1、 INCITS/ISO/IEC 29120-1:2015 (2016) (ISO/IEC 29120-1:2015, IDT) Information technology - Machine readable test data for biometric testing and reporting - Part 1: Test reports INCITS/ISO/IEC 29120-1:2015 (2016) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes lic
2、ensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The I
3、SO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has b
4、een taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. Adopted by INCITS (InterNational Committee for Information Technology Standards) as an American
5、National Standard. Date of ANSI Approval: 11/11/2016 Published by American National Standards Institute, 25 West 43rd Street, New York, New York 10036 Copyright 2016 by Information Technology Industry Council (ITI). All rights reserved. These materials are subject to copyright claims of Internationa
6、l Standardization Organization (ISO), International Electrotechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council (ITI). Not for resale. No part of this publication may be reproduced in any form, including an electronic retrieval system,
7、 without the prior written permission of ITI. All requests pertaining to this standard should be submitted to ITI, 1101 K Street NW, Suite 610, Washington DC 20005. Printed in the United States of America ii ITIC 2016 All rights reserved Information technology Machine readable test data for biometri
8、c testing and reporting Part 1: Test reportsTechnologies de linformation Donnes dessai lisibles par machine pour les rapports et les essais biomtriques Partie 1: Rapports dessaiINTERNATIONAL STANDARDISO/IEC29120-1Reference numberISO/IEC 29120-1:2015(E)First edition2015-05-01 ISO/IEC 2015ii ISO/IEC 2
9、015 All rights reservedCOPYRIGHT PROTECTED DOCUMENT ISO/IEC 2015All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intrane
10、t, without prior written permission. Permission can be requested from either ISO at the address below or ISOs member body in the country of the requester.ISO copyright officeCase postale 56 CH-1211 Geneva 20Tel. + 41 22 749 01 11Fax + 41 22 749 09 47E-mail copyrightiso.orgWeb www.iso.orgPublished in
11、 SwitzerlandISO/IEC 29120-1:2015(E)ISO/IEC 29120-1:2015(E)Foreword ivIntroduction v1 Scope . 12 Conformance . 13 Normative references 14 Terms and definitions . 25 Symbols and abbreviated terms . 26 ASN.1 format . 26.1 Encoding rules . 26.2 ASN.1 object identifier for test report . 26.3 BiometricTes
12、tReport type . 26.4 Data types for technology tests 36.4.1 Overview . 36.4.2 Product information . 36.4.3 Information about test report 56.4.4 Test report under a specific condition 76.5 Data types for scenario tests 126.5.1 Overview 126.5.2 Test report under a specific condition .126.6 Data types f
13、or signed test reports . 13Annex A (normative) ASN.1 module for machine readable biometric test reports 15Annex B (informative) Common elements.22Annex C (informative) Test reports .29Bibliography .37 ISO/IEC 2015 All rights reserved iiiContents PageISO/IEC 29120-1:2015(E)ForewordISO (the Internatio
14、nal Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established b
15、y the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field o
16、f information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.The procedures used to develop this document and those intended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the
17、different types of document should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and I
18、EC shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document will be in the Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents).Any trade name used in this docu
19、ment is information given for the convenience of users and does not constitute an endorsement.For an explanation on the meaning of ISO specific terms and expressions related to conformity assessment, as well as information about ISOs adherence to the WTO principles in the Technical Barriers to Trade
20、 (TBT), see the following URL: Foreword Supplementary information .The committee responsible for this document is ISO/IEC JTC 1, Information technology, SC 37, Biometrics.ISO/IEC 29120 consists of the following parts, under the general title Information technology Machine readable test data for biom
21、etric testing and reporting: Part 1: Test reportsiv ISO/IEC 2015 All rights reservedISO/IEC 29120-1:2015(E)IntroductionThis International Standard will enhance the usability of biometric test data by providing them in a common and machine readable form. This International Standard is intended to pro
22、vide documentary evidence that a product has been tested, a statement of authenticity of the test report, an ability to maintain of registry of products, a clear mechanism for maintaining product availability and certification status, and an ability for a relying system to depend on a biometric prod
23、uct used in a remote authentication context.This International Standard is not intended to replace traditional biometric test reports. Indeed, because such texts are essential to the complete documentation of a test, they are viewed as parents of the machine readable content defined in ISO/IEC 29120
24、 and are explicitly referenced in these reports.Accordingly, the parts of this International Standard establish requirements for, and define formats for, signed test reports and biometric datasets as follows.This part of ISO/IEC 29120 establishes machine readable records for documenting the output o
25、f a biometric test. This supports the documentary reporting requirements of some parts of ISO/IEC 19795. This part of ISO/IEC 29120 is primarily intended to support scenario and technology tests. Additionally, interoperability tests can be documented by a collection of ISO/IEC 29120-1 test reports (
26、one for each tested combination of components). The International Standard also includes mechanism to protect the integrity of the test report. This assures a receiving system that the test information (date, laboratory, accreditation body, manner of testing, conformance, test size, accuracy) can be
27、 relied upon and used appropriately.As the parts of ISO/IEC 19795 have been developed and testing standards have been published, there is an increasing reliance on the correct conduct of tests and their documented outputs. Although the ISO/IEC 19795 standards include extensive disclosure and reporti
28、ng requirements, they do not establish definitive data formats for those pieces of information. Other data concerning the commissioning, accreditation, and conduct of the test can also be valuable to consumers of the test reports. In addition, this International Standard will benefit users of biomet
29、ric tests via improved conformance to testing standards, reliability (via automation of relevant activities), and comparability of test results. ISO/IEC 2015 All rights reserved vInformation technology Machine readable test data for biometric testing and reporting Part 1: Test reports1 ScopeThis par
30、t of ISO/IEC 29120 establishes machine readable records for documenting the output of a biometric test, formats for data that ISO/IEC 19795 tests are required to report, and an ASN.1 syntax for test reports.This standard specifically does not require, prohibit, or otherwise specify, the format of bi
31、ometric samples or templates used in a test, require, prohibit or otherwise specify, the encapsulation of biometric samples or templates used in a test, or regulate metrics for tests.NOTE ISO/IEC 19795-1 establishes the reportable metrics.2 ConformanceA test report shall be conformant to this part o
32、f ISO/IEC 29120 if it meets all normative requirements of this part of ISO/IEC 29120.3 Normative referencesThe following documents, in whole or in part, are normatively referenced in this document and are indispensable for its application. For dated references, only the edition cited applies. For un
33、dated references, the latest edition of the referenced document (including any amendments) applies.ISO 8601:2004, Data elements and interchange formats Information interchange Representation of dates and timesISO/IEC 8825-1:2008, Information technology ASN .1 encoding rules: Specification of Basic E
34、ncoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER) Part 1ISO/IEC 8825-4:2008, Information technology ASN .1 encoding rules: XML Encoding Rules (XER) Par t 4ISO/IEC 9594-2, Information technology Open Systems Interconnection The Directory Part 2: ModelsISO/IEC
35、19785-3:2007, Information technology Com mon Biometric Exchange Formats Framework Part 3: Patron format specificationsISO/IEC 19795-1, Information technology Biometric performance testing and reporting Part 1: Principles and frameworkINTERNATIONAL STANDARD ISO/IEC 29120-1:2015(E) ISO/IEC ISO pub-dat
36、e year All rights reserved 1ISO/IEC 29120-1:2015(E)RFC 3852, Cryptographic Message Syntax (CMS)RFC 5911, New ASN.1 Modules for Cryptographic Message Syntax (CMS) and S/MIME4 Terms and definitionsFor the purposes of this document, the terms and definitions given in ISO/IEC 19795-1 apply.5 Symbols and
37、 abbreviated termsFor the purposes of this part of ISO/IEC 29120, the following abbreviations apply.ASN Abstract Syntax NotationBDB Biometric Data BlockCDF Cumulative Distribution FunctionCMC Cumulative match characteristicDET Detection error tradeoffFAR False accept rateFTA Failure to acquire rateF
38、TE Failure to enrol rateFMR False match rateFNIR False-negative identification error rateFNMR False non-match rateFPIR False-positive identification error rateFRR False reject rateROC Receiver operating characteristicIUT Implementation under test6 ASN.1 format6.1 Encoding rulesThe test reports speci
39、fied in this part of the International Standard shall be encoded using the XML Encoding Rules (XER) ISO/IEC 8825-4:2008 or the Basic Encoding Rules (BER) ISO/IEC 8825-1:2008 of ASN.1.6.2 ASN.1 object identifier for test reportMachineReadableBiometricTestingAndReportingTestReport iso(1) standard(0) M
40、RTDBTR(29120) testReport(1) module(1) rev(0) 6.3 BiometricTestReport typeBiometricTestReport := SEQUENCE contentType CONTENT-TYPE. id-estReportTechnology, id-testReportScenario, and id-signedTestReport. This is done by the following definition of ContentTypeBiometricTestReport and those of testRepor
41、tTechnology, testReportScenario, and signedDataBTR.ContentTypeBiometricTestReport CONTENT-TYPE := testReportTechnology | testReportScenario | signedTestReport testReportTechnology CONTENT-TYPE := TestReportTechnology IDENTIFIED BY id-testReportTechnology testReportScenario CONTENT-TYPE := TestReport
42、Scenario IDENTIFIED BY id-testReportScenario signedTestReport CONTENT-TYPE := SignedTestReport IDENTIFIED BY id-signedTestReport Each of these content types corresponds to report of technology test, scenario test, and signed test report.The object identifiers are defined as follows:id-testReportTech
43、nology OBJECT IDENTIFIER := iso(1) standard(0) MRTDBTR(29120) testReport(1) contentType(2) testReportTechnology(1) id-testReportScenario OBJECT IDENTIFIER := iso(1) standard(0) MRTDBTR(29120) testReport(1) contentType(2) testReportScenario(2) id-signedTestReport OBJECT IDENTIFIER := iso(1) standard(
44、0) MRTDBTR(29120) testReport(1) contentType(2) signedTestReport(3) 6.4 Data types for technology tests6.4.1 OverviewType TestReportTechnology is a type to express results of technology test. The first field version is the version of this test report format of type MRTDBTRVersion. The second field ta
45、rgetInfo is of type ProductInformation and gives information of the evaluated product. The third field testReportInfo gives the information about the test report of type TestReportInformation. The fourth part is a sequence testReports of type TestReportTechnologyForOneCondition. Each element of this
46、 sequence corresponds to a test result under a specific condition.TestReportTechnology := SEQUENCE version MRTDBTRVersion DEFAULT v0, targetInfo ProductInformation, testReportInfo TestReportInformation, testReports SEQUENCE OF TestReportTechnologyForOneCondition MRTDBTRVersion := INTEGER v0(0) ( v0,
47、 . )6.4.2 Product informationType ProductInformation has six fields and gives information about the tested product.ProductInformation := SEQUENCE provider Provider, ISO/IEC 2015 All rights reserved 3ISO/IEC 29120-1:2015(E)nameProduct NameProduct, description VisibleString OPTIONAL, functionProduct S
48、EQUENCE OF Function, outputProduct DataType OPTIONAL, modalityProduct Modality 6.4.2.1 Provider informationThe first field provider is of type Provider and gives information about the provider of the tested biometric product.Provider := SEQUENCE nameProvider Name, typeProvider TypeProvider, roleProv
49、ider RoleProvider, contactInformation VisibleString OPTIONAL The first field nameProvider identifies the name of the provider. The type Name for this field is specified in ISO/IEC 9592-2:2005.The second field typeProvider shows the type of the provider, and shall take a value chosen from the values of type TypeProvider: non-profit, university, corporation,
