BS ISO IEC 24713-3-2009 Information technology - Biometric profiles for interoperability and data interchange - Biometrics-based verification and identification of seafarers《信息技术 互.pdf

1、BS ISO/IEC24713-3:2009ICS 35.040; 35.240.15NO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAWBRITISH STANDARDInformationtechnology Biometric profiles forinteroperability anddata exchangePart 3: Biometrics-based verificationand identification of seafarersThis British Standardwas p

2、ublished underthe authority of theStandards Policy andStrategy Committee on 30November 2009 BSI 2009ISBN 978 0 580 56519 9Amendments/corrigenda issued since publicationDate CommentsBS ISO/IEC 24713-3:2009National forewordThis British Standard is the UK implementation of ISO/IEC24713-3:2009.The UK pa

3、rticipation in its preparation was entrusted to TechnicalCommittee IST/44, Biometrics.A list of organizations represented on this committee can be obtained onrequest to its secretary.This publication does not purport to include all the necessary provisionsof a contract. Users are responsible for its

4、 correct application.Compliance with a British Standard cannot confer immunityfrom legal obligations.BS ISO/IEC 24713-3:2009Reference numberISO/IEC 24713-3:2009(E)ISO/IEC 2009INTERNATIONAL STANDARD ISO/IEC24713-3First edition2009-09-01Information technology Biometric profiles for interoperability an

5、d data interchange Part 3: Biometrics-based verification and identification of seafarers Technologies de linformation Profils biomtriques pour interoprabilit et change de donnes Partie 3: Vrification base sur la biomtrie et identification des navigateurs BS ISO/IEC 24713-3:2009ISO/IEC 24713-3:2009(E

6、) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file

7、, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info rel

8、ative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPY

9、RIGHT PROTECTED DOCUMENT ISO/IEC 2009 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address b

10、elow or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2009 All rights reservedBS ISO/IEC 24713-3:2009ISO/IEC 24713-3:200

11、9(E) ISO/IEC 2009 All rights reserved iiiContents Page Foreword .v Introductionvi 1 Scope1 2 Conformance .1 3 Normative references1 4 Terms and definitions .2 5 Abbreviated terms.3 6 Application requirements .3 6.1 General .3 6.2 Requirements of ILO SID convention4 6.2.1 Physical composition of the

12、document 4 6.2.2 Personal data contained in the document4 6.2.3 Biometric data contained in the document 4 6.2.4 Visibility of data .5 6.2.5 Secure electronic database5 6.2.6 Restrictions on database content5 6.2.7 Access to the database.5 6.2.8 Data protection and privacy .6 6.3 Suitable biometric

13、modalities 6 6.4 Performance levels6 6.5 Data storage formats and data storage media .7 6.5.1 General .7 6.5.2 Two dimensional bar code .7 6.5.3 Contactless integrated circuit8 6.5.4 Secure electronic database8 6.6 Security requirements.10 6.6.1 General .10 6.6.2 Protection of biometric data on the

14、SID10 6.6.3 Authentication of biometric data on the SID 11 6.6.4 Protection of the secure electronic database 11 6.6.5 General security requirements 11 6.7 Enrolment procedures 12 6.8 Verification procedures 14 6.8.1 General .14 6.8.2 Off-line verification procedure .15 6.8.3 On-line verification pr

15、ocedure .16 Annex A (normative) Requirements list .18 A.1 General .18 A.2 Relationship between RL and corresponding ICS proformas18 A.3 Profile specific implementation conformance statement .18 A.4 Instruction for completing the ICS proforma .19 A.4.1 General structure of the ICS proforma19 A.4.2 Ad

16、ditional Information 19 A.4.3 Exception Information.19 A.5 ICS proforma20 A.6 Interchange formats21 A.6.1 Finger image data (ISO/IEC 19794-4).21 A.6.2 Finger minutia data (ISO/IEC 19794-2) 23 BS ISO/IEC 24713-3:2009ISO/IEC 24713-3:2009(E) iv ISO/IEC 2009 All rights reservedA.6.3 Face image data (ISO

17、/IEC 19794-5)25 A.6.4 ISO/IEC 19785 (CBEFF) .28 Annex B (normative) CBEFF patron format for the SID 30 B.1 Patron30 B.2 Patron identifier .30 B.3 Patron format name.30 B.4 Patron format identifier .30 B.5 ASN.1 object identifier for this patron format.30 B.6 Domain of use 30 B.7 Version identifier30

18、 B.8 CBEFF version .31 B.9 General31 B.10 Bit oriented patron format specification and conformance statement31 B.10.1 Specification.32 B.11 Patron format conformance statement .32 B.11.1 Identifying information32 B.11.2 CBEFF-defined data elements and abstract values.33 B.11.3 Patron defined data el

19、ements and abstract values33 Annex C (normative) CBEFF security block for the SID .34 C.1 Introduction34 C.2 SB owner 35 C.3 SB owner identifier 35 C.4 SB format name .35 C.5 SB format identifier35 C.6 ASN.1 object identifier for this SB format.35 C.7 Version identifier35 C.8 SB specification.35 C.9

20、 Size of the SB encoding36 Bibliography 37 BS ISO/IEC 24713-3:2009ISO/IEC 24713-3:2009(E) ISO/IEC 2009 All rights reserved vForeword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardizat

21、ion. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual

22、 interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance

23、 with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard

24、 requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. ISO/IEC 24713-3 wa

25、s prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 24713 consists of the following parts, under the general title Information technology Biometric profiles for interoperability and data interchange: Part 1: Overview of biometric sys

26、tems and biometric profiles Part 2: Physical access control for employees at airports Part 3: Biometrics-based verification and identification of seafarers BS ISO/IEC 24713-3:2009ISO/IEC 24713-3:2009(E) vi ISO/IEC 2009 All rights reservedIntroduction The International Labour Organization, in respons

27、e to a request from the International Maritime Organization, has adopted the Seafarers Identity Documents Convention (Revised), 2003 (No.185). This convention requires all seafarers from ratifying nations to be issued with an identity document that follows a uniform format, has specific physical sec

28、urity features, and uses biometrics to link the seafarer to their identity document. Currently Convention No. 185 specifies the use of two fingerprints stored in a two-dimensional bar code, but the choice of biometric modality and storage medium could be changed provided backwards compatibility is m

29、aintained. In order to support a globally interoperable system of Seafarers Identity Documents (SIDs), this part of ISO/IEC 24713 establishes a biometric profile to define how to use biometrics for verification and identification of seafarers at the various stages of document issuance and inspection

30、. It defines a set of base standards and criteria for applying those standards in applications where identity documents are issued to seafarers and biometrics are used to link each document to the seafarer to whom it was issued. It attempts to provide information on the processes surrounding the enr

31、olment and verification or identification of seafarers so that the biometric components of the system can be used in a proper context. It also addresses other system components such as the storage medium for the biometric data and the security of the system, since these will affect the use of the bi

32、ometric technology. This part of ISO/IEC 24713 is intended for use in the maritime industry, but can be applicable to other situations where identification and verification of document holders are necessary during document issuance or inspection. The use of biometric data includes identification che

33、cks during the issuance of the document, when watchlists can be checked and the entire database of existing seafarers can be searched to prevent a single seafarer from establishing multiple identities. It also includes the use of biometric data for verification when a card is presented at a control

34、point by a person claiming to be the seafarer to whom the card was issued. Such control points can include port entrances, ship gangplanks, border crossing points where a seafarer must verify themselves to immigration authorities and any other situation where the seafarer needs to verify their ident

35、ity as a seafarer. This verification is expected to be performed not only indoors under controlled conditions, but also outdoors in difficult conditions, including harsh wet weather, salt spray, high humidity and high temperatures. Biometric equipment and credentials have to be capable of functionin

36、g in all such environments. This part of ISO/IEC 24713 is not intended in any way to conflict with the existing international Convention No. 185 established by the International Labour Organization and ratified by various member states of the ILO. Instead, the approaches profiled in this part of ISO

37、/IEC 24713 can be used to satisfy the requirements of the current version of Convention No. 185 while also allowing alternative approaches outlined in this part of ISO/IEC 24713 to be used in the future by the ILO if the technical documents associated with or annexes of Convention No. 185 are modifi

38、ed. To this end, the concept of backwards compatibility is stressed. The fundamental choices already made by the ILO of the use of a minutiae-based, two-finger template for seafarer verification, of the inclusion of a photograph and signature in the visible area of the SID, and of the use of a two-d

39、imensional barcode as a storage medium are respected in this profile. Where alternative technology choices are promoted, they are defined in such a way that there will still be backwards compatibility with existing SIDs. This part of ISO/IEC 24713 defines a CBEFF patron format in Annex B and a CBEFF

40、 Security Block in Annex C that are suitable for the limited storage available in a two dimensional barcode and which may be relevant for other storage constrained environments. BS ISO/IEC 24713-3:2009INTERNATIONAL STANDARD ISO/IEC 24713-3:2009(E) ISO/IEC 2009 All rights reserved 1Information techno

41、logy Biometric profiles for interoperability and data interchange Part 3: Biometrics-based verification and identification of seafarers 1 Scope This part of ISO/IEC 24713 specifies a biometric profile including data interchange formats, system requirements, and the operation of biometric procedures

42、on a Seafarers Identity Document (SID). The domain of applicability can extend to other situations where an interoperable biometrics-based identity document is required, but the main focus is on the use of biometrics on a Seafarers Identity Document (SID). This part of ISO/IEC 24713 notes that ILO C

43、onvention No. 185 already provides the overarching policy guidance on biometric verification and identification of seafarers and it relies on that guidance. Determining any matters of policy beyond those or in contradiction to those included in ILO Convention No. 185 is explicitly out of scope of th

44、is part of ISO/IEC 24713. 2 Conformance All seafarers identity documents, systems used for issuing seafarers identity documents, and systems used for verification or identification of seafarers that claim conformance to this part of ISO/IEC 24713 shall conform to the mandatory requirements of Clause

45、 6 of this part of ISO/IEC 24713 and of the normative Annexes referenced therein. 3 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the

46、referenced document (including any amendments) applies. ISO/IEC 7501-1, Identification cards Machine readable travel documents Part 1: Machine readable passport ISO/IEC 7501-3, Identification cards Machine readable travel documents Part 3: Machine readable official travel documents ISO/IEC 8824-1:20

47、02, Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation ISO/IEC 8825-1:2002, Information technology ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER) ISO/IEC 8825-2:2002, I

48、nformation technology ASN.1 encoding rules: Specification of Packed Encoding Rules (PER) BS ISO/IEC 24713-3:2009ISO/IEC 24713-3:2009(E) 2 ISO/IEC 2009 All rights reservedISO/IEC 15438:2006, Information technology Automatic identification and data capture techniques PDF417 bar code symbology specific

49、ation ISO/IEC 19785-1:2006, Information technology Common Biometric Exchange Formats Framework Part 1: Data element specification ISO/IEC 19785-3:2007, Information technology Common Biometric Exchange Formats Framework Part 3: Patron format specifications ISO/IEC 19794-2:2005, Information technology Biometric data interchange formats Part 2: Finger minutiae data ISO/IEC 19794-4:2005, Information technology Biometric data interchange formats Part 4: Finger image data ISO/IEC 19794-5:2005,