ANSI INCITS383-2008 Information technology - Biometric Profile - Interoperability and Data Interchange Biometrics - Based Verification and Identification of Transportation Workers《.pdf

1、American National StandardDeveloped byfor Information Technology Biometric Profile Interoperability and Data Interchange Biometrics-Based Verificationand Identification ofTransportation WorkersANSI INCITS 383-2008ANSIINCITS383-2008Copyright American National Standards Institute Provided by IHS under

2、 license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-ANSIINCITS 383-2008Revision

3、 ofANSI INCITS 383-2004American National Standardfor Information Technology Biometric Profile Interoperability and Data Interchange Biometrics-Based Verificationand Identification ofTransportation WorkersSecretariatInformation Technology Industry CouncilApproved January 23, 2008 American National St

4、andards Institute, Inc.Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-Approval of an American National Standard requires review by ANSI that therequirements for due process, co

5、nsensus, and other criteria for approval havebeen met by the standards developer.Consensus is established when, in the judgement of the ANSI Board ofStandards Review, substantial agreement has been reached by directly andmaterially affected interests. Substantial agreement means much more thana simp

6、le majority, but not necessarily unanimity. Consensus requires that allviews and objections be considered, and that a concerted effort be madetowards their resolution.The use of American National Standards is completely voluntary; theirexistence does not in any respect preclude anyone, whether he ha

7、s approvedthe standards or not, from manufacturing, marketing, purchasing, or usingproducts, processes, or procedures not conforming to the standards.The American National Standards Institute does not develop standards andwill in no circumstances give an interpretation of any American NationalStanda

8、rd. Moreover, no person shall have the right or authority to issue aninterpretation of an American National Standard in the name of the AmericanNational Standards Institute. Requests for interpretations should beaddressed to the secretariat or sponsor whose name appears on the titlepage of this stan

9、dard.CAUTION NOTICE: This American National Standard may be revised orwithdrawn at any time. The procedures of the American National StandardsInstitute require that action be taken periodically to reaffirm, revise, orwithdraw this standard. Purchasers of American National Standards mayreceive curren

10、t information on all standards by calling or writing the AmericanNational Standards Institute.American National StandardPublished byAmerican National Standards Institute, Inc.25 West 43rd Street, New York, NY 10036Copyright 2008 by Information Technology Industry Council (ITI)All rights reserved.No

11、part of this publication may be reproduced in anyform, in an electronic retrieval system or otherwise,without prior written permission of ITI, 1250 Eye Street NW, Washington, DC 20005. Printed in the United States of AmericaCAUTION: The developers of this standard have requested that holders of pate

12、nts that may berequired for the implementation of the standard disclose such patents to the publisher. However,neither the developers nor the publisher have undertaken a patent search in order to identifywhich, if any, patents may apply to this standard. As of the date of publication of this standar

13、dand following calls for the identification of patents that may be required for the implementation ofthe standard, no such claims have been made. No further patent search is conducted by the de-veloper or publisher in respect to any standard it processes. No representation is made or impliedthat lic

14、enses are not required to avoid infringement in the use of this standard.Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-iContentsPageForeword . iii1 Scope. 12 Conformance . 13

15、Normative references. 13.1 Approved standards. 13.2 Standards under development. 24 Terms and definitions. 25 Environment. 75.1 Architecture 75.2 Token. 75.3 Token management system. 75.4 Command and control system . 75.5 Command and control administration system 86 Process 86.1 Enrollment 86.2 Issu

16、ance. 86.3 Activation to a local access control system 87 General biometric system 97.1 Conceptual diagram of general biometric system 97.2 Conceptual components of a general biometric system 97.2.1 Data capture subsystem 97.2.2 Transmission subsystem . 107.2.3 Signal processing subsystem 107.2.4 Da

17、ta storage subsystem 107.2.5 Matching subsystem 107.2.6 Decision subsystem. 107.2.7 Administration subsystem 117.2.8 Interface. 117.3 Functions of general biometric system 117.3.1 Enrollment 117.3.2 Verification . 117.3.3 Identification. 128 Privacy . 13Copyright American National Standards Institut

18、e Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-iiPageFigure1 Components of general biometric system . 9AnnexesA Requirements list . 14B Bibliography . 34Copyright American National Standards Institute Provided by IHS under

19、 license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-iiiForeword (This foreword is not part of American National Standard ANSI INCITS 383-2008.)This standard specifies a biometric profile for transportation workers. It defines a setof base standards a

20、nd criteria for applying those standards in applications where to-kens are used for access control and identification of employees. This standard is in-tended for use in the transportation industry and other industries where identificationand verification of employees is necessary to ensure safety a

21、nd integrity within thework environment. This document contains two annexes that are normative (Annexes A and B), whichare considered part of this standard, and one annex that is informative (Annex C),which is for information only and does not contain information required by this stan-dard.INCITS (T

22、he InterNational Committee for Information Technology Standards) is theANSI-recognized Standards Development Organization for information technologywithin the United States of America. Members of INCITS are drawn from Govern-ment, Corporations, Academia and other organizations with a material intere

23、st in thework of INCITS and its Technical Committees. INCITS does not restrict membershipand attracts participants in its technical work from 13 different countries, and oper-ates under the rules of the American National Standards Institute. In the field of Biometrics, INCITS has established the Tec

24、hnical Committee M1. Stan-dards developed by this Technical Committee have reached consensus throughoutthe development process and have been thoroughly reviewed through several PublicReview processes. In addition, this American National Standard has been approvedby the INCITS Executive Board and ANS

25、I Board of Standards Review for Publicationas an ANSI INCITS Standard.Requests for interpretation, suggestions for improvement or addenda, or defect re-ports are welcome. They should be sent to InterNational Committee for InformationTechnology Standards (INCITS), ITI, 1250 Eye Street, NW, Suite 200,

26、 Washington,DC 20005.This standard was processed and approved for submittal to ANSI by INCITS. Com-mittee approval of this standard does not necessarily imply that all committee mem-bers voted for its approval. At the time it approved this standard, INCITS had thefollowing members:Karen Higginbottom

27、, ChairJennifer Garner, SecretaryOrganization Represented Name of RepresentativeAdobe Systems, Inc Leslie BixelSteve Ziles (Alt.)AIM Global, Inc. Dan MullenCharles Biss (Alt.)Apple Computer, Inc. David MichaelElectronic Industries Alliance Edward Mikoski, Jr.David Thompson (Alt.)EMC Corporation Gary

28、 RobinsonFarance, Inc Frank FaranceTimothy Schoechle (Alt.)GS1 US Frank SharkeyJames Chronowski (Alt.)Mary Wilson (Alt.)Hewlett-Packard Company. Karen HigginbottomSteve Mills (Alt.)Scott Jameson (Alt.)Copyright American National Standards Institute Provided by IHS under license with ANSI Not for Res

29、aleNo reproduction or networking permitted without license from IHS-,-,-ivOrganization Represented Name of RepresentativeIBM Corporation . Ronald F. SillettiRobert Weir (Alt.)Sandy Block (Alt.)Richard Schwerdtfeger (Alt.)IEEE . Judith GormanTerry DeCourcelle (Alt.)Bill Ash (Alt.)Jodi Haasz (Alt.)Bob

30、 Labelle (Alt.)Intel. Philip WennblomDave Thewlis (Alt.)Jesse Walker (Alt.)Grace Wei (Alt.)Lexmark International. Don WrightDwight Lewis (Alt.)Paul Menard (Alt.)Microsoft Corporation . Jim HughesDon Stanwyck (Alt.)Isabelle Valet-Harper (Alt.)National Institute of Standards - extracting biometric dat

31、a from that sample; - comparing the biometric data with that contained in one or more reference templates; - deciding how well they match; and - indicating whether or not an identification or verification of identity has been achieved 4.9 biometric template data that represents the biometric measure

32、ment of an enrollee. NOTE: Used by a biometric system for comparison against submitted biometric samples 4.10 capture method of taking a biometric sample from an end user. 4.11 comparison process of comparing a biometric sample with a previously stored reference template or templates. NOTE: See also

33、 One-To-Many and One-To-One 4.12 claimant person submitting a biometric sample for verification or identification whilst claiming a legitimate or false identity. 4.13 database any storage of biometric templates and related end user information. NOTE: Even if only one biometric template or record is

34、stored, the database will simply be “a database of one”. Generally speaking, however, a database will contain a number of biometric records. Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license f

35、rom IHS-,-,-ANSI INCITS 383-2008 4 4.14 end-user person who interacts with a biometric system to enroll or have his/her identity checked 4.15 enrollee person who has a biometric reference template on file 4.16 enrollment process of collecting biometric samples from a person and the subsequent prepar

36、ation and storage of biometric reference templates representing that persons identity. 4.17 extraction process of converting a captured biometric sample into biometric data. 4.18 false acceptance when a biometric system incorrectly identifies an individual or incorrectly verifies an impostor against

37、 a claimed identity. 4.19 False Acceptance Rate/FAR probability that a biometric system will incorrectly identify an individual or will fail to reject an impostor. NOTE: The rate given normally assumes passive impostor attempts. The False Accept Rate may be estimated as FAR = NFA / NIIA or FAR = NFA

38、 / NIVA where FAR is the false acceptance rate NFA is the number of false acceptances NIIA is the number of impostor identification attempts NIVA is the number of impostor verification attempts 4.20 False Match Rate/FMR alternative to False Acceptance Rate. NOTE: Used to avoid confusion in applicati

39、ons that reject the claimant if their biometric data matches that of an enrollee. In such applications, the concepts of acceptance and rejection are reversed, thus reversing the meaning of False Acceptance and False Rejection. See also False Non-Match Rate 4.21 False Non Match Rate/FNMR alternative

40、to False Rejection Rate. NOTE: Used to avoid confusion in applications that reject the claimant if their biometric data matches that of an enrollee. In such applications, the concepts of acceptance and rejection are reversed, thus reversing the meaning of False Acceptance and False Rejection. See al

41、so False Match Rate 4.22 false rejection when a biometric system fails to identify an enrollee or fails to verify the legitimate claimed identity of an enrolee. Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitt

42、ed without license from IHS-,-,-ANSI INCITS 383-2008 54.23 False Rejection Rate/FRR probability that a biometric system will fail to identify an enrollee, or verify the legitimate claimed identity of an enrollee. NOTE: The False Rejection Rate may be estimated as follows: FRR = NFR / NEIA or FRR = N

43、FR / NEVA where FRR is the false rejection rate NFR is the number of false rejections NEIA is the number of enrollee identification attempts NEVA is the number of enrollee verification attempts This estimate assumes that the enrollee identification/verification attempts are representative of those f

44、or the whole population of end-users. The False Rejection Rate normally excludes Failure to Acquire errors. 4.24 identifier unique data string used as a key in the biometric system to name a persons identity and its associated attributes. NOTE: An example of an identifier would be a passport number.

45、 4.25 identity common sense notion of personal identity. NOTE: A persons name, personality, physical body, and history, including such attributes as nationality, educational achievements, employer, security clearances, financial and credit history, etc. In a biometric system, identity is typically e

46、stablished when the person is registered in the system through the use of so-called “breeder documents” such as birth certificate, passport, etc. 4.26 identification/identify one-to-many process of comparing a submitted biometric sample against all of the biometric reference templates on file to det

47、ermine whether it matches any of the templates and, if so, the identity of the enrollee whose template was matched. NOTE: The biometric system using the one-to-many approach is seeking to find an identity amongst a database rather than verify a claimed identity. Contrast with Verification. 4.27 matc

48、h/matching process of comparing a biometric sample(s) against a previously stored template(s) and scoring the level of similarity. 4.28 multiple biometric biometric system that includes more than one biometric technology. Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-ANSI INCITS 383-2008 6 4.29 one-to-few hybrid of one-to-many identification and one-to-one verification. NOTE: Typically, the one-to-a-few process involves comparing a subm