Unique Identification Number Project: Unique Identification Number - - PowerPoint PPT Presentation

unique identification number project unique
SMART_READER_LITE
LIVE PREVIEW

Unique Identification Number Project: Unique Identification Number - - PowerPoint PPT Presentation

Oct 10, 2022 139 likes •366 views

Unique Identification Number Project: Unique Identification Number Project: Challenges and Recommendations Challenges and Recommendations Challenges and Recommendations Challenges and Recommendations Authors: Haricharan Rengamani*,

slide-1
SLIDE 1

Unique Identification Number Project: Unique Identification Number Project: Challenges and Recommendations Challenges and Recommendations Challenges and Recommendations Challenges and Recommendations

Authors: Haricharan Rengamani*, Ponnurangam Kumaraguru^, Rajarishi Chakraborty*, H Raghav Rao* g , j y , g *SUNY Buffalo; ^IIIT Delhi

Presented at Third Intl. Conf. Ethics and Policy of Biometrics and International Data Sharing – Hong Kong, January 4-5, 2010

slide-2
SLIDE 2

Agenda Agenda Agenda Agenda

 About UID project  About UID project  Challenges Faced in SSN  National Identifier in UK  Unique identifiers in European Countries:  Unique identifiers in European Countries:

  • UK, Belgium, Estonia and Netherlands

 UID and its Biometric Approach  Other challenges for UID

Ot e c a e ges o U

 Recommendations

C l

 Conclusions

slide-3
SLIDE 3

About UID Project About UID Project About UID Project About UID Project

 Unique Identification Authority of India (UIDAI)

Unique Identification Authority of India (UIDAI) Headed by Mr. Nandan Nilekani

 First country to implement Biometric based unique ID system

  • n such a large scale.

 Responsible for implementing Multipurpose National Identity

card or Unique Identification Card.

 UIDAI to build a central database on details of every Indian

resident including demographic and biometric information resident including demographic and biometric information.

 Implemented to save identity verification costs for business

p y through online verification of authentication of identity.

slide-4
SLIDE 4

About SSN in USA: About SSN in USA: About SSN in USA: About SSN in USA:

 Started in November 1936

Started in November 1936

 Nine digit number issued to U.S Citizens, Permanent

g , Residents and temporary residents under Social Security Act.

 Skeleton of SSN is XXX-XX-XXXX  Primary purpose is to track individuals for taxation

purposes. purposes.

 Evolved to become a defacto national identification

number in the recent years.

slide-5
SLIDE 5

Challenges Faced in SSN Challenges Faced in SSN Challenges Faced in SSN Challenges Faced in SSN

 Privacy  Privacy  Identity Theft  Identity Theft  Terror Related crimes  Terror Related crimes

Oth i

 Other issues

slide-6
SLIDE 6

National ID in UK National ID in UK National ID in UK National ID in UK

Challenges in Existing System: Challenges in Existing System:

 T

echnical complexity of the scheme

 Associated cost  Protecting Privacy of citizens

Purpose:

 T

  • maintain one identity document that can be used

internally by all departments of Government. internally by all departments of Government.

 T

  • avail better access to services provided by both

public and private sectors.

 T

  • track eligible workers in UK and to combat

identity theft, Identity fraud and the issue of illegal immigrants. g

slide-7
SLIDE 7

National ID in Belgium National ID in Belgium National ID in Belgium National ID in Belgium

BELPIC is the largest e ID scheme in Europe BELPIC is the largest e-ID scheme in Europe

 Challenges and Solutions

  • Goal was to enable citizens to authenticate themselves

for accessing e-government applications like social security and give them a secure ID.

  • Solution was based on a new PKI infrastructure along

with information support and 24/7 helpdesk for lost cards. The framework relies on X.509v3 certificates.

  • BELPIC doesn’t completely address the issue of

interoperability across administrative units. te ope ab ty ac oss a st at ve u ts.

  • Takeaways – Use of ‘Kids Card’. A variant of the e-ID for

kids between 12 – 18 years kids between 12 18 years.

slide-8
SLIDE 8

National ID in Estonia National ID in Estonia National ID in Estonia National ID in Estonia

 Governed according to the Digital Signature Act

Governed according to the Digital Signature Act (DSA).

 98% of Estonians have national ID card  Digital signature embedded in card

  • Authentication and Digital Signing

I h h l UID d

 Issues that may help in UID design:

  • Signature validity verification:

 Solved by Online Certificate Status Protocol (OCSP) Solved by Online Certificate Status Protocol (OCSP).

  • Lack of widespread digital signature implementation:

 Solved by DigiDoc, a server-side and client-side software

  • International interoperability:

 Addressed through OpenXAdes project for universal understanding of legally binding

slide-9
SLIDE 9

National ID in Netherlands National ID in Netherlands National ID in Netherlands National ID in Netherlands

 Very similar to SSN in US – number assigned by

Very similar to SSN in US number assigned by Office of Tax Administration

 Unique Citizen Service Number

( i S ) f (Dutch: Burgerservicenummer or BSN) for citizens and workers.

 Corrections related to a BSN handled by Municipal  Corrections related to a BSN handled by Municipal

Personal Records Database

 BSN is very limited for private organization  Name is not linked with a BSN in the database  BSN is used as an index for all information collected

by Govt by Govt

 Databases protected by the Personal Data Protection

Act.

slide-10
SLIDE 10

UID System UID System www.uidai.gov.in y

slide-11
SLIDE 11

UID Agencies UID Agencies www.uidai.gov.in g

slide-12
SLIDE 12

UID Architecture UID Architecture www.uidai.gov.in

slide-13
SLIDE 13

Challenges in India Identity Card Challenges in India Identity Card g y g y

slide-14
SLIDE 14

Privacy aspects of Biometric Privacy aspects of Biometric Technologies Technologies

T echnology Positive privacy aspects Negative privacy aspects T echnology Positive privacy aspects Negative privacy aspects

Finger print Can provide different fingers for Strong de-identification capabilities g p p g different systems; large variety of vendors with different templates and algorithms g p Face recognition Changes in hairstyle, facial hair, texture, position, lighting reduce ability of technology to match Easily captured without user consent or knowledge ability of technology to match without user intervention Iris recognition Current technology requires high Very strong de-identification degree of user cooperation - difficult to acquire image without consent capabilities; development of technology may lead to covert acquisition capability; most iris templates can be compared against templates can be compared against each other - no vendor heterogeneity

slide-15
SLIDE 15

Privacy aspects of Biometric Privacy aspects of Biometric Technologies Contd.. Technologies Contd..

T echnology Positive privacy aspects Negative privacy aspects

Retina scan Requires high degree of user cooperation; image cannot be captured without user consent Very strong de- identification capabilities Voice scan Voice is text dependent, the user has to speak the enrollment Can be captured without consent or knowledge of p password to be verified g the user Hand geometry Physiological biometric, but not capable of identification yet; requires proprietary device None

slide-16
SLIDE 16

Other challenges in Biometric Other challenges in Biometric technologies technologies

 Privacy invasions  Privacy invasions  Social Implications  Ethics

slide-17
SLIDE 17

Recommendations Recommendations Recommendations Recommendations

 Administrative Department

Administrative Department

  • Public Awareness
  • Process for handling immigrants , Dual citizenships
  • Enrolling and tracking citizens by multitude of technologies

 Legal Department

  • To make amendments to existing legal system for
  • To make amendments to existing legal system for

accommodating UID cards

  • Restricting multiple issuance of cards, Access Restriction

should be handled should be handled

 T

echnical Department

  • Random number generation for UID card number

g

  • Self check digits
  • Effective Encryption and Decryption schemes and to architect

system better for handling security issues system better for handling security issues

slide-18
SLIDE 18

Contributions Contributions Contributions Contributions

1

Identification of T echnical Administrative

  • 1. Identification of T

echnical, Administrative and Legal Challenges in implementation

  • f UID in India
  • 2. Present a portal for learning from similar

i l t ti h ll f d i implementation challenges faced in

  • ther countries
slide-19
SLIDE 19

Conclusions Conclusions Conclusions Conclusions

 Better access to a host of government services  Better access to a host of government services  Eliminates fake and duplicate identities which assist

government to stem exchequer losses arising out of ghost government to stem exchequer losses arising out of ghost identification or duplication

 Clearer view of population and other demographic

p p g p indicators.

 Provides major impetus to e-Governance programs and

services

 Internal security scenario can be monitored well with

UID’s being used to track criminals.

slide-20
SLIDE 20

Future work Future work Future work Future work

 To investigate the social implications of UID system in India  To investigate the social implications of UID system in India  To develop a formal framework for comparing various UID

systems around the world systems around the world

  • Commonalities and differences
slide-21
SLIDE 21