1、INCITS/ISO/IEC 19785-1-20062008 (ISO/IEC 19785-1-2006, IDT) Information technology Common Biometric Exchange FormatsFramework Part 1: Data element specificationINCITS/ISO/IEC 19785-1-20062008(ISO/IEC 19785-1-2006, IDT)INCITS/ISO/IEC 19785-1-20062008 ii ITIC 2008 All rights reserved PDF disclaimer Th
2、is PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept th
3、erein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file;
4、the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. Adopted by INCITS (Inte
5、rNational Committee for Information Technology Standards) as an American National Standard. Date of ANSI Approval: 7/1/2008 Published by American National Standards Institute, 25 West 43rd Street, New York, New York 10036 Copyright 2008 by Information Technology Industry Council (ITI). All rights re
6、served. These materials are subject to copyright claims of International Standardization Organization (ISO), International Electrotechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council (ITI). Not for resale. No part of this publication m
7、ay be reproduced in any form, including an electronic retrieval system, without the prior written permission of ITI. All requests pertaining to this standard should be submitted to ITI, 1250 Eye Street NW, Washington, DC 20005. Printed in the United States of America INCITS/ISO/IEC 19785-1-20062008
8、ITIC 2008 - All rights reserved iiiContents Page Foreword iv Introduction.v 1 Scope1 2 Conformance .2 3 Normative references2 4 Terms and definitions .3 5 Symbols and abbreviated terms 6 6 Requirements.6 6.1 General .6 6.2 Defining a CBEFF patron format using the simple CBEFF BIR structure.7 6.2.1 S
9、tandard biometric header (SBH)8 6.2.2 The Biometric data block (BDB) 8 6.2.3 Security block (SB)8 6.3 Defining a CBEFF patron format using the complex CBEFF BIR structure8 6.4 Performing BIR transformations10 6.4.1 Transformations of enumerated abstract values.11 6.4.2 Transformations of non-enumera
10、ted data element values.11 6.5 CBEFF Data Elements.11 6.5.1 CBEFF_BDB_format_owner.11 6.5.2 CBEFF_BDB_format_type 12 6.5.3 CBEFF_BDB_encryption_options .12 6.5.4 CBEFF_BIR_integrity_options .13 6.5.5 CBEFF_subheader_count.13 6.5.6 CBEFF_BDB_biometric_type .13 6.5.7 CBEFF_BDB_biometric_subtype.15 6.5
11、.8 CBEFF_BDB_challenge_response15 6.5.9 CBEFF_BDB_creation_date .16 6.5.10 CBEFF_BDB_index .17 6.5.11 CBEFF_BDB_processed_level.17 6.5.12 CBEFF_BDB_product_owner.17 6.5.13 CBEFF_BDB_product_type18 6.5.14 CBEFF_BDB_purpose.18 6.5.15 CBEFF_BDB_quality .19 6.5.16 CBEFF_BDB_validity_period .19 6.5.17 CB
12、EFF_BIR_creation_date.20 6.5.18 CBEFF_BIR_creator 20 6.5.19 CBEFF_BIR_index.21 6.5.20 CBEFF_BIR_patron_format_owner .21 6.5.21 CBEFF_BIR_patron_format_type 22 6.5.22 CBEFF_BIR_payload.22 6.5.23 CBEFF_BIR_validity_period.23 6.5.24 CBEFF_patron_header_version.23 6.5.25 CBEFF_SB_format_owner24 6.5.26 C
13、BEFF_SB_format_type.24 6.5.27 CBEFF_ version.25 Annex A (normative) Format and content of a patron format conformance statement 26 INCITS/ISO/IEC 19785-1-20062008 iv ITIC 2008 - All rights reservedForeword ISO (the International Organization for Standardization) and IEC (the International Electrotec
14、hnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical a
15、ctivity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical co
16、mmittee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulate
17、d to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held resp
18、onsible for identifying any or all such patent rights. ISO/IEC 19785-1 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 19785 consists of the following parts, under the general title Information technology Common Biometric Excha
19、nge Formats Framework: Part 1: Data element specification Part 2: Procedures for the operation of the Biometric Registration Authority Part 3: Patron format specifications ISO/IEC 19785 is the first International Standard on CBEFF. Previous versions were published by the National Institute of Standa
20、rds and Technology (an agency of the government of the United States of America) and the Biometric Consortium Working Group. Since the last official non-ISO/IEC release was designated Version 1.1, the first version of ISO/IEC 19785-1 is designated Version 2.0. This is to distinguish the versions of
21、CBEFF products in the marketplace. INCITS/ISO/IEC 19785-1-20062008 ITIC 2008 - All rights reserved vIntroduction The Common Biometric Exchange Formats Framework (CBEFF) promotes interoperability of biometric-based applications and systems by specifying standard structures for biometric information r
22、ecords (BIRs) and a set of abstract data elements and values that can be used to create the header part of a CBEFF-compliant BIR. A biometric information record (BIR) is an encoding in accordance with a CBEFF patron format (see below). It is a unit of biometric data for storage in a database or for
23、interchange between systems or parts of systems. A BIR always has at least two parts: a standard biometric header (SBH) and at least one biometric data block (BDB). It may also have a third part called the security block (SB). CBEFF places no requirements on the content and encoding of a BDB except
24、that its length shall be an integral number of octets; the several parts of ISO/IEC 19794 specify standardized BDB formats for a number of biometric types. The primary purpose of CBEFF is to define abstract data elements (data elements with a set of defined abstract values, with their semantics) tha
25、t are expected to be of general utility as parts of the SBH in biometric information records. This part of ISO/IEC 19785 defines these data elements. A CBEFF patron format is defined for a particular domain of use. A CBEFF patron format is a full bit-level specification of encodings that can carry s
26、ome or all of the abstract values of some or all of the CBEFF data elements defined in this part of ISO/IEC 19785 (possibly with additional abstract values determined by the CBEFF patron), together with one or more biometric data blocks (BDBs) containing biometric data. It is intended that there be
27、a limited number of CBEFF patron formats in any given domain of use. However, new technologies may evolve that need new encoding rules (or support of more or different CBEFF data elements) and hence may require new CBEFF patron formats for a given domain of use. CBEFF also has a requirement that a B
28、iometric Registration Authority exist to assign unique identifiers to biometric organizations, to biometric data block (BDB) formats, to security block (SB) formats, and to CBEFF patron format specifications (see above); to publish them where appropriate; and to ensure that no conflicts occur betwee
29、n identifiers. ISO/IEC 19785-2 specifies the procedures under which the Biometric Registration Authority operates. CBEFF introduces the concept of assigning a unique identifier to a biometric organization. A CBEFF biometric organization is any organization, public or private, that requests and recei
30、ves a biometric organization identifier from the Biometric Registration Authority. CBEFF also introduces the concept of a CBEFF patron. A CBEFF patron is an organization (registered as a biometric organization) that specifies, or intends to specify, one or more CBEFF patron formats in an open and pu
31、blic manner. Only public standards organizations such as a standards body, working group, or industry consortium, can register as CBEFF patrons (other CBEFF biometric organizations are not CBEFF patrons). A CBEFF patron obtains a biometric organization identifier from the Biometric Registration Auth
32、ority, but has privileges beyond those of ordinary CBEFF biometric organizations: it can define, register and publish one or more CBEFF patron formats. The biometric organization identifier of a CBEFF patron can (but need not) be encoded in BIRs conforming to the patron formats defined by that CBEFF
33、 patron. CBEFF also defines the concept of a CBEFF biometric data block (BDB) format owner. A CBEFF BDB format owner is an organization (registered as a CBEFF biometric organization) that specifies one or more BDB format specifications. A BDB format owner obtains a CBEFF biometric organization ident
34、ifier from the Biometric Registration Authority. A BDB format owner can be a public standards organization (that would, coincidentally, also qualify as a CBEFF patron) or any organization that has a need to define its own vendor-specific BDB formats, whether they are to be published or not. INCITS/I
35、SO/IEC 19785-1-20062008 vi ITIC 2008 - All rights reservedA CBEFF BDB format owner defines one or more BDB formats and assigns a BDB format identifier that unambiguously identifies that BDB format within those defined by the BDB format owner. A BDB format identifier (and the corresponding format) ma
36、y, but need not, be registered with the Biometric Registration Authority. CBEFF also defines the concept of a CBEFF biometric product owner. A CBEFF biometric product owner is an organization (registered as a CBEFF biometric organization) that assigns a biometric product identifier to a biometric pr
37、oduct. A biometric product owner can be a public standards organization such as a standards body, working group, or industry consortium (such an organization would, coincidentally, also qualify as a CBEFF patron), or any organization, such as a vendor or integrator, that has a need to assign biometr
38、ic product identifiers to biometric products. A biometric product owner can also, but need not, be a BDB format owner and vice versa. A CBEFF biometric product owner assigns biometric product identifiers to one or more biometric products. The identified products can be hardware or software products
39、or a combination of hardware and software. Examples of biometric products are biometric service providers (BSPs as defined by ISO/IEC 19784-1) and biometric transforming applications. A biometric product identifier unambiguously identifies a biometric product within those that have been assigned an
40、identifier by the biometric product owner. A biometric product identifier may, but need not, be registered with the Biometric Registration Authority. CBEFF also defines the concept of a CBEFF security block (SB) format owner. A CBEFF security block format owner is an organization (registered as a CB
41、EFF biometric organization) that assigns a security block format identifier to a security block format. A CBEFF security block format owner can be a public standards organization such as a standards body, working group, or industry consortium (such an organization would, coincidentally, also qualify
42、 as a CBEFF patron), or any organization, such as a vendor or integrator, that has a need to assign security block format identifiers to security block formats. A security block format owner can also, but need not, be a BDB format owner and vice versa. A CBEFF security block format owner assigns sec
43、urity block format identifiers to one or more security block formats. A security block format identifier unambiguously identifies a security block format within those that have been assigned an identifier by the biometric security block format owner. A security block format identifier may, but need
44、not, be registered with the Biometric Registration Authority. This part of ISO/IEC 19785 specifies a simple CBEFF BIR structure and a complex CBEFF BIR structure, and gives the requirements for the specification of a CBEFF patron format based on one or the other of these abstract data structures. Th
45、is part of ISO/IEC 19785 also specifies transformations of BIRs from one CBEFF patron format into a different CBEFF patron format. Clause 2 specifies the conformance requirements for CBEFF patrons that define CBEFF patron formats. It also specifies the conformance requirements for biometric transfor
46、ming applications and for implementations claiming conformance to a specific patron format. Clause 6.5 specifies the CBEFF abstract data elements and the biometric transformation requirements for each data element. Annex A is normative. It defines a patron format conformance statement that patrons a
47、re to complete and publish as part of their patron format specifications as assurance that the format fully complies with CBEFF requirements. AMERICAN NATIONAL STANDARD INCITS/ISO/IEC 19785-1-20062008 ITIC 2008 - All rights reserved 1Information technology Common Biometric Exchange Formats Framework
48、 Part 1: Data element specification 1 Scope 1.1 This part of ISO/IEC 19785 defines structures and data elements for biometric information records (BIRs). 1.2 This part of ISO/IEC 19785 defines the concept of a domain of use to establish the applicability of a standard or specification that complies
49、with CBEFF requirements. 1.3 This part of ISO/IEC 19785 defines the concept of a CBEFF patron format, which is a published BIR format specification that complies with CBEFF requirements, specified by a CBEFF patron. 1.4 This part of ISO/IEC 19785 defines the abstract values (and associated semantics) of a set of CBEFF data elements to be used in the definition of CBEFF patron formats. 1.5 This part of ISO/IEC 19785 specifies the use of CBEFF data elements by a CBEFF patron to define the content and encoding of a standard biometric header (SBH) to
