The Unique Identification Authority of India (UIDAI) has launched a new service called Aadhaar Paperless Offline e-KYC, which can be used for offline verification of identification by an Aadhaar holder. If a resident wishes to use this service, he or she must first get his or her digitally signed Aadhaar details by visiting the UIDAI portal. In a digitally signed XML, the details will include Name, Address, Photo, Gender, DOB, hash of registered Mobile Number, hash of registered Email Address, and reference id, which will comprise the last four digits of the Aadhaar Number followed by a timestamp. This would allow service providers and Offline Verification Seeking Organisations (OVSE) to verify the Aadhaar number without having to keep or record it.
Who can use Aadhaar Paperless Offline e-KYC?
This service is available to any Aadhaar holder who seeks to verify his or her identity with any service provider (OVSE) using digitally signed XML obtained from the UIDAI portal. The Aadhaar Paperless Offline e-KYC service and offline verification of identity will be conducted by the service providers at their facility. Residents can submit the XML ZIP file together with the Share Code and registered mobile number in order to share their Paperless Offline eKYC document with the service provider.
How service providers will conduct Aadhaar Offline e-KYC Verification?
The following are the steps for the Aadhaar Offline e-KYC Verification by Service Provider:
- After collecting the ZIP file, the service provider extracts the XML file using the password (share code) submitted by the Aadhaar holder.
- The demographic details, such as name, date of birth, gender, and address, will be recorded in the XML file. Your photo which will be in base 64 encoded format, may be viewed in any application or on any Html website. Both the email address and the phone number are hashed.
- In order to authenticate the hash, the Service Provider shall collect residents' Email Address and Mobile Number and complete the following processes:
Note: The below given mobile number and email-ID examples are taken from the website of UIDAI
Hashing logic: Sha256(Sha256(Mobile+ShareCode))*number of times of last digit of Aadhaar Number
Mobile number: 9800000002
Aadhaar Number: 123412341234
Share Code: Abc@123
In case if the Aadhaar Number ends with Zero or 1 (123412341230/1) it will be hashed one time.
Hashing Logic: This is a simple SHA256 hash of the email. The entire XML file is digitally authenticated, and the Service Provider shall validate it using the signature and public key accessible on the UIDAI portal.
The service providers will not share, publish, or disclose the details of the Share Code or the XML file with anyone. Sections 17 and 25 of The Aadhaar (Authentication) Regulation, 2016, Sections 4 and 6 of The Aadhaar (Sharing of Information) Regulation, 2016, and Sections 29(2), 29 (3), and 37 of The Aadhaar Act, 2016 would be invoked if these instructions are not followed.
How Aadhaar Offline Paperless eKYC document different from the other identification documents?
The UIDAI digital signature is used to digitally authenticate the XML file provided by the Aadhaar number bearer utilising Aadhaar Paperless Offline e-KYC. While performing offline verification, the service provider shall validate the file's demographic details and declare it as valid. A resident Aadhaar holder can generate a 4-character Share Code after inputting his or her Aadhaar/VID. Using the same Share Code, a ZIP file containing the resident's Paperless Offline eKYC will be password secured which can be downloaded to the device.