1、BS ISO/IEC 29109-1:2009ICS 35.040NO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAWBRITISH STANDARDInformation technology Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794Part 1: Generalized conformance testing methodologyIncorporatin
2、g corrigendum December 2010National forewordThis British Standard is the UK implementation of ISO/IEC 29109-1:2009, incorporating corrigendum December 2010. The start and finish of text introduced or altered by corrigendum is indicated in the text by tags. Text altered by ISO/IEC corrigendum Decembe
3、r 2010 is indicated in the text by .The UK participation in its preparation was entrusted to Technical Committee IST/44, Biometrics.A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provis
4、ions of a contract. Users are responsible for its correct application. Compliance with a British Standard cannot confer immunity from legal obligations. BS ISO/IEC 29109-1:2009This British Standard was published under the authority of the Standards Policy and Strategy Committee on 30 September 2009
5、BSI 2011Amendments/corrigenda issued since publicationDate Comments 30 April 2011 Implementation of ISO/IEC corigendum December 2010ISBN 978 0 580 73600 1Reference numberISO/IEC 29109-1:2009(E)ISO/IEC 2011INTERNATIONAL STANDARD ISO/IEC29109-1First edition2009-08-01Information technology Conformance
6、testing methodology for biometric data interchange formats defined in ISO/IEC 19794 Part 1: Generalized conformance testing methodology Technologies de linformation Mthodologie dessai de conformit pour les formats dinterchange de donnes biomtriques dfinis dans lISO/CEI 19794 Partie 1: Mthodologie de
7、ssai de conformit gnralise BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and in
8、stalled on the computer performing the editing. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software pr
9、oducts used to create this PDF file can be found in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found
10、, please inform the Central Secretariat at the address given below. COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2009 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and m
11、icrofilm, without permission in writing from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii IS
12、O/IEC 2011BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) ISO/IEC 2011 iiiContents Page Foreword iv Introduction v 1 Scope . 1 2 Conformance. 1 3 Normative references . 1 4 Terms and definitions. 2 5 Abbreviated terms 5 6 Conformance testing framework. 5 6.1 Limitations. 5 6.2 Managing data records.
13、5 6.3 Conformance testing types . 6 6.4 Conformance testing levels. 6 6.4.1 Hierarchy of Conformance Tests 6 6.4.2 Level 1 Data format conformance 6 6.4.3 Level 2 Internal consistency checking. 7 6.4.4 Level 3 Content checking 7 6.5 Sample data sets for Level 3 conformance testing. 8 7 Common assert
14、ion descriptors for Level 1 and 2 testing 9 7.1 General considerations 9 7.2 Assertions for big-endian encoding . 10 7.3 Assertion element descriptions 10 7.3.1 Purpose of common assertion descriptions . 10 7.3.2 Field Names. 10 7.3.3 Operators. 10 7.3.4 Operands . 11 7.3.5 Other assertion elements.
15、 12 8 Conformance testing and reporting methodology 12 8.1 Conformance requirements and implementation conformance statement 12 8.1.1 Necessity of clear description of requirements and capabilities 12 8.1.2 Claimed conformance and declared conformance . 13 8.1.3 Requirements of the base standard 13
16、8.1.4 Explanations of columns in requirements table 15 8.1.5 Level 1 and Level 2 conformance assertions 17 8.1.6 Explanations of columns in Level 1 and Level 2 assertions table 21 8.2 Test procedures 22 8.2.1 Basic test workflow 22 8.2.2 Minimum number of BDIRs and IBDRs required. 23 8.3 Test report
17、s . 24 8.3.1 Purpose of the test report 24 8.3.2 Minimum content of the test report 24 Bibliography . 26 BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) iv ISO/IEC 2011Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the sp
18、ecialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical
19、 committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. Intern
20、ational Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for votin
21、g. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or
22、 all such patent rights. ISO/IEC 29109-1 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 37, Biometrics. ISO/IEC 29109 consists of the following parts, under the general title Information technology Conformance testing methodology for biometric data i
23、nterchange formats defined in ISO/IEC 19794: Part 1: Generalized conformance testing methodology Part 2: Finger minutiae data Part 4: Finger image data Part 10: Hand geometry silhouette data The following parts are under preparation: Part 3: Finger pattern spectral data Part 5: Face image data Part
24、6: Iris image data Part 7: Signature/sign time series data Part 8: Finger pattern skeletal data Part 9: Vascular image data Part 11: Signature/sign processed dynamic data Part 13: Voice data Part 14: DNA data BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) ISO/IEC 2011 vIntroduction ISO/IEC 19794 is
25、a multi-part International Standard developed by ISO/IEC JTC 1, SC 37 that specifies a biometric data interchange format for different biometric modalities or technologies. It is expected that future parts of ISO/IEC 19794 for additional modalities or technologies will be developed. End users of bio
26、metric systems desire to use ISO/IEC 19794 and other standards to ensure that components of the biometric system can be substituted with other components from different vendors with a minimum of effort, and also to ensure that biometric data produced by one system can be used by another system. In o
27、rder to achieve this, it is critical that systems claimed to conform to a standard actually are conformant, and thus there is a need for conformance testing methodology standards for each of the biometric data interchange formats specified in ISO/IEC 19794, in order to provide a reasonable degree of
28、 assurance that a conformance claim has validity. In fact, no test can be absolutely comprehensive and prove that a given system is conformant under all possible circumstances, especially when there are optional components of the standard. A well designed conformance test can, however, test all of t
29、he most likely sources of problems and ensure that the implementation under test conforms under a reasonable set of circumstances, giving assurance, but not a guarantee, of conformance. There are many different types of conformance testing that may be appropriate for the various parts of ISO/IEC 197
30、94. Some of these tests are highly specific to each data interchange format but some of them have many common elements across all of the formats. Therefore, it appears that a multi-part conformance testing standard, ISO/IEC 29109, will be useful. This part of ISO/IEC 29109 describes the different ty
31、pes of conformance testing. It then goes on to provide details of the common elements for defining test assertions. This part of ISO/IEC 29109 also provides guidelines for conducting the tests and reporting the results of the tests. The specific tests and assertions for each biometric data interchan
32、ge format are left to the subsequent parts, one for each part of ISO/IEC 19794. BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) BS ISO/IEC 29109-1:2009INTERNATIONAL STANDARD ISO/IEC 29109-1:2009(E) ISO/IEC 2011 1Information technology Conformance testing methodology for biometric data interchange for
33、mats defined in ISO/IEC 19794 Part 1: Generalized conformance testing methodology 1 Scope This part of ISO/IEC 29109 specifies the concepts, test types and conformance testing methodologies to test biometric data interchange records, as specified in ISO/IEC 19794, or computer algorithms that create
34、biometric data interchange records. This part of ISO/IEC 29109 defines two types (A and B) and three levels (1, 2 and 3) of conformance testing, but it only provides a detailed description and methodology for the three levels of Type A testing. In the case of the first two levels, there are many com
35、mon test elements, and so the assertion language for specifying Level 1 and Level 2 test assertions is defined in this part of ISO/IEC 29109. ISO/IEC 29109 is not concerned with testing of other characteristics of biometric products or other types of testing of biometric products (i.e. acceptance, p
36、erformance, robustness, security). This part of ISO/IEC 29109 explicitly does not cover the following areas: detailed test elements and assertions or descriptions of any mandatory standard datasets required for testing, which are provided in the other parts of ISO/IEC 29109, each of which specifies
37、conformance testing for a specific base standard; testing whether implementations under test (IUTs) that claim to be able to use conformant biometric data interchange records can correctly process such biometric data interchange records (Type B testing). 2 Conformance Biometric data interchange form
38、at conformance tests that claim conformance to this part of ISO/IEC 29109 shall satisfy the normative requirements of the methodology for those levels of test they are claiming to perform, as specified in Clauses 6, 7 and 8. Additionally, any Level 1 or Level 2 tests shall use the assertion types de
39、fined in Clause 7 with the specific assertion details given in the relevant subsequent parts of ISO/IEC 29109. Implementations of ISO/IEC 19794 tested according to the methodology specified in ISO/IEC 29109 may claim conformance only to those requirements specified in ISO/IEC 19794 that are tested b
40、y the test methods established by this methodology. 3 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including
41、 any amendments) applies. ISO/IEC 19794-1:2006, Information technology Biometric data interchange formats Part 1: Framework BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) 2 4 Terms and definitions For the purposes of this document, the terms and definitions given in ISO/IEC 19794-1 and the following
42、 apply. 4.1 assertion specification for testing a conformance requirement in an implementation under test expressed in a formal assertion definition language 4.2 assertion test specification of software or procedural methods that generate the test outcomes used for assessment of conformance to an as
43、sertion NOTE Adapted from the definition of “assertion test” in ISO/IEC 13210:1999. 4.3 attestation issue of a statement, based on a decision that fulfillment of specified requirements has been demonstrated NOTE Adapted from the definition of “attestation” in ISO/IEC 17000:2004. 4.4 base standard pa
44、rt of ISO/IEC 19794 containing the specification that is the subject of the conformance testing 4.5 biometric characteristic biological and behavioural characteristic of an individual that can be detected and from which distinguishing, repeatable biometric features can be extracted for the purpose o
45、f automated recognition of individuals 4.6 biometric data interchange record BDIR data package containing biometric data that claims to be in the form prescribed by a base standard NOTE If the BDIR is encapsulated in a Common Biometric Exchange File Format (CBEFF) record, then the BDIR is also a bio
46、metric data block (BDB), as defined in ISO/IEC 19785 (all parts), but this will not always be the case for data records defined in ISO/IEC 19794. 4.7 certification third-party attestation related to products ISO/IEC 17000:2004 4.8 conformance fulfillment by a product, process, or service of all rele
47、vant specified conformance requirements 4.9 conformance requirement requirement stated in a base standard and defined in a finite, measurable, and unambiguous manner NOTE Adapted from the definition of “conformance requirement” in ISO/IEC 13210:1999. 4.10 conformance test specified technical procedu
48、re of conformance testing ISO/IEC 2011BS ISO/IEC 29109-1:2009ISO/IEC 29109-1:2009(E) ISO/IEC 2011 34.11 conformance testing laboratory organization that carries out conformance testing NOTE This can be the creator of the IUT, the user of the IUT, or an unbiased third party. 4.12 conformance testing
49、suite test software used to automate certain types of conformance testing 4.13 conformity assessment demonstration that specified requirements relating to a product, process, system, person or body are fulfilled ISO/IEC 17000:2004 4.14 declaration declaration of conformity first-party attestation ISO/IEC 17000:2004 4.15 implementation conformance statement statement by the supplier of an implementation under test that indicates which mandatory and optional components of the base standard ar
