NITI Aayog has publicly released the code of the Aarogya Setu application weeks after protection concerns raised by different specialists and the government launched a bug bounty programme.
The new move comes days after the contact tracking application crossed the characteristic of 10 crores enrolled user, 41 days after its dispatch in April.
NITI Aayog has discharged the source code of Aarogya Setu’s Android version, which it said is utilized by 98 percent of its all-out users. The state-claimed policy think tank has plans to open source the code of its iOS and KaiOS version at a later stage also.
The source code of the Aarogya Setu’s Android version has been live on GitHub.
National Informatics Center (NIC) additionally declared a bug bounty program to boost analysts to discover security flaws in the application.
Besides, the NITI Aayog group indicated that the source code of the iOS version of the Aarogya Setu application will be released within fourteen days.
Statements:-
“I simply need to bring up this is an incredibly interesting thing to be done,” said NITI Aayog CEO Amitabh Kant while tending to a public interview relating to publicly releasing the source code of Aarogya Setu application on Tuesday.
“No other government item anyplace on the planet has been publicly released at this scale anyplace in the world.”
About Aarogya Setu Application
The Aarogya Setu application as of now has over 11.50 crore, enlisted users, overall the platform. During the gathering, Kant featured that the application previously helped in excess of 1,40,000 individuals by alarming them about the potential danger of the coronavirus contamination utilizing its inborn contact following technology.
Security specialists raised protection concerns and encouraged the government to open the source code of the Aarogya Setu application as soon as possible. NITI Aayog, however, as of not long ago pushed the publicly releasing procedure so as to consistently keep up the current system.
Also Read: Google tests voice confirmation for purchases through Google Assistant
In any case, the group is set to discharge every single resulting update of the application through its archive on GitHub beside discharging the current code.
“The upgrades declared today are a welcome development,” said Mishi Choudhary of legitimate administrations association SFLC.
“Aarogya Setu ought to consistently have been open source, directly as it so happens and everything created by the Government of India ought to consistently be open source as that is citizens’ cash. We will be confirming that all code is open source and worldwide accepted procedures are followed.”
“I am happy that requests I had made about open source, bug bounties, itemized documentation are being followed,” she included.
“Work to guarantee that the application doesn’t transform into whatever another vehicle that plays with delicate data of such a huge population should proceed.
GoI should likewise guarantee that the true required nature of the application ought to be tended to and individuals aren’t discriminated based on it. It should consistently stay deliberate.”
A few specialists accept that publicly releasing the source code of the application is the initial move towards improving user trust and security.
“While the move will go far in improving user trust and security, some critical steps stay before the application’s infrastructure can be called genuinely open source,” said Udbhav Tiwari, Public Policy Advisor, Mozilla. “This incorporates publicly releasing the server-side code and guaranteeing that the application is built exclusively from its public repository.”
The group behind the Aarogya Setu application has vowed to launch the server code in the coming weeks. A solid lunch date is yet to be reported.
Bounties Details for discovering bugs and security Flaw
Beside publicly releasing the code, the government has propelled the bug bounty programme that will be facilitated by the MyGov group. The program will empower security experts to benefit of Rs. 1 lakh worth of bounty for discovering security vulnerabilities inside the application. Moreover, there will be an extra code improvement bounty of Rs. 1 lakh.
Also Read: Huawei announced a breakthrough in 5G antenna technology
1 thought on “Aarogya Setu App Code is now Open Sourced, Bug Bounty Programme”