1、American National StandardDeveloped byfor Information Technology Biometric IdentityAssurance Services (BIAS)INCITS 442-2010INCITS 442-2010Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Provided by IHSNot for ResaleNo reproduction or networking permi
2、tted without license from IHS-,-,-INCITS 442-2010Revision ofINCITS 442-2008American National Standardfor Information Technology Biometric IdentityAssurance Services (BIAS)SecretariatInformation Technology Industry CouncilApproved July 20, 2010American National Standards Institute, Inc.Provided by IH
3、SNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Approval of an American National Standard requires review by ANSI that therequirements for due process, consensus, and other criteria for approval havebeen met by the standards developer.Consensus is established when
4、, in the judgement of the ANSI Board ofStandards Review, substantial agreement has been reached by directly andmaterially affected interests. Substantial agreement means much more thana simple majority, but not necessarily unanimity. Consensus requires that allviews and objections be considered, and
5、 that a concerted effort be madetowards their resolution.The use of American National Standards is completely voluntary; theirexistence does not in any respect preclude anyone, whether he has approvedthe standards or not, from manufacturing, marketing, purchasing, or usingproducts, processes, or pro
6、cedures not conforming to the standards.The American National Standards Institute does not develop standards andwill in no circumstances give an interpretation of any American NationalStandard. Moreover, no person shall have the right or authority to issue aninterpretation of an American National St
7、andard in the name of the AmericanNational Standards Institute. Requests for interpretations should beaddressed to the secretariat or sponsor whose name appears on the titlepage of this standard.CAUTION NOTICE: This American National Standard may be revised orwithdrawn at any time. The procedures of
8、 the American National StandardsInstitute require that action be taken periodically to reaffirm, revise, orwithdraw this standard. Purchasers of American National Standards mayreceive current information on all standards by calling or writing the AmericanNational Standards Institute.American Nationa
9、l StandardPublished byAmerican National Standards Institute, Inc.25 West 43rd Street, New York, NY 10036Copyright 2010 by Information Technology Industry Council (ITI)All rights reserved.No part of this publication may be reproduced in anyform, in an electronic retrieval system or otherwise,without
10、prior written permission of ITI, 1101 K Street NW, Suite 610Washington, DC 20005. Printed in the United States of AmericaCAUTION: The developers of this standard have requested that holders of patents that may berequired for the implementation of the standard disclose such patents to the publisher.
11、However,neither the developers nor the publisher have undertaken a patent search in order to identifywhich, if any, patents may apply to this standard. As of the date of publication of this standardand following calls for the identification of patents that may be required for the implementation ofth
12、e standard, no such claims have been made. No further patent search is conducted by the de-veloper or publisher in respect to any standard it processes. No representation is made or impliedthat licenses are not required to avoid infringement in the use of this standard.Provided by IHSNot for ResaleN
13、o reproduction or networking permitted without license from IHS-,-,-iContentsPageForeword .iv1 Scope. 12 Conformance . 13 Normative References . 24 Terms and Definitions 24.1 Biometric Sample. 24.2 Claim to Identity . 24.3 Encounter. 24.4 Encounter-Centric 34.5 Gallery 34.6 Identification. 34.7 Iden
14、tity Assurance . 34.8 Person-Centric. 34.9 Subject. 34.10 Verification . 35 Symbols and Abbreviated Terms. 46 System Context 46.1 Service-Oriented Architectures 46.2 BIAS Architecture. 66.3 BIAS Implementation Considerations 77 Biometric Identity Assurance Services. 97.1 BIAS Interface XML Schema .
15、97.2 Primitive Services 107.2.1 Add Subject To Gallery 107.2.2 Check Quality. 117.2.3 Classify Biometric Data 127.2.4 Create Subject . 147.2.5 Delete Biographic Data 147.2.6 Delete Biometric Data 157.2.7 Delete Subject 167.2.8 Delete Subject From Gallery 177.2.9 Get Identify Subject Results. 187.2.1
16、0 Identify Subject 197.2.11 List Biographic Data. 207.2.12 List Biometric Data. 227.2.13 Perform Fusion 237.2.14 Query Capabilities 247.2.15 Retrieve Biographic Information. 307.2.16 Retrieve Biometric Information. 31Provided by IHSNot for ResaleNo reproduction or networking permitted without licens
17、e from IHS-,-,-iiPage7.2.17 Set Biographic Data. 327.2.18 Set Biometric Data. 337.2.19 Transform Biometric Data 357.2.20 Update Biographic Data. 367.2.21 Update Biometric Data. 377.2.22 Verify Subject. 387.3 Aggregate Services . 397.3.1 Enroll 407.3.2 Get Enroll Results 417.3.3 Get Identify Results
18、. 417.3.4 Get Verify Results 427.3.5 Identify . 437.3.6 Retrieve Information 447.3.7 Verify 458 Data Elements and Data Types. 468.1 Biographic Data . 468.1.1 Biographic Data Type 478.1.2 Biographic Data Item Type 478.1.3 Biographic Data Set Type 488.2 Biometric Data . 498.2.1 CBEFF BIR Type . 498.2.
19、2 CBEFF BIR List Type 518.2.3 Biometric Data Element Type 518.2.4 Biometric Data List Type 538.3 Candidate Lists 538.3.1 Candidate Type . 538.3.2 Candidate List Type. 548.4 Capabilities 548.4.1 Capability Type 558.4.2 Capability List Type . 568.5 Fusion Information . 568.5.1 Fusion Information Type
20、568.5.2 Fusion Information List Type . 578.6 Other Data Types 578.6.1 Encounter List Type. 578.6.2 Information Type 588.6.3 List Filter Type . 588.6.4 Processing Options Type. 598.6.5 Token Type 599 Error Handling and Notification 609.1 Successful Service Calls . 609.2 Error Condition Codes . 6110 S
21、ecurity 62Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-iiiPageAnnexesA Conformance Requirements 63B Bibliography . 70C Example Usage Scenarios. 71Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-ivF
22、oreword (This foreword is not part of American National Standard INCITS 442-2010.)INCITS (The InterNational Committee for Information Technology Standards) is theANSI recognized Standards Development Organization for information technologywithin the United States of America. Members of INCITS are dr
23、awn from Govern-ment, Corporations, Academia and other organizations with a material interest in thework of INCITS and its Technical Committees. INCITS does not restrict membershipand attracts participants in its technical work from 13 different countries, and oper-ates under the rules of the Americ
24、an National Standards Institute.In the field of Biometrics, INCITS has established the Technical Committee M1. Stan-dards developed by this Technical Committee have reached consensus throughoutthe development process and have been thoroughly reviewed through several PublicReview processes. In additi
25、on, the INCITS Executive Board and the ANSI Board ofStandards Review have approved this American National Standard for publication asan INCITS Standard.This standard contains three annexes. Annex A is normative and is considered partof the standard. Annexes B and C are informative and are not consid
26、ered part of thestandard.Requests for interpretation, suggestions for improvement or addenda, or defect re-ports are welcome. They should be sent to InterNational Committee for InformationTechnology Standards (INCITS), ITI, 1101 K Street, NW, Suite 610, Washington, DC20005.This standard was processe
27、d and approved for submittal to ANSI by INCITS. Com-mittee approval of this standard does not necessarily imply that all committee mem-bers voted for its approval. At the time it approved this standard, INCITS had thefollowing members:Don Wright, ChairJennifer Garner, SecretaryOrganization Represent
28、ed Name of RepresentativeAdobe Systems, Inc. Scott FosheeSteve Zilles (Alt.)AIM Global, Inc. Dan MullenCharles Biss (Alt.)Apple Computer, Inc. Kwok LauHelene Workman (Alt.)David Singer (Alt.)Distributed Managment Task Force . John CrandallJeff Hilland (Alt.)Electronic Industries Alliance . Edward Mi
29、koski, Jr.Henry Cuschieri (Alt.)EMC Corporation Gary RobinsonFarance, Inc. Frank FaranceTimothy Schoechle (Alt.)Google Zaheda BhoratGS1 US Ray DelnickiFrank Sharkey (Alt.)James Chronowski (Alt.)Mary Wilson (Alt.)Hewlett-Packard Company. Karen HigginbottomPaul Jeran (Alt.)IBM Corporation . Gerald Lan
30、eRobert Weir (Alt.)IEEE . Bill AshTerry DeCourcelle (Alt.)Jodie Haasz (Alt.)Bob Labelle (Alt.)Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-vOrganization Represented Name of RepresentativeIntel .Philip WennblomGrace Wei (Alt.)Stephen Balogh (Alt.)L
31、exmark InternationalDon WrightDwight Lewis (Alt.)Paul Menard (Alt.)Microsoft CorporationJim HughesDave Welsh (Alt.)Mark Ryland (Alt.)John Calhoun (Alt.)National Institute of Standards however, it is possible that some of the basic biometric services defined herein may be used by such an implementati
32、on in the future. 2 Conformance Annex A specifies the conformance requirements for systems/components claiming conformance to this standard. Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS 442-2010 3 Normative References The following standard
33、s contain provisions which, through reference in this text, constitute provisions of this American National Standard. All standards are subject to revision, and parties to agreements based on this American National Standard are encouraged to investigate the possibility of applying the most recent ed
34、itions of the standards indicated below. OASIS BIAS SOAP Profile ANSI INCITS 398-2008 Information Technology Common Biometric Exchange Formats Framework (CBEFF) ISO/IEC 19784-1:2006, Information Technology Biometric Application Programming Interface Part 1: BioAPI Specification ISO/IEC 19785-1:2006,
35、 Information Technology Common Biometric Exchange Formats Framework Part 1: Data Element Specification ISO/IEC 19785-2:2006, Information Technology Common Biometric Exchange Formats Framework Part 2: Procedures for the Operation of the Biometric Registration Authority ISO/IEC 19785-3:2007, Informati
36、on technology Common Biometric Exchange Formats Framework Part 3: Patron format specifications 4 Terms and Definitions For the purposes of this document, the following terms and definitions apply. 4.1 Biometric Sample Analog or digital representation of biometric characteristics (prior to biometric
37、feature extraction process and obtained from a biometric capture device or biometric capture subsystem) 4.2 Claim to Identity Assertion that an individual is or is not the source of a specified or unspecified biometric reference in an identity assurance system; also called “biometric claim”. 4.3 Enc
38、ounter An interaction with a subject. Each encounter may contain unique information collected during the encounter and/or describing the encounter. 2 Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS 442-2010 4.4 Encounter-Centric A system that
39、supports encounter processing, maintaining a one-to-many relationship between subjects and encounters, and which does not necessarily contain a single, unique set of information for each subject. 4.5 Gallery A group of subjects, related by a common purpose, designation, or status. For example: a wat
40、ch list, or a set of subjects entitled to a certain benefit. 4.6 Identification A biometric system function that performs a one-to-many search, in which a biometric sample(s) from one individual is compared against the biometric references of many individuals to return the identifiers of those with
41、a specified degree of similarity. 4.7 Identity Assurance The process of establishing, determining, and/or confirming a subject identity. 4.8 Person-Centric A system that maintains a single, unique view of a subject, and which does not support encounter processing. 4.9 Subject A person who is known t
42、o an identity assurance system. 4.10 Verification A biometric system function that performs a one-to-one comparison, in which a biometric sample(s) from one individual is compared to biometric reference(s) from one individual to produce a comparison score 3 Provided by IHSNot for ResaleNo reproducti
43、on or networking permitted without license from IHS-,-,-INCITS 442-2010 5 Symbols and Abbreviated Terms AFIS Automated Fingerprint Identification System BIAS Biometric Identity Assurance Services BIR Biometric Information Record CBEFF Common Biometric Exchange Formats Framework ESB Enterprise Servic
44、e Bus ID Identity/Identification/Identifier OASIS Organization for the Advancement of Structured Information Standards SOA Service-Oriented Architecture URI Uniform Resource Identifier 6 System Context This clause provides an overview of Service-Oriented Architectures, the BIAS architecture, and BIA
45、S implementation considerations. 6.1 Service-Oriented Architectures Service-Oriented Architectures are software architectures in which reusable services are deployed onto application servers and then consumed by clients in different applications or business processes. They are intended to decouple t
46、he implementation of a software service from the interface that calls that service. This allows clients of a service to rely on a consistent interface regardless of the implementation technology of the service JDJ (see annex B). Biometric services are one of the types of services that can be provide
47、d over such a remote interface in a distributed information system across a collection of networks. This can occur in a 2-tier, 3-tier, or N-tier environment. A diagram of a simple N-tier architecture is shown in Figure 1. 4 Provided by IHSNot for ResaleNo reproduction or networking permitted withou
48、t license from IHS-,-,-INCITS 442-2010 Figure 1 Simple N-Tier Architecture In this simple diagram, BIAS services are defined between the application logic layer and the resource management layer. Examples of biometric resources that are of interest may include one or more of the following: A fingerprint verification matching server A 1:N iris search/match engine A facial biometric watch list A criminal or civil automated fingerprint identification system (AFIS) A name-based biographic identity datab
