-hospital system, which is a solution for government hospitals to handle patient care and other services, including medical records management.

As part of its regulations, the UIDAI accords certain agencies the title of an AUA, which can then provide Aadhaar-enabled services to the cardholder. For authentication, these agencies have to connect to the Central Identities Data Repository (CIDR) through the services of a Authentication Service Agency (ASA). ASAs are bound by regulations that stipulate encryption of data and logging of access.

The 'e-hospital’ platform had access as a registered AUA. Srivastav used this server to route his app requests for data access and managed to steal the data, the police said.

Question raised

In 2016, a paper titled ‘Privacy and Security of Aadhaar: A Computer Science Perspective’ by the Computer Science and Engineering Department of IIT-Delhi raised the question of leakage of Aadhaar number from an AUA.

The paper, which also discusses several other possible threat scenarios, said, “This, however, does not fully mitigate the risks and the possibility of leakage of the Aadhaar number from an AUA, either from the database, or during “Know Your Customer” (KYC) processes, or even during availing services, cannot be ruled out. In particular, there appear to be no safeguards or even guidelines, either technical or legal, on how the Aadhaar number should be maintained and used by various AUAs in a cryptographically secure way, and how to prevent the Aadhaar number of an individual from becoming public.”

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
June 30,2020

Shivamogga, Jun 30: The organic farmers' market in Shivamogga in Karnataka has seen a rise in the demand for organic fruits and vegetables in the midst of the COVID-19 pandemic.

Residents of nearby areas frequently visit the market to get fresh produce.

According to Sridhar, a farmer who sells his produce in the market, the demand for organic fruits and vegetables was very low before the coronavirus outbreak.

"I have been involved in organic farming for the last two decades but there was no real market. Since these days everyone is trying to boost their immunity, we are getting a lot of positive response from the locals," he told news agency.

Sridhar and other farmers come from villages near the city. They are authentic organic farmers under the Vikas Trust and Savayava Krishi Parivar, a federation of organic farmer's families based in Karnataka, and they promote pesticide and fertiliser free agriculture.

Gurumel Singh, who often comes to the local market said, "My family has started eating more organic fruits and vegetable now because of the pandemic. We have been told it is important to take care of our health and organic fruits and vegetables are good immunity boosters. The fruits I buy from the organic market are also much sweeter than the ones I get elsewhere."

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
July 10,2020

Bengaluru, Jul 10: Karnataka Chief Minister BS Yediyurappa has quarantined himself at his personal residence after three persons posted at his official residence 'Krishna' tested positive for COVID-19. The Chief Minister, who held a cabinet meeting and also visited Karnataka's largest COVID-19 care centre on Thursday, has cancelled all his engagements scheduled for Friday.

In a statement issued on Friday afternoon, Yediyurappa said that he was healthy and will continue to work from his residence. The Chief Minister will remain in home quarantine till next week as protocol mandates. Three persons -- an electrician, a standby driver and a pilot vehicle staffer -- have tested positive for COVID-19.

"Since a few staff at my official residence Krishna have tested positive for COVID19, I will be working from my personal residence for the next few days. I will hold meetings, consultations and issue orders and suggestions via video conferencing. There is no need to worry. I am healthy. I appeal to everyone to take all precautionary measures and follow protocols issued by the government. Wear masks and ensure social distancing and help us contain COVID19," a statement from the Chief Minister said.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
June 22,2020

Bengaluru, June 22: BJP leader and Madikeri MLA Appachu Ranjan has urged the Karnataka Chief Minister B S Yediyurappa and Home Minister Basavaraj Bommai to drop cases against the saffron activists who had involved in attacks against cattle traders and transporters across the state.

In a letter addressed to the CM and the Home Minister, the MLA expressed his concern against the illegal transportation and slaughtering of cattle. Cow is considered to be holy in Hinduism. Butchering of cattle has been hurting the religious sentiments of people, he stated.

Ranjan stated that cases had been registered against 'Gau Rakshaks' or cow vigilantes who had fought against the illegal transportation of cattle.

“Filing cases against the protectors of cattle is condemnable. If the cases are not dropped, then there will be none to question the illegal cattle transporters,” he said adding that cases registered against various police stations against cow vigilantes must be dropped.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.