e-Pramaan portal is a National e-Authentication service offered by DeitY. e-Pramaan gives a simple, convenient and secure way for the users to access government services via the internet/mobile as well as for the Government to assess the authenticity of the users. The e-Pramaan builds up confidence and trusts in online transactions and encourages the use of the e-services as a channel for service delivery. In this article, we will look at e-Pramaan Portal in detail.
The objective of e-Pramaan Portal
e-Pramaan portal is a standards-based, federated e-Authentication solution aimed to furnish a robust and uniform electronic authentication mechanisms for online access to the Government applications providing public services.
Major Components of e-Pramaan Portal
Major Components of e-Pramaan Portal is explained in detail below:
- Identity Management (including Credential Registration)
- e-Authentication (including Step-up Authentication)
- Single Sign-on (SSO)
- Aadhaar based credential verification
It addresses risk-based authentication needs of an application and provides several factors of authentication such as the username-password, One Time Password (OTP), Digital Signature Certificates (DSC), Aadhaar biometrics which can be combined to give single or multi-factor authentication depending on the application’s requirements. Besides, it comes with features such as website authentication and fraud management.
Benefits of e-Pramaan Portal
Importance of the e-Pramaan are explained in detail below:
e-Pramaan gives guidelines that help in the selection and implementation of the appropriate e-authentication approaches. Having the standardised e-Authentication framework has the following benefits:
- Transparency: e-authentication decisions are to be made openly and transparently.
- Cost-effectiveness: Government departments and agencies will not have to implement cumbersome and expensive e-authentication processes for low-risk or straightforward transactions.
- Consistency: Government departments and agencies can apply a consistent approach to selecting the appropriate e-authentication mechanism
- Risk management: The selection of e-authentication mechanisms is to be guided by the likelihood and impact of identified risks
- Trust: The mechanisms used will support online and mobile-based services and enhance safety, safety and trust in such transactions.
- Improved privacy: Personally identifiable information is collected only where necessary as per the sensitivity level of the applications or services• Efficiency: The time to deploy an e-Authentication capability for any Government application will be significantly reduced.
- The framework gives various levels of authentication based on the sensitivity requirement of an e-Governance service.
e-Authentication of e-Praman Portal
e-Authentication is a process of electronic verification of the identity of a user.e-Authentication Furnishes a simple, convenient and secure way for the users to access government services via the mobile, internet as well as for the Government to assess the authenticity of the user. e- Authentication helps to build up the confidence and trust in the online transactions and encourages the use of the electronic environment as a channel for service delivery
Single Sign-On (SSO) facility on e-Praman Portal
If a person is a user of any government services, to access different government services they require to authenticate themselves multiple times, remember logins and passwords for each of them. Through Single Sign-On (SSO) facility they can access multiple e-Gov services that are integrated with the e-Pramaan by logging only once to the any one of these services or on the e-Pramaan portal.
e-Pramaan Portal Online Services
One can access all the services that are already integrated with e-Pramaan and listed on the e-Pramaan portal.
User Registration in e-Pramaan Portal
In the e-Pramaan web portal, users can register using the self-registration form and generation of e-Pramaan user credentials, which will be used for logging into the e-Pramaan portal.
The user must furnish the email and mobile number during registration at e-Pramaan. The user also has to provide any one of the identity proof such as Aadhaar Number or PAN Number or DSC to complete the registration process at the e-Pramaan portal.
Successful verification of the email, mobile and any one of the identity proof will complete the registration process. The incomplete registration process will not allow the user to access any of the functionalities offered through the e-Pramaan other than that of verification of email/mobile and identity proofs.
Department Registration in e-Pramaan Portal
e-Pramaan provides a self-registration to Service Providers/ Departments through an e-Pramaan department portal. Departments can create an account using this facility. However, the department account activation will be based on the MOU signed between C-DAC and the respective Department.
e-Pramaan and Aadhaar Authentication
- e-Pramaan uses e-KYC service of Aadhaar while registering the users on e-Pramaan.
- It also provides flexibility of using a verified Aadhaar as a username instead of a chosen username on e-Pramaan. This will help user not to remember all another username.
- e-Pramaan does biometric authentication, uses the fingerprint biometric verification based on the Aadhaar services.
- e-Pramaan is AUA and KUA in the Aadhaar Authentication ecosystem.
AUA and ASA in Aadhaar System
Authentication Service Agency (ASA).
UIDAI furnishes APIs to verify any data on the Aadhaar. This API is only accessible through the empanelled Authentication Service Agency. ASA is entities that have secure leased line connectivity with the Central Identities Data Repository. They verify the requests for Aadhaar and forward as the request.
Authentication User Agency
Authentication User Agency (AUA) is an entity that uses Aadhaar authentication to enable its services and connects to the CIDR through an ASA.
Department can become a sub-AUA
Any department that needs to become sub-AUA has to enter into a formal agreement with the AUA. C-DAC’s AUA gives such a facility. You can contact the C-DAC on [email protected] for further queries regarding the sub-AUA services.
Department cam integrate with ASA services
- The department will be empanelled AUA of UIDAI to communicate with ASA, This AUA communicates with CIDR database through ASA.
- The department can register as an ASA-AUA department through a registration form provided on the e-Pramaan website to integrate with C-DAC ASA. C-DAC person will get in touch with the applicant for further formalities such as MOU signing and integration with ASA.
- The department may also directly contact C-DAC on [email protected] for integration with C-DAC’s ASA service.
Authentication Factors Offered by e-Pramaan
- Password: Basic authentication with username and password.
- One-Time Password (OTP): e-mail, SMS or Mobile App based OTP authentication.
- Digital Signature Certificate (DSC): Authentication via hardware tokens.
- Aadhaar-based Biometric: Provide fingerprint authentication.
Above listed can be used as a single or multi-factor for authentication in the following ways.
- Single Factor: Any one of the following factors: Password/Aadhaar-based Biometric.
- Two Factor: Combination of any two of the authentication factors such as Password/Biometrics and OTP/Digital Signature Certificate, Password and Biometrics.
- Multi-Factor: Combination of any two factors along with other factors of authentication. For example. Password, OTP and Digital Signature Certificate and Biometrics