1、INCITS/ISO/IEC 19785-3-20072008 (ISO/IEC 19785-3-2007, IDT) Information technology CommonBiometric Exchange Formats Framework Part 3: Patron formatspecificationsINCITS/ISO/IEC 19785-3-20072008(ISO/IEC 19785-3-2007, IDT)INCITS/ISO/IEC 19785-3-20072008 ii ITIC 2008 All rights reserved PDF disclaimer T
2、his PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept t
3、herein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file;
4、 the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. Adopted by INCITS (Int
5、erNational Committee for Information Technology Standards) as an American National Standard. Date of ANSI Approval: 7/1/2008 Published by American National Standards Institute, 25 West 43rd Street, New York, New York 10036 Copyright 2008 by Information Technology Industry Council (ITI). All rights r
6、eserved. These materials are subject to copyright claims of International Standardization Organization (ISO), International Electrotechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council (ITI). Not for resale. No part of this publication
7、may be reproduced in any form, including an electronic retrieval system, without the prior written permission of ITI. All requests pertaining to this standard should be submitted to ITI, 1250 Eye Street NW, Washington, DC 20005. Printed in the United States of America iiiContents Page Foreword vi In
8、troduction.vii 1 Scope1 2 Conformance .1 3 Normative references1 4 Terms and definitions .2 4.1 Terms defined in ISO/IEC 19785-1 .2 4.2 Other terms and definitions .3 5 Symbols and abbreviated terms 3 5.1 Symbols and abbreviated terms defined in ISO/IEC 19785-1 .3 5.2 Other symbols and abbreviated t
9、erms3 6 ASN.1 type definitions for CBEFF data elements and abstract values .4 6.1 General .4 6.2 CBEFF data elements type definitions module4 7 Patron format specification: Minimum simple bit-oriented patron format7 7.1 Patron .7 7.2 Patron identifier.7 7.3 Patron format name.7 7.4 Patron format ide
10、ntifier.7 7.5 ASN.1 object identifier for this patron format 7 7.6 Domain of use7 7.7 Version identifier .7 7.8 CBEFF version.7 7.9 General .7 7.10 Bit oriented patron format specification and conformance statement8 7.10.1 Specification 8 7.10.2 Patron format conformance statement .8 8 Patron format
11、 specification: Minimum simple byte-oriented patron format.10 8.1 Patron .10 8.2 Patron identifier.10 8.3 Patron format name.10 8.4 Patron format identifier.10 8.5 ASN.1 object identifier for this patron format 10 8.6 Domain of use10 8.7 Version identifier .10 8.8 CBEFF version.10 8.9 General .10 8.
12、10 Patron format specifications and conformance statement.11 8.10.1 Patron format specification11 8.10.2 Patron format conformance statement .11 9 Patron format specification: Fixed-length-fields, byte-oriented patron format using presence bit-map.12 9.1 Patron .12 9.2 Patron identifier.12 9.3 Patro
13、n format name.12 9.4 Patron format identifier.12 9.5 ASN.1 object identifier for this patron format 12 INCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reservediv 9.6 Domain of use . 12 9.7 Version identifier. 12 9.8 CBEFF version 12 9.9 General. 12 9.10 Specification 13 9.11 Patron format con
14、formance statement. 15 9.11.1 Identifying information. 15 9.11.2 CBEFF-defined data elements and abstract values 16 9.11.3 Patron defined data elements and abstract values. 17 10 Patron format specification: Fixed-length-fields, bit-oriented patron format using presence bit-map 18 10.1 Patron. 18 10
15、.2 Patron identifier 18 10.3 Patron format name 18 10.4 Patron format identifier 18 10.5 ASN.1 object identifier for this patron format 18 10.6 Domain of use . 18 10.7 Version identifier. 18 10.8 CBEFF version 18 10.9 General. 18 10.10 Specification 19 10.11 Patron format conformance statement. 20 1
16、0.11.1 Identifying information. 20 10.11.2 CBEFF-defined data elements and abstract values 21 10.11.3 Patron defined data elements and abstract values. 21 11 Patron format specification: TLV-encoded patron format, for use with smartcards or other tokens 22 11.1 Patron. 22 11.2 Patron identifier 22 1
17、1.3 Patron format name 22 11.4 Patron format identifier 22 11.5 ASN.1 object identifier for this patron format 22 11.6 Domain of Use. 22 11.7 Version identifier. 22 11.8 CBEFF version 22 11.9 General. 22 11.10 ASN.1 specification 25 11.11 Tabular representations for information 26 11.11.1 The Biomet
18、ric Information Template used for on-card matching . 26 11.11.2 The Biometric Information Template used for off-card matching . 28 11.12 The Group BIT Data Object 29 11.13 Abstract values and encodings for biometric type and subtype. 30 11.14 Patron format conformance statement. 31 11.14.1 Identifyi
19、ng information. 31 11.14.2 CBEFF-defined data elements and abstract values 31 11.14.3 Patron-defined data elements and abstract values. 31 12 Patron format specification: complex patron format 32 12.1 Patron. 32 12.2 Patron identifier 32 12.3 Patron format name 32 12.4 Patron format identifier 32 12
20、.5 ASN.1 object identifier for this patron format 32 12.6 Domain of use . 32 12.7 Version identifier. 32 12.8 CBEFF version 32 12.9 General. 32 12.10 Specification 33 12.11 Illustrative examples 37 INCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reservedv12.12 ASN.1 definition (provided for i
21、llustrative purposes only) .40 12.13 Patron format conformance statement .41 12.13.1 Identifying information41 12.13.2 CBEFF-defined data elements and abstract values.42 12.13.3 Patron-defined data elements and abstract values .43 13 Patron format specification: XML patron format .44 13.1 Patron .44
22、 13.2 Patron identifier.44 13.3 Patron format name.44 13.4 Patron format identifier.44 13.5 ASN.1 object identifier for this patron format 44 13.6 Domain of use44 13.7 Version identifier .44 13.8 CBEFF version.44 13.9 General .44 13.10 Specification 45 13.11 Element .45 13.11.1 Syntax.45 13.11.2 Sem
23、antics.46 13.12 Element .47 13.12.1 Syntax.47 13.12.2 Semantics.47 13.13 Element .47 13.13.1 Syntax.47 13.13.2 Semantics.47 13.14 Element .48 13.14.1 Syntax.48 13.14.2 Semantics.48 13.15 Element .50 13.15.1 Syntax.50 13.15.2 Semantics.51 13.16 Element .55 13.16.1 Syntax.55 13.16.2 Semantics.56 13.17
24、 Representation of Integers.56 13.18 Representation of Octet Strings 56 13.19 Representation of Date and Time of the Day57 13.20 Representation of Universally Unique Identifiers 57 13.21 Patron format conformance statement .58 13.21.1 Identifying information58 13.21.2 CBEFF-defined data elements and
25、 abstract values.58 13.21.3 Patron-defined data elements and abstract values .60 13.22 XML schema of the patron format .60 13.23 ASN.1 schema of the patron format 62 13.24 An example of a simple BIR in XML encoding (complying with the ASN.1 schema, the XSD schema, and the normative textual descripti
26、on) .64 13.25 An example of a complex BIR in XML encoding (complying with the ASN.1 schema, the XSD schema, and the normative textual description) .66 Annex A (informative) Guidelines on the specification of patron formats69 A.1 General .69 A.2 Basic encoding mechanisms .69 A.3 Octet-alignment .70 A
27、.4 Length fields 70 A.5 CBEFF data element values and patron format fields.70 A.6 Historically used encodings of certain abstract values71 A.7 Variable length data elements72 A.8 Security Blocks72 INCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reservedvi Foreword ISO (the International Organ
28、ization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been establish
29、ed has the right to be represented on that committee. International organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.
30、 International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulated to the member bodies for voting. Pu
31、blication as an International Standard requires approval by at least 75 % of the member bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such paten
32、t rights. ISO/IEC 19785-3 was prepared by Technical Committee ISO/IEC/TC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 19785 consists of the following parts, under the general title Information technology Common Biometric Exchange Formats Framework: Part 1: Data element spec
33、ification Part 2: Procedures for the operation of the Biometric Registration Authority Part 3: Patron format specificationsINCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reservedviiIntroduction Biometric-based authentication systems and applications are expected to support multiple biometric
34、 devices and multiple biometric data formats. The Common Biometric Exchange Formats Framework (CBEFF) promotes interoperability of biometric-based application programs and systems developed by different vendors by facilitating biometric data interchange. ISO/IEC 19785-1 defines the following items t
35、hat enable standardized biometric data interchange: a) a 3-part standardized structure for biometric information records (BIRs) consisting of: 1) standardized biometric headers (SBHs), 2) biometric data blocks (BDBs, which may be standardized or proprietary), and 3) optional security blocks (SBs); b
36、) variations of the 3-part structure to support BIRs containing: 1) only one SBH, one BDB and possibly one SB (simple BIRs); 2) more than one BDB along with the SBHs necessary to encode the BIRs structure and some number of SBs (complex BIRs); c) more than 20 data elements and their associated abstr
37、act values that can be used in an SBH to describe attributes of a BDB within a BIR, as well as attributes of the BIR itself; d) the concept of a CBEFF patron format (but ISO/IEC 19785-1 does not itself define any patron formats), which is a detailed specification of the structure and content of a pa
38、rticular, standardized BIR; e) the concept of a CBEFF patron, which is a recognized standards organization that has registered with the Biometric Registration Authority and declared its intention to define CBEFF patron format specifications; f) the concept of the Biometric Registration Authority (RA
39、), which is the mechanism by which unique identifiers are assigned to organizations (standards organizations, vendors and others) that create BDB formats and CBEFF patron formats (ISO/IEC 19785-2 defines the responsibilities and operations of the Biometric RA); g) CBEFF data elements (see c) above)
40、that support, within the SBH, the unique identifiers assigned by the Biometric RA for biometric organizations, BDB formats, biometric products, patron formats and SB formats. This part of ISO/IEC 19785 specifies a number of CBEFF patron formats that are considered to be of general utility in a varie
41、ty of domains of use. Additional SC 37 patron format specifications may be published as new clauses in future amendments to this part of ISO/IEC 19785, or in other SC 37 International Standards. The CBEFF patron format identifier unambiguously identifies the CBEFF patron format within the scope of t
42、he CBEFF patron identifier. The CBEFF patron format identifier is unambiguous within the scope of an ASN.1 Object Identifier (see ISO/IEC 9834-1) that identifies the Biometric Registration Authority (see ISO/IEC 19785-2).That ASN.1 Object Identifier (OID) is itself globally unambiguous within the sc
43、ope of all ASN.1 Object Identifiers, which forms a widely-used global name-space. INCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reservedviii NOTE ASN.1 Object Identifiers are used by ITU-T, ITU-R, the UPU, many ISO and IEC Standards, to identify some IETF MIME types, and for many other purp
44、oses. (These acronyms have not been spelled out, as the precise identification of these organizations is not relevant to this International Standard.) The combination of the Biometric Registration Authority OID, the CBEFF patron identifier, and the CBEFF patron format identifier forms a larger ASN.1
45、 OID that provides an unambiguous identification of the CBEFF patron format. This part of ISO/IEC 19785 specifies, for each CBEFF patron format that it defines, the ASN.1 OID that unambiguously identifies that CBEFF patron format. INCITS/ISO/IEC 19785-3-20072008 ITIC 2008 - All rights reserved11 Sco
46、pe This part of ISO/IEC 19785 specifies and publishes registered CBEFF patron formats (see ISO/IEC 19785-1) defined by the CBEFF patron ISO/IEC JTC 1/SC 37, and specifies their registered CBEFF patron format identifiers (see ISO/IEC 19785-2) and resulting full ASN.1 Object Identifiers. 2 Conformance
47、 Clause 6 onwards of this part of ISO/IEC 19785 specify at the bit-level the set of bit-patterns (and their semantics) that can form a valid instance of the CBEFF patron format that is defined in that clause, together with the ASN.1 Object Identifier for that set of bit-patterns. A bit-pattern ident
48、ified by one of the ASN.1 Object Identifiers allocated in this part of ISO/IEC 19785 conforms to this specification if, and only if, it is one of the bit-patterns in the set identified by that ASN.1 Object Identifier. If an implementation claims that it supports (and conforms to) a CBEFF patron form
49、at defined in this part of ISO/IEC 19785 then it shall either be: a) capable of generating at least one of the set of bit patterns specified for that CBEFF patron format, and shall never generate bit patterns that are not part of the set; or b) capable of decoding (determining the semantics of), or in any other way processing all the bit-patterns in the set of bit patterns specified for that CBEFF patron format. NOTE If a decoding implementation is presented with a bit pattern that purports to be part of the set, but it is no
