BS ISO IEC 24713-3-2009 Information technology - Biometric profiles for interoperability and data interchange - Biometrics-based verification and identification of seafare.pdf

1、BS ISO/IEC 24713-3:2009 ICS 35.040; 35.240.15 NO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAW BRITISH STANDARD Information technology Biometric profiles for interoperability and data exchange Part 3: Biometrics-based verification and identification of seafarersThis British Sta

2、ndard was published under the authority of the Standards Policy and Strategy Committee on 30 November 2009 BSI 2009 ISBN 978 0 580 56519 9 Amendments/corrigenda issued since publication Date Comments BS ISO/IEC 24713-3:2009 National foreword This British Standard is the UK implementation of ISO/IEC

3、24713-3:2009. The UK participation in its preparation was entrusted to Technical Committee IST/44, Biometrics. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provisions of a contract. U

4、sers are responsible for its correct application. Compliance with a British Standard cannot confer immunity from legal obligations.BS ISO/IEC 24713-3:2009Reference number ISO/IEC 24713-3:2009(E) ISO/IEC 2009INTERNATIONAL STANDARD ISO/IEC 24713-3 First edition 2009-09-01 Information technology Biomet

5、ric profiles for interoperability and data interchange Part 3: Biometrics-based verification and identification of seafarers Technologies de linformation Profils biomtriques pour interoprabilit et change de donnes Partie 3: Vrification base sur la biomtrie et identification des navigateurs BS ISO/IE

6、C 24713-3:2009 ISO/IEC 24713-3:2009(E) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing

7、the editing. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file

8、 can be found in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secreta

9、riat at the address given below. COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2009 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in wri

10、ting from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2009 All rights reservedBS IS

11、O/IEC 24713-3:2009 ISO/IEC 24713-3:2009(E) ISO/IEC 2009 All rights reserved iiiContents Page Foreword .v Introductionvi 1 Scope1 2 Conformance .1 3 Normative references1 4 Terms and definitions .2 5 Abbreviated terms.3 6 Application requirements .3 6.1 General .3 6.2 Requirements of ILO SID conventi

12、on4 6.2.1 Physical composition of the document 4 6.2.2 Personal data contained in the document4 6.2.3 Biometric data contained in the document 4 6.2.4 Visibility of data .5 6.2.5 Secure electronic database5 6.2.6 Restrictions on database content5 6.2.7 Access to the database.5 6.2.8 Data protection

13、and privacy .6 6.3 Suitable biometric modalities 6 6.4 Performance levels6 6.5 Data storage formats and data storage media .7 6.5.1 General .7 6.5.2 Two dimensional bar code .7 6.5.3 Contactless integrated circuit8 6.5.4 Secure electronic database8 6.6 Security requirements.10 6.6.1 General .10 6.6.

14、2 Protection of biometric data on the SID10 6.6.3 Authentication of biometric data on the SID 11 6.6.4 Protection of the secure electronic database 11 6.6.5 General security requirements 11 6.7 Enrolment procedures 12 6.8 Verification procedures 14 6.8.1 General .14 6.8.2 Off-line verification proce

15、dure .15 6.8.3 On-line verification procedure .16 Annex A (normative) Requirements list .18 A.1 General .18 A.2 Relationship between RL and corresponding ICS proformas18 A.3 Profile specific implementation conformance statement .18 A.4 Instruction for completing the ICS proforma .19 A.4.1 General st

16、ructure of the ICS proforma19 A.4.2 Additional Information 19 A.4.3 Exception Information.19 A.5 ICS proforma20 A.6 Interchange formats21 A.6.1 Finger image data (ISO/IEC 19794-4).21 A.6.2 Finger minutia data (ISO/IEC 19794-2) 23 BS ISO/IEC 24713-3:2009 ISO/IEC 24713-3:2009(E) iv ISO/IEC 2009 All ri

17、ghts reservedA.6.3 Face image data (ISO/IEC 19794-5)25 A.6.4 ISO/IEC 19785 (CBEFF) .28 Annex B (normative) CBEFF patron format for the SID 30 B.1 Patron30 B.2 Patron identifier .30 B.3 Patron format name.30 B.4 Patron format identifier .30 B.5 ASN.1 object identifier for this patron format.30 B.6 Do

18、main of use 30 B.7 Version identifier30 B.8 CBEFF version .31 B.9 General31 B.10 Bit oriented patron format specification and conformance statement31 B.10.1 Specification.32 B.11 Patron format conformance statement .32 B.11.1 Identifying information32 B.11.2 CBEFF-defined data elements and abstract

19、values.33 B.11.3 Patron defined data elements and abstract values33 Annex C (normative) CBEFF security block for the SID .34 C.1 Introduction34 C.2 SB owner 35 C.3 SB owner identifier 35 C.4 SB format name .35 C.5 SB format identifier35 C.6 ASN.1 object identifier for this SB format.35 C.7 Version i

20、dentifier35 C.8 SB specification.35 C.9 Size of the SB encoding36 Bibliography 37 BS ISO/IEC 24713-3:2009 ISO/IEC 24713-3:2009(E) ISO/IEC 2009 All rights reserved vForeword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the speci

21、alized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical co

22、mmittees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. Internati

23、onal Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting.

24、Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or al

25、l such patent rights. ISO/IEC 24713-3 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 24713 consists of the following parts, under the general title Information technology Biometric profiles for interoperability and data interc

26、hange: Part 1: Overview of biometric systems and biometric profiles Part 2: Physical access control for employees at airports Part 3: Biometrics-based verification and identification of seafarers BS ISO/IEC 24713-3:2009 ISO/IEC 24713-3:2009(E) vi ISO/IEC 2009 All rights reservedIntroduction The Inte

27、rnational Labour Organization, in response to a request from the International Maritime Organization, has adopted the Seafarers Identity Documents Convention (Revised), 2003 (No.185). This convention requires all seafarers from ratifying nations to be issued with an identity document that follows a

28、uniform format, has specific physical security features, and uses biometrics to link the seafarer to their identity document. Currently Convention No. 185 specifies the use of two fingerprints stored in a two-dimensional bar code, but the choice of biometric modality and storage medium could be chan

29、ged provided backwards compatibility is maintained. In order to support a globally interoperable system of Seafarers Identity Documents (SIDs), this part of ISO/IEC 24713 establishes a biometric profile to define how to use biometrics for verification and identification of seafarers at the various s

30、tages of document issuance and inspection. It defines a set of base standards and criteria for applying those standards in applications where identity documents are issued to seafarers and biometrics are used to link each document to the seafarer to whom it was issued. It attempts to provide informa

31、tion on the processes surrounding the enrolment and verification or identification of seafarers so that the biometric components of the system can be used in a proper context. It also addresses other system components such as the storage medium for the biometric data and the security of the system,

32、since these will affect the use of the biometric technology. This part of ISO/IEC 24713 is intended for use in the maritime industry, but can be applicable to other situations where identification and verification of document holders are necessary during document issuance or inspection. The use of b

33、iometric data includes identification checks during the issuance of the document, when watchlists can be checked and the entire database of existing seafarers can be searched to prevent a single seafarer from establishing multiple identities. It also includes the use of biometric data for verificati

34、on when a card is presented at a control point by a person claiming to be the seafarer to whom the card was issued. Such control points can include port entrances, ship gangplanks, border crossing points where a seafarer must verify themselves to immigration authorities and any other situation where

35、 the seafarer needs to verify their identity as a seafarer. This verification is expected to be performed not only indoors under controlled conditions, but also outdoors in difficult conditions, including harsh wet weather, salt spray, high humidity and high temperatures. Biometric equipment and cre

36、dentials have to be capable of functioning in all such environments. This part of ISO/IEC 24713 is not intended in any way to conflict with the existing international Convention No. 185 established by the International Labour Organization and ratified by various member states of the ILO. Instead, th

37、e approaches profiled in this part of ISO/IEC 24713 can be used to satisfy the requirements of the current version of Convention No. 185 while also allowing alternative approaches outlined in this part of ISO/IEC 24713 to be used in the future by the ILO if the technical documents associated with or

38、 annexes of Convention No. 185 are modified. To this end, the concept of backwards compatibility is stressed. The fundamental choices already made by the ILO of the use of a minutiae-based, two-finger template for seafarer verification, of the inclusion of a photograph and signature in the visible a

39、rea of the SID, and of the use of a two-dimensional barcode as a storage medium are respected in this profile. Where alternative technology choices are promoted, they are defined in such a way that there will still be backwards compatibility with existing SIDs. This part of ISO/IEC 24713 defines a C

40、BEFF patron format in Annex B and a CBEFF Security Block in Annex C that are suitable for the limited storage available in a two dimensional barcode and which may be relevant for other storage constrained environments. BS ISO/IEC 24713-3:2009 INTERNATIONAL STANDARD ISO/IEC 24713-3:2009(E) ISO/IEC 20

41、09 All rights reserved 1Information technology Biometric profiles for interoperability and data interchange Part 3: Biometrics-based verification and identification of seafarers 1 Scope This part of ISO/IEC 24713 specifies a biometric profile including data interchange formats, system requirements,

42、and the operation of biometric procedures on a Seafarers Identity Document (SID). The domain of applicability can extend to other situations where an interoperable biometrics-based identity document is required, but the main focus is on the use of biometrics on a Seafarers Identity Document (SID). T

43、his part of ISO/IEC 24713 notes that ILO Convention No. 185 already provides the overarching policy guidance on biometric verification and identification of seafarers and it relies on that guidance. Determining any matters of policy beyond those or in contradiction to those included in ILO Conventio

44、n No. 185 is explicitly out of scope of this part of ISO/IEC 24713. 2 Conformance All seafarers identity documents, systems used for issuing seafarers identity documents, and systems used for verification or identification of seafarers that claim conformance to this part of ISO/IEC 24713 shall confo

45、rm to the mandatory requirements of Clause 6 of this part of ISO/IEC 24713 and of the normative Annexes referenced therein. 3 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For unda

46、ted references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 7501-1, Identification cards Machine readable travel documents Part 1: Machine readable passport ISO/IEC 7501-3, Identification cards Machine readable travel documents Part 3: Machine readable o

47、fficial travel documents ISO/IEC 8824-1:2002, Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation ISO/IEC 8825-1:2002, Information technology ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished E

48、ncoding Rules (DER) ISO/IEC 8825-2:2002, Information technology ASN.1 encoding rules: Specification of Packed Encoding Rules (PER) BS ISO/IEC 24713-3:2009 ISO/IEC 24713-3:2009(E) 2 ISO/IEC 2009 All rights reservedISO/IEC 15438:2006, Information technology Automatic identification and data capture te

49、chniques PDF417 bar code symbology specification ISO/IEC 19785-1:2006, Information technology Common Biometric Exchange Formats Framework Part 1: Data element specification ISO/IEC 19785-3:2007, Information technology Common Biometric Exchange Formats Framework Part 3: Patron format specifications ISO/IEC 19794-2:2005, Information technology Biometric data interchange formats Part 2: Finger minutiae data ISO/IEC 19794-4:2005, Information technology Biometric data interchange formats Pa