Page 45



y team in the Department of Information Technology, Maharashtra designed and launched the Digital Locker more than one-and-a-half year ago. And then, they shared it with the Government of India. Unfortunately, it is yet to catch the public imagination. This paper tells the story of Digital Locker and its potential usage. After the formation of the new government at the Centre in 2014, the Prime Minister had asked various Secretaries to make presentations to him. On the web, I saw some slides made by DeitY Secretary Mr. Ram Sewak Sharma, and one bullet point was “Digital Locker”. I quickly assembled my young and gung-ho team of consultants and programmers in Maharashtra, and in less than two weeks, we had the basic Locker up and running on our State Cloud. Later, on request from the Government of India, the Team Maharashtra was happy to hand over the code and the design, for wider use. ( )

My thoughts before designing the Locker We started with the Signup/Login method, as we were clear that only a citizen having Aadhaar number will be able to Sign Up. You don’t have Aadhaar - sorry, then the Digital Locker is not for you!  The philosophy behind this thinking will become amply clear in the next few paragraphs. Aadhaar provides easy, anytime, anywhere, faceless (remote) identity check. Now, even one time password (OTP)-based eKYC or eSign is recognised by law. However, presently Aadhaar

database has not too many mobile numbers, nor can we be very sure about their accuracy. Hence, I always advocate having a “verified mobile” tag in Aadhaar centralised database (CIDR). This would happen when a citizen does biometric (fingerprint or Iris) authentication, enters 10-digit  mobile number, gets an OTP on that mobile and enters that OTP in the application. Only then this “verified mobile” flag should be ticked in the central Aadhaar database. Thereafter, for all times to come, except for certain critical things, mobile OTPbased Aadhaar linked eKYC or eSign can be

After the formation of new government at the Centre, the Prime Minister had asked various Secretaries to make presentations to him… I quickly assembled my young team, and in less than two weeks, we had the basic Locker up on the State Cloud. Later, on request, the Team Maharashtra shared the code and the design for wider use by the Centre

used. Probably, Samsung and others will come with Aadhaar-based fingerprint sensors or even Iris sensors on their mobiles in future (sensors now cost hardly a few dollars, and can be miniaturised). But till that time, non-biometric based, just mobile OTP based authentication systems will lead to much wider use of eKYC and eSign. Difference between eKYC and eSign: For bank account opening, getting a driving licence or a passport or a SIM card etc., – they require the citizen to bring a bundle of papers to prove you are you (KYC- Know Your Customer requirements). Instead of carrying a bundle of papers, you can just key in your 12-digit Aadhaar number, and do an online authentication – this is eKYC. eSign is another kind of digital signature, which replaces wet (ink) signature. Our CCA (Controller of Certifying Authorities) had, as per the IT Act, 2000 (Amended in 2008), allowed dongle-based digital signatures. Citizen has to purchase this physical dongle after an elaborate KYC procedure, remember a PIN number, renew the signature after every two years, and spend about Rs.500 per annum. Now, the Aadhaar-based eSign is also legally recognised under the IT Act. No KYC, lifelong valid, zero cost! Just do mobile OTP-based or biometric-based Aadhaar online authentication, and any document gets digitally signed. Now Income Tax returns are using this method, and you don’t have to physically send any ink-signed papers. The tiny nation of Estonia has embedded citizens’ digital signatures into mobile SIM cards, leading to some great applications (including electronic voting). If we can embed Aadhaar number into SIM cards,  then eKYC or eSign become further dramatic. Just one click, two factor authentication through your mobile for all kinds of payments, signatures, voting, and so on! Use of Digital Locker to a citizen is obviously to store his/her “Government Papers”. These are typically birth certificate, domicile certificate, caste certificate, income certificate of parents, matriculation certificate, education degrees, driving licence, passport, property-related papers, tax-related papers, investments/ savings/ pension/ insurancerelated papers, employment/business licence papers, Will related papers, and so on. Final certificate to upload would be the death certificate (maybe pushed by municipal authorities into your locker, resulting in automatically MAY 2016 / / egov


eGov May 2016  

eGov May 2016

eGov May 2016  

eGov May 2016