The DG Law Committee Bajan NSO platform is an innovative user authentication service designed to streamline access to multiple online applications or services with a single set of credentials. This initiative offers significant benefits for both users and application administrators.
For use as NSO eliminates the need to repeatedly prove their identities to different applications and maintain multiple sets of credentials. It also aids in identifying legitimate applications over fraudulent ones.
For application owners, NSSO saves time, effort, and costs associated with building separate authentication systems for every service.
Digilocker, Meri Pehchan, NSSO platform offers various benefits, such as strengthening password policies, reducing the risk of data breaches, centralizing access control, reducing Its workloads and most importantly, facilitating ease of business operations.
Objectives of NSSO
- Promote Paperless Governance
- Increase Efficiency & Productivity
- Support Seamless User Experience
- Facilitate Government Process Re-engineering
- Enhance Scalability & Availability
Target Beneficiaries
1. Citizens: Individuals using Government Services. DG Logo Mary Bajan NSO enables access to various Government applications by logging in to the National Sign-On platform only once.
2. Government Application Owners: The Government application known as the Government application owners will have the option of integrating with any NSO platform i.e., Jan bodies change DigiLocker or implement the application or no scan, also integrate with single/multiple (2 or all 3) SSO platform Meri Pehchan.
Benefits to Citizens
1. Unified Access: A single landing page for registration/login through Jan Parichay, ePramaan, or DigiLocker, simplifying access.
2. Streamlined Registration: Standardized registration form with options for Aadhaar, PAN, Driving License, Email, Mobile Number, and self-created login.
3. Enhanced Security: Consistent multifactor authentication options across all three platforms for secure access.
4. Centralized Information: Common public dashboard displaying platform information like total applications and users registered.
5. Personalized Dashboard: User-specific analytics dashboard showing activities, application categories, accessed services, and login details.
6. Consistent Password Policy: Common password policy for all platforms, requiring existing users to update their passwords for enhanced security.
7. Multi-factor Authentication: Application owners can define additional authentication factors, such as OTP, authenticator app, PIN, or biometrics.
8. Forgot SSO ID Option: Easy retrieval of SSO ID using any registration parameter.
9. Secure Aadhaar Consent: Aadhaar consent obtained and data securely shared and stored as per the Aadhaar Act.
Benefits to Application Owners
1. Flexible Integration: Choose any SSO platform for integration, with options for single or multiple platforms for redundancy.
2. Customizable Authentication Levels: Define user authentication levels based on the application's sensitivity, using passwords, PINS, OTPs, and biometrics.
3. Defined User Parameters: Specify mandatory user parameters and authentication factors, categorizing applications as Platinum, Gold, or Silver based on security needs.
4. Challenge Mechanism: Prompt users to provide additional mandatory information if not already registered, ensuring comprehensive user data for accessing services.
What SSO Provides
SSO - Prime Value Proposition: Providing an access to multiple services by entering credentials only ONCE.
Multi Authentication Factors: What One Knows (Password, PIN, Security Question etc), What One Has (OTP - Mobile, email, DSC), What One is (Biometric) - selected as per the requirement or sensitivity of the service.
Identity Verification: Mapping virtual identity to the real identity as usually these identities are given to an individual after required verification (Utilizing external Identity Providers IDPs).
Privacy Preservation: Consent management.
Security: Sign In, Sign Out (Implementation of PKI for encrypting and signing).
SSO Benefits
Improves Citizen, Employee, IT System Productivity: Reduce Support Calls, Improves User Experience, Mitigate Security Risks.
Improves Security Capabilities: Using one set of credentialovill encourage users to create Stronger Passwords, Multi Factor Auth.
Risk Based Authentication: Service application can define higher level of user auth (Biometric, OTP and/or PIN).
Reduces Password Fatigue: Studies have indicated 20% of users abandon a service due to forgotten passwords or password reset issues.
Streamlines User Experience: Single login, Multiple access.
Advantages of DigiLocker SSO Service
Simpler Authentication: DigiLocker provides a Multi Factor authentication comprising of User Mobile OTP authentication and Aadhaar authentication.
Accessing User Profile Data: DigiLocker SSO upon each successful authentication provides a unique DigiLocker ID, Unique User Access Token and Basic User Profile (Name, DoB, Gender).
Accessing Authentic Issued Documents From DigiLocker: Third Party application using DigiLocker SSO will be able to access authentic digital documents of the user upon explicit consent.
Pushing New Issued Documents to DigiLocker: The third party application can push any new generated certificate to the user's DigiLocker account using the DigiLocker ID.