GOST R ISO IEC 7816-11-2013 Identification cards Integrated circuit cards Part 11 Personal verification through biometric methods《识别卡 集成电路卡 第11部分 通过生物特征的个人认证》.pdf

1、 /7816-11null2013 11 ISO/IEC 7816-11:2004Identification cards Integrated circuit cards Part 11: Personal verification through biometric methods(IDT) / 7816-112013II1 - () 22 - , 42 22 3 - 22 2013 . 1632-4 / 7816-11:2004 . . 11. - (ISO/IEC 7816-11:2004 Identification cards Integrated circuit cards Pa

2、rt 11: Personal verification through biometric methods). - , 5 6 , 4, - . () - () 1.02012 ( 8). ( 1 ) , - . () - . , - (gost.ru) , 2014 , - - / 7816-112013III1 12 13 .14 25 , 25.1 .25.2 , 35.3 , .36 .36.1 36.2 .46.3 .5 A () 7 B () .11 C () .16 D () 26 () 30 31 / 7816-112013IV , - . . / 7816-11 17 -

3、1 / (ISO/IEC JTC 1/SC 17).1 20150101 1 , () (). / , - (. - ). .2 . , , :/ 7816-4:20051) . . 4. -, (/ 7816-4:2005 Identification cards Integrated circuit cards Part 4: Organization, security and commands for interchange)/ 197852) . - (ISO/IEC CD 19785, Information technology Common Biometric Exchange

4、 Formats Framework (CBEFF)3 :3.1 (biometric data): , , - .3.2 (biometric information): , - .3.3 (biometric reference data): , .1) / 7816-11:2004 / 7816-4:2003. / 7816-4:2005 / 7816-4:2013.2) / 7816-11:2004 / 19785 CD. / 19785-1:2006, / 19785-2:2006, / 19785-3:2007, / 19785-4:2010. / 7816-112013 11 I

5、dentification cards. Integrated circuit cards. Part 11. Personal verification through biometric methods / 7816-11201323.4 (biometric verification): .3.5 (biometric verification data): , .3.6 (template): / 7816-4. . .4 AID (Application Identifier);AT (Authentication Template);BER (Basic Encoding Rule

6、s);BIT (Biometric Information Template);BD (Biometric Data);BDP BD (BD in proprietary format);BDS BD (BD in standardized format);BDT (Biometric Data Template);CCT (Cryptographic Checksum Template);CRT (Control Reference Template);CT (Confidentiality Template);DE (Data Element);DF (Dedicated File);DO

7、 (Data Object);DST (Digital Signature Template);EFID (Elementary File ID);FCI (File Control Information);ID (Identifier);RD (Reference Data);SE (Security Environment);SM (Secure Messaging);TLV - (Tag-Length-Value);UQ (Usage Qualifier);VIDO (Verification requirement Information Data Object);VIT (Veri

8、fication requirement Information Template).5 , , , / 7816-4, . (, , , , , , ) , (, , ). , / 7816-4. , , .5.1 , / 7816-4 , . / 7816-11201335.2 , , (. A), - VERIFY, / 7816-4. :- (. );- . BER-TLV (. 2). CLA , BER-TLV (. / 7816-4). / 7816-8.5.3 , , (. A), GET CHALLENGE. , , , P1 GET CHALLENGE (. / 7816-

9、4). - MANAGE SECURITY ENVIRONMENT (, SET CRT AT DO DO ). GET CHALLENGE EXTER-NAL AUTHENTICATE. . , VERIFY, 5.1.6 6.1 (BIT) . , . 1 DO . 1 DO L 7F60 - (BIT) L 80 1 VERIFY/EXT.1)AUTHENTICATE/MANAGE SE2)83 1 - VERIFY/EXT.AUTH.3)/MANAGE SEA0 -DO , (. / 7816-6) DO -, A1 06 - (OID)41 - (. / 7816-4)42 - (.

10、 / 7816-4) / 7816-1120134 L 4F - (AID), - (. / 7816-4) / 1/ 37 DO -, A1 A1 -DO , - ( , . ). C, A0 - L DO, 8x/ Ax (/) DO9x/ Bx (/)1)EXT. EXTERNAL.2)SE Security Environment.3)AUTH. AUTHENTICATE. , (. 3) , , - ( 53 73), , , (. C). BIT , , 2. 2 BIT L 7F61 - BIT L 02 - BIT 7F60 -BIT 1 7F60 -BIT 2 BIT , , :- GET DATA;- DF, EFID, FCI, - SE (. / 7816-4), BIT.6.2 ( , ) : - ;- DO / 7816-6 - DO , . 3. 1 / 7816-1120135 3 DO L 5F2E - 7F2E - L 5F2E - DO, -81/ A1 -