ISO IEC 24761:2009 pdfダウンロード

ISO IEC 24761:2009 pdfダウンロード。Information technology — Security techniques — Authentication context for biometrics
1 Scope
This International Standard defines the structure and the data elements of Authentication Context for Biometrics (ACBio), which is used for checking the validity of the result of a biometric verification process executed at a remote site. This International Standard allows any ACBio instance to accompany any data item that is involved in any biometric process related to verification and enrolment. The specification of ACBio is applicable not only to single modal biometric verification but also to multimodal fusion.
This International Standard specifies the cryptographic syntax of an ACBio instance. The cryptographic syntax of an ACBio instance is based on an abstract Cryptographic Message Syntax (CMS) schema whose concrete values can be represented using either a compact binary encoding or a human-readable XML encoding.
This International Standard does not define protocols to be used between entities such as BPUs, claimant,and validator. Its concern is entirely with the content and encoding of the ACBio instances for the various processing activities.
2 Normative references
The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies.
ISO/IEC 8824 (all parts) | ITU-T Recommendations X.680-683, Information technology — Abstract Syntax Notation One (ASN.1)
ISO/IEC 8825-4 | ITU-T Recommendation X.693, Information technology — ASN.1 encoding rules: XML Encoding Rules (XER)
ISO/IEC 9594-2 | ITU-T Recommendation X.501, Information technology — Open Systems Interconnection — The Directory: Models
ISO/IEC 9594-8 | ITU-T Recommendation X.509, Information technology — Open Systems Interconnection — The Directory: Public-key and attribute certificate frameworks
ISO/IEC 19785-1, Information technology — Common Biometric Exchange Formats Framework — Part 1: Data element specification
ISO/IEC 19785-3, Information technology — Common Biometric Exchange Formats Framework — Part 3: Patron format specifications
RFC 3852, Cryptographic Message Syntaxt (CMS), July 2004
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
3.1
ACBio instance
report generated by a biometric processing unit (BPU) compliant to this International Standard to show the validity of the result of one or more subprocesses executed in the BPU
3.2
authentication context for biometrics
ACBio
International Standard that specifies the form and encoding of ACBio instances
3.3
biometric
pertaining to the field of biometrics
3.4
biometric processing unit
BPU
entity that executes one or more subprocesses that perform a biometric verification at a uniform level of security
NOTE A sensor, a smart card, and a comparison device are examples of BPUs.
3.5
biometric processing unit certificate
BPU certificate
X.509 certificate that is issued to a BPU by a certification organization which enables the validator to determine the reliability of the BPU
3.6
biometric processing unit certification organization
BPU certification organization
organization which issues BPU certificates
3.7
biometric processing unit function report
BPU function report
report on the function of the BPU, which contains the evaluation results on each function in the BPU