1、INCITS/ISO/IEC 19785-1-20062008 (ISO/IEC 19785-1-2006, IDT) Information technology Common Biometric Exchange FormatsFramework Part 1: Data element specificationINCITS/ISO/IEC 19785-1-20062008(ISO/IEC 19785-1-2006, IDT)Copyright American National Standards Institute Provided by IHS under license with
2、 ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS/ISO/IEC 19785-1-20062008 ii ITIC 2008 All rights reserved PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but sh
3、all not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area
4、. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by
5、 ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. Adopted by INCITS (InterNational Committee for Information Technology Standards) as an American National Standard. Date of ANSI Approval: 7/1/2008 Publi
6、shed by American National Standards Institute, 25 West 43rd Street, New York, New York 10036 Copyright 2008 by Information Technology Industry Council (ITI). All rights reserved. These materials are subject to copyright claims of International Standardization Organization (ISO), International Electr
7、otechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council (ITI). Not for resale. No part of this publication may be reproduced in any form, including an electronic retrieval system, without the prior written permission of ITI. All requests
8、 pertaining to this standard should be submitted to ITI, 1250 Eye Street NW, Washington, DC 20005. Printed in the United States of America Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license fro
9、m IHS-,-,-INCITS/ISO/IEC 19785-1-20062008 ITIC 2008 - All rights reserved iiiContents Page Foreword iv Introduction.v 1 Scope1 2 Conformance .2 3 Normative references2 4 Terms and definitions .3 5 Symbols and abbreviated terms 6 6 Requirements.6 6.1 General .6 6.2 Defining a CBEFF patron format usin
10、g the simple CBEFF BIR structure.7 6.2.1 Standard biometric header (SBH)8 6.2.2 The Biometric data block (BDB) 8 6.2.3 Security block (SB)8 6.3 Defining a CBEFF patron format using the complex CBEFF BIR structure8 6.4 Performing BIR transformations10 6.4.1 Transformations of enumerated abstract valu
11、es.11 6.4.2 Transformations of non-enumerated data element values.11 6.5 CBEFF Data Elements.11 6.5.1 CBEFF_BDB_format_owner.11 6.5.2 CBEFF_BDB_format_type 12 6.5.3 CBEFF_BDB_encryption_options .12 6.5.4 CBEFF_BIR_integrity_options .13 6.5.5 CBEFF_subheader_count.13 6.5.6 CBEFF_BDB_biometric_type .1
12、3 6.5.7 CBEFF_BDB_biometric_subtype.15 6.5.8 CBEFF_BDB_challenge_response15 6.5.9 CBEFF_BDB_creation_date .16 6.5.10 CBEFF_BDB_index .17 6.5.11 CBEFF_BDB_processed_level.17 6.5.12 CBEFF_BDB_product_owner.17 6.5.13 CBEFF_BDB_product_type18 6.5.14 CBEFF_BDB_purpose.18 6.5.15 CBEFF_BDB_quality .19 6.5.
13、16 CBEFF_BDB_validity_period .19 6.5.17 CBEFF_BIR_creation_date.20 6.5.18 CBEFF_BIR_creator 20 6.5.19 CBEFF_BIR_index.21 6.5.20 CBEFF_BIR_patron_format_owner .21 6.5.21 CBEFF_BIR_patron_format_type 22 6.5.22 CBEFF_BIR_payload.22 6.5.23 CBEFF_BIR_validity_period.23 6.5.24 CBEFF_patron_header_version.
14、23 6.5.25 CBEFF_SB_format_owner24 6.5.26 CBEFF_SB_format_type.24 6.5.27 CBEFF_ version.25 Annex A (normative) Format and content of a patron format conformance statement 26 Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networ
15、king permitted without license from IHS-,-,-INCITS/ISO/IEC 19785-1-20062008 iv ITIC 2008 - All rights reservedForeword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National
16、bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Oth
17、er international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rule
18、s given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard requires appr
19、oval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. ISO/IEC 19785-1 was prepared by
20、Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 19785 consists of the following parts, under the general title Information technology Common Biometric Exchange Formats Framework: Part 1: Data element specification Part 2: Procedures for the op
21、eration of the Biometric Registration Authority Part 3: Patron format specifications ISO/IEC 19785 is the first International Standard on CBEFF. Previous versions were published by the National Institute of Standards and Technology (an agency of the government of the United States of America) and th
22、e Biometric Consortium Working Group. Since the last official non-ISO/IEC release was designated Version 1.1, the first version of ISO/IEC 19785-1 is designated Version 2.0. This is to distinguish the versions of CBEFF products in the marketplace. Copyright American National Standards Institute Prov
23、ided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS/ISO/IEC 19785-1-20062008 ITIC 2008 - All rights reserved vIntroduction The Common Biometric Exchange Formats Framework (CBEFF) promotes interoperability of biometric-based ap
24、plications and systems by specifying standard structures for biometric information records (BIRs) and a set of abstract data elements and values that can be used to create the header part of a CBEFF-compliant BIR. A biometric information record (BIR) is an encoding in accordance with a CBEFF patron
25、format (see below). It is a unit of biometric data for storage in a database or for interchange between systems or parts of systems. A BIR always has at least two parts: a standard biometric header (SBH) and at least one biometric data block (BDB). It may also have a third part called the security b
26、lock (SB). CBEFF places no requirements on the content and encoding of a BDB except that its length shall be an integral number of octets; the several parts of ISO/IEC 19794 specify standardized BDB formats for a number of biometric types. The primary purpose of CBEFF is to define abstract data elem
27、ents (data elements with a set of defined abstract values, with their semantics) that are expected to be of general utility as parts of the SBH in biometric information records. This part of ISO/IEC 19785 defines these data elements. A CBEFF patron format is defined for a particular domain of use. A
28、 CBEFF patron format is a full bit-level specification of encodings that can carry some or all of the abstract values of some or all of the CBEFF data elements defined in this part of ISO/IEC 19785 (possibly with additional abstract values determined by the CBEFF patron), together with one or more b
29、iometric data blocks (BDBs) containing biometric data. It is intended that there be a limited number of CBEFF patron formats in any given domain of use. However, new technologies may evolve that need new encoding rules (or support of more or different CBEFF data elements) and hence may require new C
30、BEFF patron formats for a given domain of use. CBEFF also has a requirement that a Biometric Registration Authority exist to assign unique identifiers to biometric organizations, to biometric data block (BDB) formats, to security block (SB) formats, and to CBEFF patron format specifications (see abo
31、ve); to publish them where appropriate; and to ensure that no conflicts occur between identifiers. ISO/IEC 19785-2 specifies the procedures under which the Biometric Registration Authority operates. CBEFF introduces the concept of assigning a unique identifier to a biometric organization. A CBEFF bi
32、ometric organization is any organization, public or private, that requests and receives a biometric organization identifier from the Biometric Registration Authority. CBEFF also introduces the concept of a CBEFF patron. A CBEFF patron is an organization (registered as a biometric organization) that
33、specifies, or intends to specify, one or more CBEFF patron formats in an open and public manner. Only public standards organizations such as a standards body, working group, or industry consortium, can register as CBEFF patrons (other CBEFF biometric organizations are not CBEFF patrons). A CBEFF pat
34、ron obtains a biometric organization identifier from the Biometric Registration Authority, but has privileges beyond those of ordinary CBEFF biometric organizations: it can define, register and publish one or more CBEFF patron formats. The biometric organization identifier of a CBEFF patron can (but
35、 need not) be encoded in BIRs conforming to the patron formats defined by that CBEFF patron. CBEFF also defines the concept of a CBEFF biometric data block (BDB) format owner. A CBEFF BDB format owner is an organization (registered as a CBEFF biometric organization) that specifies one or more BDB fo
36、rmat specifications. A BDB format owner obtains a CBEFF biometric organization identifier from the Biometric Registration Authority. A BDB format owner can be a public standards organization (that would, coincidentally, also qualify as a CBEFF patron) or any organization that has a need to define it
37、s own vendor-specific BDB formats, whether they are to be published or not. Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS/ISO/IEC 19785-1-20062008 vi ITIC 2008 - All ri
38、ghts reservedA CBEFF BDB format owner defines one or more BDB formats and assigns a BDB format identifier that unambiguously identifies that BDB format within those defined by the BDB format owner. A BDB format identifier (and the corresponding format) may, but need not, be registered with the Biome
39、tric Registration Authority. CBEFF also defines the concept of a CBEFF biometric product owner. A CBEFF biometric product owner is an organization (registered as a CBEFF biometric organization) that assigns a biometric product identifier to a biometric product. A biometric product owner can be a pub
40、lic standards organization such as a standards body, working group, or industry consortium (such an organization would, coincidentally, also qualify as a CBEFF patron), or any organization, such as a vendor or integrator, that has a need to assign biometric product identifiers to biometric products.
41、 A biometric product owner can also, but need not, be a BDB format owner and vice versa. A CBEFF biometric product owner assigns biometric product identifiers to one or more biometric products. The identified products can be hardware or software products or a combination of hardware and software. Ex
42、amples of biometric products are biometric service providers (BSPs as defined by ISO/IEC 19784-1) and biometric transforming applications. A biometric product identifier unambiguously identifies a biometric product within those that have been assigned an identifier by the biometric product owner. A
43、biometric product identifier may, but need not, be registered with the Biometric Registration Authority. CBEFF also defines the concept of a CBEFF security block (SB) format owner. A CBEFF security block format owner is an organization (registered as a CBEFF biometric organization) that assigns a se
44、curity block format identifier to a security block format. A CBEFF security block format owner can be a public standards organization such as a standards body, working group, or industry consortium (such an organization would, coincidentally, also qualify as a CBEFF patron), or any organization, suc
45、h as a vendor or integrator, that has a need to assign security block format identifiers to security block formats. A security block format owner can also, but need not, be a BDB format owner and vice versa. A CBEFF security block format owner assigns security block format identifiers to one or more
46、 security block formats. A security block format identifier unambiguously identifies a security block format within those that have been assigned an identifier by the biometric security block format owner. A security block format identifier may, but need not, be registered with the Biometric Registr
47、ation Authority. This part of ISO/IEC 19785 specifies a simple CBEFF BIR structure and a complex CBEFF BIR structure, and gives the requirements for the specification of a CBEFF patron format based on one or the other of these abstract data structures. This part of ISO/IEC 19785 also specifies trans
48、formations of BIRs from one CBEFF patron format into a different CBEFF patron format. Clause 2 specifies the conformance requirements for CBEFF patrons that define CBEFF patron formats. It also specifies the conformance requirements for biometric transforming applications and for implementations cla
49、iming conformance to a specific patron format. Clause 6.5 specifies the CBEFF abstract data elements and the biometric transformation requirements for each data element. Annex A is normative. It defines a patron format conformance statement that patrons are to complete and publish as part of their patron format specifications as assurance that the format fully complies with CBEFF requirements. Copyright American
