BS ISO IEC 29109-1-2009 Information technology - Conformance testing methodology for biometric data interchange formats defined in ISO IEC 19794 Generalized conformance t.pdf

1、BS ISO/IEC 29109-1:2009 ICS 35.040 NO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAW BRITISH STANDARD Information technology Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 Part 1: Generalized conformance testing methodology Incorp

2、orating corrigendum December 2010National foreword This British Standard is the UK implementation of ISO/IEC 29109-1:2009, incorporating corrigendum December 2010. The start and finish of text introduced or altered by corrigendum is indicated in the text by tags. Text altered by ISO/IEC corrigendum

3、December 2010 is indicated in the text by . The UK participation in its preparation was entrusted to Technical Committee IST/44, Biometrics. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessa

4、ry provisions of a contract. Users are responsible for its correct application. Compliance with a British Standard cannot confer immunity from legal obligations. BS ISO/IEC 29109-1:2009 This British Standard was published under the authority of the Standards Policy and Strategy Committee on 30 Septe

5、mber 2009 BSI 2011 Amendments/corrigenda issued since publication Date Comments 30 April 2011 I m p l e m e n t a t i o n o f I S O / I E C c o r r i g e n d u m D e c e m b e r 2 0 1 0 ISBN 978 0 580 73600 1 Reference number ISO/IEC 29109-1:2009(E) ISO/IEC 2011INTERNATIONAL STANDARD ISO/IEC 29109-1

6、 First edition 2009-08-01 Information technology Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 Part 1: Generalized conformance testing methodology Technologies de linformation Mthodologie dessai de conformit pour les formats dinterchange de donnes bi

7、omtriques dfinis dans lISO/CEI 19794 Partie 1: Mthodologie dessai de conformit gnralise BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited

8、unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trade

9、mark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies

10、. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2009 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any

11、 means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail c

12、opyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2011BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) ISO/IEC 2011 iii Contents Page Foreword iv Introduction v 1 Scope . 1 2 Conformance. 1 3 Normative references . 1 4 Terms and definitions. 2 5 Abbreviated terms 5 6 Conformance tes

13、ting framework. 5 6.1 Limitations. 5 6.2 Managing data records. 5 6.3 Conformance testing types . 6 6.4 Conformance testing levels. 6 6.4.1 Hierarchy of Conformance Tests 6 6.4.2 Level 1 Data format conformance 6 6.4.3 Level 2 Internal consistency checking. 7 6.4.4 Level 3 Content checking 7 6.5 Sam

14、ple data sets for Level 3 conformance testing. 8 7 Common assertion descriptors for Level 1 and 2 testing 9 7.1 General considerations 9 7.2 Assertions for big-endian encoding . 10 7.3 Assertion element descriptions 10 7.3.1 Purpose of common assertion descriptions . 10 7.3.2 Field Names. 10 7.3.3 O

15、perators. 10 7.3.4 Operands . 11 7.3.5 Other assertion elements. 12 8 Conformance testing and reporting methodology 12 8.1 Conformance requirements and implementation conformance statement 12 8.1.1 Necessity of clear description of requirements and capabilities 12 8.1.2 Claimed conformance and decla

16、red conformance . 13 8.1.3 Requirements of the base standard 13 8.1.4 Explanations of columns in requirements table 15 8.1.5 Level 1 and Level 2 conformance assertions 17 8.1.6 Explanations of columns in Level 1 and Level 2 assertions table 21 8.2 Test procedures 22 8.2.1 Basic test workflow 22 8.2.

17、2 Minimum number of BDIRs and IBDRs required. 23 8.3 Test reports . 24 8.3.1 Purpose of the test report 24 8.3.2 Minimum content of the test report 24 Bibliography . 26 BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) iv ISO/IEC 2011Foreword ISO (the International Organization for Standardization) an

18、d IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal wi

19、th particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC ha

20、ve established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the join

21、t technical committee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights.

22、 ISO and IEC shall not be held responsible for identifying any or all such patent rights. ISO/IEC 29109-1 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 29109 consists of the following parts, under the general title Informatio

23、n technology Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794: Part 1: Generalized conformance testing methodology Part 2: Finger minutiae data Part 4: Finger image data Part 10: Hand geometry silhouette data The following parts are under preparation: P

24、art 3: Finger pattern spectral data Part 5: Face image data Part 6: Iris image data Part 7: Signature/sign time series data Part 8: Finger pattern skeletal data Part 9: Vascular image data Part 11: Signature/sign processed dynamic data Part 13: Voice data Part 14: DNA data BS ISO/IEC 29109-1:2009 IS

25、O/IEC 29109-1:2009(E) ISO/IEC 2011 v Introduction ISO/IEC 19794 is a multi-part International Standard developed by ISO/IEC JTC 1, SC 37 that specifies a biometric data interchange format for different biometric modalities or technologies. It is expected that future parts of ISO/IEC 19794 for additi

26、onal modalities or technologies will be developed. End users of biometric systems desire to use ISO/IEC 19794 and other standards to ensure that components of the biometric system can be substituted with other components from different vendors with a minimum of effort, and also to ensure that biomet

27、ric data produced by one system can be used by another system. In order to achieve this, it is critical that systems claimed to conform to a standard actually are conformant, and thus there is a need for conformance testing methodology standards for each of the biometric data interchange formats spe

28、cified in ISO/IEC 19794, in order to provide a reasonable degree of assurance that a conformance claim has validity. In fact, no test can be absolutely comprehensive and prove that a given system is conformant under all possible circumstances, especially when there are optional components of the sta

29、ndard. A well designed conformance test can, however, test all of the most likely sources of problems and ensure that the implementation under test conforms under a reasonable set of circumstances, giving assurance, but not a guarantee, of conformance. There are many different types of conformance t

30、esting that may be appropriate for the various parts of ISO/IEC 19794. Some of these tests are highly specific to each data interchange format but some of them have many common elements across all of the formats. Therefore, it appears that a multi-part conformance testing standard, ISO/IEC 29109, wi

31、ll be useful. This part of ISO/IEC 29109 describes the different types of conformance testing. It then goes on to provide details of the common elements for defining test assertions. This part of ISO/IEC 29109 also provides guidelines for conducting the tests and reporting the results of the tests.

32、The specific tests and assertions for each biometric data interchange format are left to the subsequent parts, one for each part of ISO/IEC 19794. BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) BS ISO/IEC 29109-1:2009 INTERNATIONAL STANDARD ISO/IEC 29109-1:2009(E) ISO/IEC 2011 1 Information technol

33、ogy Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 Part 1: Generalized conformance testing methodology 1 Scope This part of ISO/IEC 29109 specifies the concepts, test types and conformance testing methodologies to test biometric data interchange recor

34、ds, as specified in ISO/IEC 19794, or computer algorithms that create biometric data interchange records. This part of ISO/IEC 29109 defines two types (A and B) and three levels (1, 2 and 3) of conformance testing, but it only provides a detailed description and methodology for the three levels of T

35、ype A testing. In the case of the first two levels, there are many common test elements, and so the assertion language for specifying Level 1 and Level 2 test assertions is defined in this part of ISO/IEC 29109. ISO/IEC 29109 is not concerned with testing of other characteristics of biometric produc

36、ts or other types of testing of biometric products (i.e. acceptance, performance, robustness, security). This part of ISO/IEC 29109 explicitly does not cover the following areas: detailed test elements and assertions or descriptions of any mandatory standard datasets required for testing, which are

37、provided in the other parts of ISO/IEC 29109, each of which specifies conformance testing for a specific base standard; testing whether implementations under test (IUTs) that claim to be able to use conformant biometric data interchange records can correctly process such biometric data interchange r

38、ecords (Type B testing). 2 Conformance Biometric data interchange format conformance tests that claim conformance to this part of ISO/IEC 29109 shall satisfy the normative requirements of the methodology for those levels of test they are claiming to perform, as specified in Clauses 6, 7 and 8. Addit

39、ionally, any Level 1 or Level 2 tests shall use the assertion types defined in Clause 7 with the specific assertion details given in the relevant subsequent parts of ISO/IEC 29109. Implementations of ISO/IEC 19794 tested according to the methodology specified in ISO/IEC 29109 may claim conformance o

40、nly to those requirements specified in ISO/IEC 19794 that are tested by the test methods established by this methodology. 3 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undate

41、d references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 19794-1:2006, Information technology Biometric data interchange formats Part 1: Framework BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) 2 4 Terms and definitions For the purposes of this documen

42、t, the terms and definitions given in ISO/IEC 19794-1 and the following apply. 4.1 assertion specification for testing a conformance requirement in an implementation under test expressed in a formal assertion definition language 4.2 assertion test specification of software or procedural methods that

43、 generate the test outcomes used for assessment of conformance to an assertion NOTE Adapted from the definition of “assertion test” in ISO/IEC 13210:1999. 4.3 attestation issue of a statement, based on a decision that fulfillment of specified requirements has been demonstrated NOTE Adapted from the

44、definition of “attestation” in ISO/IEC 17000:2004. 4.4 base standard part of ISO/IEC 19794 containing the specification that is the subject of the conformance testing 4.5 biometric characteristic biological and behavioural characteristic of an individual that can be detected and from which distingui

45、shing, repeatable biometric features can be extracted for the purpose of automated recognition of individuals 4.6 biometric data interchange record BDIR data package containing biometric data that claims to be in the form prescribed by a base standard NOTE If the BDIR is encapsulated in a Common Bio

46、metric Exchange File Format (CBEFF) record, then the BDIR is also a biometric data block (BDB), as defined in ISO/IEC 19785 (all parts), but this will not always be the case for data records defined in ISO/IEC 19794. 4.7 certification third-party attestation related to products ISO/IEC 17000:2004 4.

47、8 conformance fulfillment by a product, process, or service of all relevant specified conformance requirements 4.9 conformance requirement requirement stated in a base standard and defined in a finite, measurable, and unambiguous manner NOTE Adapted from the definition of “conformance requirement” i

48、n ISO/IEC 13210:1999. 4.10 conformance test specified technical procedure of conformance testing ISO/IEC 2011BS ISO/IEC 29109-1:2009 ISO/IEC 29109-1:2009(E) ISO/IEC 2011 3 4.11 conformance testing laboratory organization that carries out conformance testing NOTE This can be the creator of the IUT, t

49、he user of the IUT, or an unbiased third party. 4.12 conformance testing suite test software used to automate certain types of conformance testing 4.13 conformity assessment demonstration that specified requirements relating to a product, process, system, person or body are fulfilled ISO/IEC 17000:2004 4.14 declaration declaration of conformity first-party attestation ISO/IEC 17000:2004 4.15 implementation conformance statement statement by the supplier of an implementation under test that