Aadhaar Data Vault as a Service

Data security is of paramount importance, especially for the information that contains personal identity numbers. The Aadhaar number is one such identity for which its secure management while availing various Government services has always remained a concern.

Unique Identification Authority of India mandates the secure storage of residents' Aadhaar numbers in a separate repository known as ‘Aadhaar Data Vault’. As per UIDAI, the Aadhaar number stored in the Aadhaar data vault must be mapped and referred to a key termed Reference Key.

C-DAC, a premier R&D organization of the Ministry of Electronics and Information Technology (MeitY), Govt. of India has implemented the Aadhaar Data vault as a service that can be utilized by the applications offering citizen services.

“Aadhaar Data Vault (ADV) as a service” developed by C-DAC as per UIDAI guidelines, is a REST API-based service for storing encrypted Aadhaar numbers and generates reference numbers against stored Aadhaar numbers. Therefore, ADV is a dedicated separate storage that stores all the Aadhaar numbers which are encrypted through the digital keys stored in the Hardware Security Module (HSM).

The Aadhaar number stored in the Aadhaar data vault will be mapped and referred to by the key termed the Reference Key. Wherever an Aadhaar number needs to be sent outside the agency for a genuine business, it may be sent after decrypting it from the Aadhaar data vault to complete the transaction. However, when the details of the transaction are to be saved within the environment, corresponding reference keys in application data stores should be maintained instead of Aadhaar numbers.

All the Government departments offering citizen services and using Aadhaar numbers in their application workflows for any purpose such as disbursement of beneficiary schemes, employee details, scholarship details, health records, etc. are required to use Aadhaar Data Vault for secure management of Aadhaar numbers and its related data.

 

Use Cases

• Applications storing Aadhaar numbers in their application DBs

Salient Features

• Flexibility to choose unique or multiple reference key generations to refer to one Aadhaar Number.
• Secure and seamless integration with the existing applications through REST API based Aadhaar data vault service.
• Enabled by FIPS 140-2 Certified device to manage Keys used for encryption and decryption.
• Transaction statistics through a Dashboard.
• Audit and Access logs.
• Store your Aadhaar details for batch or individual transactions.