1、IEEE Standard for Biometric Open Protocol IEEE Std 2410-2017 (Revision of IEEE 2410-2015) IEEE Communications Society Sponsored by the Standards Development Board and the IEEE Technical Activities Board Sponsored by the Technical Committee on COM/SDB IEEE 3 Park Avenue New York, NY 10016-5997 USAIEE
2、E Std 2410-2017 (Revision of IEEE 2410-2015) IEEE Standard for Biometric Open Protocol Sponsor Standards Development Board of the IEEE Communications Society and the Technical Committee on COM/SDB of the IEEE Technical Activities Board Approved 28 September 2017 IEEE-SA Standards BoardAbstract: Iden
3、tity assertion, role gathering, multilevel access control, assurance, and auditing are provided by the Biometric Open Protocol Standard (BOPS). The BOPS implementation includes software running on a client device, a trusted BOPS server, and an intrusion detection system. The BOPS implementation allo
4、ws pluggable components to replace existing components functionality, accepting integration into current operating environments in a short period of time. The BOPS implementation provides continuous protection to the resources and assurance of the placement and viability of adjudication and other ke
5、y features. Accountability is the mechanism that proves a service-level guarantee of security. The BOPS implementation allows the systems to meet security needs by using the application programming interface. The BOPS implementation need not know whether the underlying system is a relational databas
6、e management system or a search engine. The BOPS implementation functionality offers a “point-and-cut” mechanism to add the appropriate security to the production systems as well as to the systems in development. The architecture is language neutral, allowing Representational State Transfer (REST),
7、JavaScript Object Notation (JSON), and Secure Sockets Layer (SSL) or Transport Layer Security (TLS) to provide the communication interface. The architecture is built on the servlet specification, open SSLs, Java, JSON, REST, and an open persistent store. All tools adhere to open standards, allowing
8、maximum interoperability. Keywords: admin console, application, BOPS admin, BOPS cluster, BOPS IDS, BOPS server, client device IDS, IDS cluster, IEEE 2410, Jena Rules, liveness, original site admin, site admin, trusted adjudicated data, user, user device The Institute of Electrical and Electronics E
9、ngineers, Inc. 3 Park Avenue, New York, NY 10016-5997, USA Copyright 2017 by The Institute of Electrical and Electronics Engineers, Inc. All rights reserved. Published 20 October 2017. Printed in the United States of America. IEEE is a registered trademark in the U.S. Patent fitness for a particular
10、 purpose; non-infringement; and quality, accuracy, effectiveness, currency, or completeness of material. In addition, IEEE disclaims any and all conditions relating to: results; and workmanlike effort. IEEE standards documents are supplied “AS IS” and “WITH ALL FAULTS.” Use of an IEEE standard is wh
11、olly voluntary. The existence of an IEEE standard does not imply that there are no other ways to produce, test, measure, purchase, market, or provide other goods and services related to the scope of the IEEE standard. Furthermore, the viewpoint expressed at the time a standard is approved and issued
12、 is subject to change brought about through developments in the state of the art and comments received from users of the standard. In publishing and making its standards available, IEEE is not suggesting or rendering professional or other services for, or on behalf of, any person or entity nor is IE
13、EE undertaking to perform any duty owed by any other person or entity to another. Any person utilizing any IEEE Standards document, should rely upon his or her own independent judgment in the exercise of reasonable care in any given circumstances or, as appropriate, seek the advice of a competent pr
14、ofessional in determining the appropriateness of a given IEEE standard. IN NO EVENT SHALL IEEE BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO: PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR B
15、USINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE PUBLICATION, USE OF, OR RELIANCE UPON ANY STANDARD, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE AND REGARDLESS O
16、F WHETHER SUCH DAMAGE W AS FORESEEABLE.4 Copyright 2017 IEEE. All rights reserved. Translations The IEEE consensus development process involves the review of documents in English only. In the event that an IEEE standard is translated, only the English version published by IEEE should be considered t
17、he approved IEEE standard. Official statements A statement, written or oral, that is not processed in accordance with the IEEE-SA Standards Board Operations Manual shall not be considered or inferred to be the official position of IEEE or any of its committees and shall not be considered to be, or b
18、e relied upon as, a formal position of IEEE. At lectures, symposia, seminars, or educational courses, an individual presenting information on IEEE standards shall make it clear that his or her views should be considered the personal views of that individual rather than the formal position of IEEE. C
19、omments on standards Comments for revision of IEEE Standards documents are welcome from any interested party, regardless of membership affiliation with IEEE. However, IEEE does not provide consulting information or advice pertaining to IEEE Standards documents. Suggestions for changes in documents s
20、hould be in the form of a proposed change of text, together with appropriate supporting comments. Since IEEE standards represent a consensus of concerned interests, it is important that any responses to comments and questions also receive the concurrence of a balance of interests. For this reason, I
21、EEE and the members of its societies and Standards Coordinating Committees are not able to provide an instant response to comments or questions except in those cases where the matter has previously been addressed. For the same reason, IEEE does not respond to interpretation requests. Any person who
22、would like to participate in revisions to an IEEE standard is welcome to join the relevant IEEE working group. Comments on standards should be submitted to the following address: Secretary, IEEE-SA Standards Board 445 Hoes Lane Piscataway, NJ 08854 USA Laws and regulations Users of IEEE Standards do
23、cuments should consult all applicable laws and regulations. Compliance with the provisions of any IEEE Standards document does not imply compliance to any applicable regulatory requirements. Implementers of the standard are responsible for observing or referring to the applicable regulatory requirem
24、ents. IEEE does not, by the publication of its standards, intend to urge action that is not in compliance with applicable laws, and these documents may not be construed as doing so. Copyrights IEEE draft and approved standards are copyrighted by IEEE under US and international copyright laws. They a
25、re made available by IEEE and are adopted for a wide variety of both public and private uses. These include both use, by reference, in laws and regulations, and use in private self-regulation, standardization, and the promotion of engineering practices and methods. By making these documents availabl
26、e for use and adoption by public authorities and private users, IEEE does not waive any rights in copyright to the documents.5 Copyright 2017 IEEE. All rights reserved. Photocopies Subject to payment of the appropriate fee, IEEE will grant users a limited, non-exclusive license to photocopy portions
27、 of any individual standard for company or organizational internal use or individual, non-commercial use only. To arrange for payment of licensing fees, please contact Copyright Clearance Center, Customer Service, 222 Rosewood Drive, Danvers, MA 01923 USA; +1 978 750 8400. Permission to photocopy po
28、rtions of any individual standard for educational classroom use can also be obtained through the Copyright Clearance Center. Updating of IEEE Standards documents Users of IEEE Standards documents should be aware that these documents may be superseded at any time by the issuance of new editions or ma
29、y be amended from time to time through the issuance of amendments, corrigenda, or errata. An official IEEE document at any point in time consists of the current edition of the document together with any amendments, corrigenda, or errata then in effect. Every IEEE standard is subjected to review at l
30、east every 10 years. When a document is more than 10 years old and has not undergone a revision process, it is reasonable to conclude that its contents, although still of some value, do not wholly reflect the present state of the art. Users are cautioned to check to determine that they have the late
31、st edition of any IEEE standard. In order to determine whether a given document is the current edition and whether it has been amended through the issuance of amendments, corrigenda, or errata, visit the IEEE Xplore at http:/ ieeexplore .ieee .or g/ or contact IEEE at the address listed previously.
32、For more information about the IEEE-SA or IEEEs standards development process, visit the IEEE-SA Website at http:/ standards .ieee .or g. Errata Errata, if any, for all IEEE standards can be accessed on the IEEE-SA Website at the following URL: http:/ standards .ieee .org/ findstds/ errata/ index .h
33、tml. Users are encouraged to check this URL for errata periodically. Patents Attention is called to the possibility that implementation of this standard may require use of subject matter covered by patent rights. By publication of this standard, no position is taken by the IEEE with respect to the e
34、xistence or validity of any patent rights in connection therewith. If a patent holder or patent applicant has filed a statement of assurance via an Accepted Letter of Assurance, then the statement is listed on the IEEE- SA Website at http:/ standards .ieee .or g/ about/ sasb/ patcom/ patents .html.
35、Letters of Assurance may indicate whether the Submitter is willing or unwilling to grant licenses under patent rights without compensation or under reasonable rates, with reasonable terms and conditions that are demonstrably free of any unfair discrimination to applicants desiring to obtain such lic
36、enses. Essential Patent Claims may exist for which a Letter of Assurance has not been received. The IEEE is not responsible for identifying Essential Patent Claims for which a license may be required, for conducting inquiries into the legal validity or scope of Patents Claims, or determining whether
37、 any licensing terms or conditions provided in connection with submission of a Letter of Assurance, if any, or in any licensing agreements are reasonable or non-discriminatory. Users of this standard are expressly advised that determination of the validity of any patent rights, and the risk of infri
38、ngement of such rights, is entirely their own responsibility. Further information may be obtained from the IEEE Standards Association.6 Copyright 2017 IEEE. All rights reserved. Participants At the time this IEEE standard was completed, the Biometrics Open Protocol Working Group had the following me
39、mbership: Scott Streit, Chair Clayton Stewart, Vice Chair Elizabeth Belousov Bradley Boyer Stephen Suffian Mark Thompson The following members of the individual balloting committee voted on this standard. Balloters may have voted for approval, disapproval, or abstention. Charles Barest Sourav Dutta
40、Dan Friedman Fernando Garcia- Quismondo Randall Groves Marco Hernandez Werner Hoelzl Noriyuki Ikeuchi Piotr Karocki Stuart Kerry Maximilian Riegel Clayton Stewart Scott Streit Walter Struppler Stephen Suffian Mehmet Ulema John V ergis Oren Y uen When the IEEE-SA Standards Board approved this standar
41、d on 28 September 2017, it had the following membership: Jean-Phillipe Faure, Chair Gary Hoffman, Vice Chair John D. Kulick, Past Chair Konstantinos Karachalios, Secretary Chuck Adams Masayuki Ariyoshi Ted Burse Stephen Dukes Doug Edwards J. Travis Griffith Michael Janezic Thomas Koshy Joseph L. Koepfinger* Kevin Lu Daleep Mohla Damir Novosel Ronald C. Petersen Annette D. Reilly Robby Robson Dorothy Stanley Adrian Stephens Mehmet Ulema Phil Wennblom Howard Wolfman Y u Y uan *Member Emeritus
