1、raising standards worldwideNO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAWBSI Standards PublicationBS ISO/IEC 19795-7:2011Information technology Biometric performance testingand reportingPart 7: Testing of on-card biometriccomparison algorithmsBS ISO/IEC 19795-7:2011 BRITISH S
2、TANDARDNational forewordThis British Standard is the UK implementation of ISO/IEC19795-7:2011.The UK participation in its preparation was entrusted to TechnicalCommittee IST/44, Biometrics.A list of organizations represented on this committee can beobtained on request to its secretary.This publicati
3、on does not purport to include all the necessaryprovisions of a contract. Users are responsible for its correctapplication. BSI 2011ISBN 978 0 580 68461 6ICS 35.040Compliance with a British Standard cannot confer immunity fromlegal obligations.This British Standard was published under the authority
4、of theStandards Policy and Strategy Committee on 28 February 2011.Amendments issued since publicationDate Text affectedBS ISO/IEC 19795-7:2011Reference numberISO/IEC 19795-7:2011(E)ISO/IEC 2011INTERNATIONAL STANDARD ISO/IEC19795-7First edition2011-01-15Information technology Biometric performance te
5、sting and reporting Part 7: Testing of on-card biometric comparison algorithms Technologies de linformation Essais et rapports de performance biomtriques Partie 7: Essais des algorithmes de comparaison biomtrique sur carte BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) PDF disclaimer This PDF file m
6、ay contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept therein the res
7、ponsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creat
8、ion parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPYRIGHT PROTECTED DOCUMENT ISO/IEC
9、 2011 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member body in the
10、country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2011 All rights reservedBS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) ISO/IEC 2011 All rights res
11、erved iiiContents Page Foreword vi Introduction.vii 1 Scope1 2 Conformance .2 3 Normative references2 4 Terms and definitions .2 5 Abbreviations.2 6 Requirements on test planning3 6.1 Fundamental concept of the test.3 6.2 Specification of interface hardware and software .4 6.3 Specification of the d
12、ata formats.4 6.3.1 Format for comparison data.4 6.3.2 Format for off-card images and templates .4 6.4 Profiling of the BIT 4 6.5 Card-comparison subsystem combinations 4 6.6 Phased testing .5 6.7 Options for participation.5 6.8 Metrics 5 6.9 Comparison results.5 7 Requirements on test execution6 7.
13、1 General .6 7.2 Conditions for demonstrating equivalence of on-card and off-card algorithms6 7.3 BIT Processing 6 7.4 Measurement of speed of execution .6 7.4.1 Quantities to be measured .6 7.4.2 Methods for measuring duration .7 7.4.3 Methods for measuring uncertainty 7 8 On-card biometric compari
14、son interface specification.7 8.1 Overview.7 8.2 Approach to the use of ISO/IEC 78167 8.3 Establish Communications 8 8.4 Selection of the test application 8 8.5 Store enrollment template on the card8 8.6 Read of the BIT 9 8.7 Use of the BIT 9 8.8 Verification .11 8.8.1 APDU specifications .11 8.8.2
15、Locking of the card .11 8.8.3 Locking of the PC-based algorithm.12 8.8.4 Comparison scores.12 8.8.5 Prohibition of stateful behavior .12 8.9 Reading card identifier12 8.10 Reading comparison subsystem identifier.13 Annex A (informative) Conversion of ISO/IEC 19794-2 record to compact size templates.
16、14 A.1 Background14 A.1.1 Purpose 14 A.1.2 Overview.14 BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) iv ISO/IEC 2011 All rights reservedA.1.3 The record format . 14 A.1.4 The compact-size format . 15 A.2 Minutia uniqueness 16 A.3 Presence of BITs on card. 17 A.4 Use of BITs 17 A.5 Number of minutia
17、e 17 A.5.1 Limits on number 17 A.5.2 Effect of the BIT 18 A.5.3 Pruning mechanism 18 A.5.4 Pruning center. 19 A.6 Sort order of minutiae 19 A.6.1 Support for ordering. 19 A.6.2 Modulo sorting for large images. 19 Annex B (informative) Standardized Finger-Position Codes. 20 Annex C (informative) Exam
18、ple Material on Planning for a Test Plan 21 C.1 Purpose 21 C.2 PC-based API specification . 21 C.2.1 Testing interface . 21 C.2.2 Data format profile and conformance. 21 C.2.3 Submission 21 C.2.4 Testing interface . 21 C.2.5 Runtime behavior 23 Annex D (informative) API for Fingerprint Minutia Templ
19、ate Generation and Matching 24 D.1 Minutiae extraction . 24 D.2 Minutiae matching 25 D.3 Implementation identifiers . 25 Bibliography. 26 Figures Figure A.1 Conversion of INCITS 378 data to ISO/IEC 19794-2 data 17 Tables Table 1 Classes of participation.5 Table 2 Command APDU for selection of on-car
20、d comparison application 8 Table 3 - Example Application ID .8 Table 4 Response APDU from selection of comparison application .8 Table 5 Command APDU for storage of reference template.8 Table 6 Response APDU from storage of reference template 9 Table 7 Command APDU for retrieval of biometric informa
21、tion template9 Table 8 Response APDU from retrieval of biometric information template.9 Table 9 - Biometric Information Template based on ISO/IEC 19785-3 and ISO/IEC 19794-2 (EXAMPLE). 10 Table 10 Command APDU for comparison of biometric templates 11 Table 11 Response APDU from comparison of biometr
22、ic templates . 11 Table 12 Command APDU for retrieval of verification comparison score 12 Table 13 Response APDU for retrieval of verification comparison score. 12 Table 14 Command APDU for retrieval of Card identifier. 12 Table 15 Response APDU for retrieval of Card identifier. 13 Table 16 Command
23、APDU for retrieval of Comparison subsystem identifier. 13 Table 17 Response APDU for retrieval of Comparison subsystem identifier. 13 Table A.1 Record profile of ISO/IEC 19794-2:2005 standard 15 Table A.2 Card profile of ISO/IEC 19794-2:2005 standard 15 Table A.3 ISO/IEC 19794-2 minutiae template DO
24、 16 Table A.4 ISO/IEC 19794-2 zonal quality DO 16 Table A.5 ISO/IEC 19794-2 zonal quality data. 16 BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) ISO/IEC 2011 All rights reserved vTable B.1 ISO/IEC 19794-2 and ISO/IEC 19785-3 finger position codes.20 Table D.1 API create_template function25 Table D.
25、2 API match_templates function25 Table D.3 API get_pids function25 BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) vi ISO/IEC 2011 All rights reservedForeword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system f
26、or worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collab
27、orate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards
28、are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as
29、an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent r
30、ights. ISO/IEC 19795-7 was prepared by Joint Technical Committee ISO/IEC JTC 1, Subcommittee SC 37, Biometrics. ISO/IEC 19795 consists of the following parts, under the general title Information technology Biometric performance testing and reporting: Part 1: Principles and framework Part 2: Testing
31、methodologies for technology and scenario evaluation Part 3: Modality-specific testing Technical Report Part 4: Interoperability performance testing Part 5: Access control scenario and grading scheme Part 7: Testing of on-card biometric comparison algorithms The following part is under preparation:
32、Part 6: Testing methodologies for operational evaluation BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) ISO/IEC 2011 All rights reserved viiIntroduction Biometric recognition algorithms have been ported to ISO/IEC 7816 integrated circuit cards to realize the privacy enhancing benefits asserted for t
33、he on-card biometric comparison paradigm. While the most common commercial realization of this capability has been the comparison of fingerprint minutiae templates on card, comparison of data from other modalities has been implemented also. Indeed the relevant card standards have been explicitly dra
34、fted to support arbitrary biometric modalities. Further information on modality-specific aspects can be found in ISO/IEC 19795-3. In any case, while the computational capability of such cards has increased in recent years, there remains the question of whether verification accuracy needs to be trade
35、d off for speed or data size or both. For fingerprint templates, the goal of improved efficiency has led to the development of the ISO/IEC 19794-2:2005 compact-size card formats specifically for on-card biometric comparison. This part of ISO/IEC 19795 specifies a mechanism for measuring both accurac
36、y and speed of ISO/IEC 7816 integrated circuit cards processing data from arbitrary modalities. It includes examples for the data structures and commands needed to match conformant ISO/IEC 19794-2:2005 minutiae templates on cards. BS ISO/IEC 19795-7:2011BS ISO/IEC 19795-7:2011INTERNATIONAL STANDARD
37、ISO/IEC 19795-7:2011(E) ISO/IEC 2011 All rights reserved 1Information technology Biometric performance testing and reporting Part 7: Testing of on-card biometric comparison algorithms 1 Scope This part of ISO/IEC 19795 establishes a mechanism for measuring the core algorithmic capabilities of biomet
38、ric comparison algorithms running on ISO/IEC 7816 integrated circuit cards. Specifically, this part of ISO/IEC 19795 instantiates a mechanism for on-card biometric comparison testing; standardizes procedures for the measurement of the accuracy of on-card biometric comparison implementations running
39、on object-based, test-specific sample cards; standardizes procedures for the measurement of durations of the various operations; and gives examples for matching ISO/IEC 19794-2:2005 compact card minutiae templates. The following are specifically not within the scope of this part of ISO/IEC 19795: pr
40、ocedures for securing the communications channel, including cryptographic protection of the biometric templates; procedures for protection of sample or template integrity using digital signatures; authentication of the card and reader; selection or use of transmission protocols (e.g. contactless); p
41、rofiles of specific data interchange standards; procedures for evaluation of readers, including performance, conformance and interoperability; procedures for evaluation of ruggedness or durability of the card; on-card template generation (e.g. extraction of minutiae from images), template update or
42、adaptation; formal conformance tests of ISO/IEC 7816-4 and ISO/IEC 7816-11; testing of devices not conforming to ISO/IEC 7816, including all system-on-card devices. BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) 2 ISO/IEC 2011 All rights reserved2 Conformance A test is conformant to this part of ISO
43、/IEC 19795 if it conforms to the normative requirements of Clauses 5 and 6. An on-card comparison implementation is conformant to the test specification of Clause 7 if it supports all the requirements of Clause 7. 3 Normative references The following referenced documents are indispensable for the ap
44、plication of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 7816-4:2005, Identification cards Integrated circuit cards Part 4: Organization, security and commands f
45、or interchange ISO/IEC 7816-6:2004, Identification cards Integrated circuit cards Part 6: Interindustry data elements for interchange ISO/IEC 7816-11:2004, Identification cards Integrated circuit cards Part 11: Personal verification through biometric methods ISO/IEC 19785-3:2007, Information technol
46、ogy Common Biometric Exchange Formats Framework Part 3: Patron format specifications ISO/IEC 19795-1:2006, Information technology Biometric performance testing and reporting Part 1: Principles and framework ISO/IEC 19795-2:2007, Information technology Biometric performance testing and reporting Part
47、 2: Testing methodologies for technology and scenario evaluation 4 Terms and definitions For the purposes of this document, the terms and definitions given in ISO/IEC 19795-1 and the following apply. 4.1 on-card comparison execution of a comparison algorithm on a ISO/IEC 7816 integrated circuit card
48、 NOTE The informal term match-on-card is deprecated in this part of ISO/IEC 19795 in favour of on-card biometric comparison as used in ISO/IEC 24787. The terms matcher and matching algorithm are deprecated in favour of comparison subsystem and comparison algorithm respectively. These terms are taken
49、 from SC 37s Standing Document 2, Harmonized Biometric Vocabulary. 5 Abbreviations For the purposes of this document, the following abbreviations apply. APDU Application Protocol Data Unit as used in ISO/IEC 7816-4 BIT Biometric Information Template as defined in ISO/IEC 7816-11 DET Detection error tradeoff characteristic a plot of FNMR vs. FMR BS ISO/IEC 19795-7:2011ISO/IEC 19795-7:2011(E) ISO/IEC 2011
