 "Govt open sources Aarogya Setu, announces bounty for finding security flaws")
The central government on Tuesday said it was open-sourcing the code of its Covid-19 contact-tracing app Aarogya Setu.
The source code for the Android version of the application will be available for review and collaboration on open source code repository Github. The iOS version of the application will be released as open source within the next two weeks and the server code will be released subsequently.
Almost 98 per cent of Aarogya Setu users are on Android platform. The app had over 114 million users as of Tuesday, maintaining its status as the most downloaded contact-tracing app in the world.
Open-sourcing an app means people can look at the code and suggest improvements or issues, and also use the code under a licence to develop similar products. India has an open source policy in place since 2015.
The source code of any government application, according to the policy, shall be available for the community/adopter/ end-user to study and modify the software and to redistribute copies of either the original or modified software, and would be “free from royalty”.
Welcoming the move, Mishi Choudhary, technology lawyer and founder of legal services firm Software Freedom Law Centre, said: “The Government of India has an amazing policy on adoption of open source software that encourages formal adoption and use of open source software in government organisations.
Aarogya Setu should always have been open source, right from the start, and everything developed by the government should always be open source as that’s taxpayers’ money. We will be verifying that all code is open source and global best practices are followed... Work to ensure that the app doesn’t mutate into any other vehicle that plays with sensitive information of such a large population should continue.”
The government has also reached out to the developer community to help identify any vulnerabilities or code improvement in order to make the app more robust and secure.
“Towards this objective, the government has also launched a Bug Bounty Programme with a goal to partner security researchers and developer community to test the security effectiveness of the app, and also to improve or enhance its security and build user’s trust,” said the Ministry of Electronics and Information Technology.
One subscription. Two world-class reads.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%