BS ISO/IEC 24713-2:2008
Current
The latest, up-to-date edition.
Information technology. Biometric profiles for interoperability and data interchange Physical access control for employees at airports
Hardcopy , PDF
English
31-07-2008
Important note : Users cannot be edited or removed once added to your Multi user PDF.
Foreword
Introduction
1 Scope
2 Conformance
3 Normative references
4 Terms and definitions
5 Environment
5.1 Employees in the targeted environment
5.2 Architecture
5.3 Token
5.4 Token management system
5.5 Command and control system
5.6 Command and control administration system
5.7 Infrastructure system
6 Process
6.1 General
6.2 Proofing
6.3 Registration
6.4 Issuance
6.5 Activation to a local access control system
6.6 Usage
7 Security Considerations
Annex A (normative) - Requirements List
A.1 General
A.2 Relationship between RL and corresponding
ICS proformas
A.3 Profile Specific Implementation Conformance
Statement
A.4 Instruction for completing the ICS proforma
A.4.1 General structure of the ICS proforma
A.4.2 Additional Information
A.4.3 Exception Information
A.5 ICS proforma
A.6 Interchange Formats
A.6.1 Finger Image Data (ISO/IEC 19794-4:2005)
A.6.2 Finger Minutiae Data (ISO/IEC 19794-2:2005)
A.6.3 Finger Pattern Spectral Data
(ISO/IEC 19794-3:2006)
A.6.4 Face Image Data (ISO/IEC19794-5:2005)
A.6.5 Iris Image Data (ISO/IEC 19794-6:2005)
A.6.6 Signature/Sign Time Series Data
(ISO/IEC 19794-7:2007)
A.6.7 Finger Pattern Skeletal Data
(ISO/IEC 19794-7:2007)
A.6.7 Finger Pattern Skeletal Data
(ISO/IEC 19794-8:2006)
A.6.8 Vascular Image Data (ISO/IEC 19794-9:2007)
A.6.9 Hand Geometry Silhouette Data
(ISO/IEC 19794-10:2007)
A.7 Technical Interface Standards
A.7.1 BioAPI (ISO/IEC 19784-1:2006)
A.7.2 CBEFF (ISO/IEC 19785-1:2006)
Annex B (informative) - Additional information
Annex C (informative) - Security Considerations
C.1 Approaches
C.2 Representative threat list
Bibliography
Describes the application profile including necessary parameters and interfaces between function modules (i.e. BioAPI based modules and an external interface) in support of token-based biometric identification and verification of employees, at local access points (i.e. doors or other controlled entrances) and across local boundaries within the defined area of control in an airport.
| Committee |
IST/44
|
| DevelopmentNote |
Supersedes 07/30107763 DC. (08/2008)
|
| DocumentType |
Standard
|
| Pages |
56
|
| PublisherName |
British Standards Institution
|
| Status |
Current
|
| Supersedes |
This part of ISO/IEC 24713 specifies the biometric profile including necessary parameters and interfaces between function modules (i.e. BioAPI based modules and an external interface) in support of token-based biometric identification and verification of employees, at local access points (i.e. doors or other controlled entrances) and across local boundaries within the defined area of control in an airport. The token is expected to contain one or more biometric references.
This part of ISO/IEC 24713 does not specify a complete Access Control System for deployment at access points within the secure area of an airport. It is assumed that such systems exist and that a biometric component that is the subject of this part of ISO/IEC 24713 is being added to an existing system. It therefore excludes such things as device features, and exception and incident reporting and handling. This information is contained in Annex C for information only.
This part of ISO/IEC 24713 includes recommended practices for enrolment, watch list checking, duplicate issuance prevention, and verification of the identity of employees at airports. It also describes architectures and business processes appropriate to the support of token-based identity management in the secure environment of an airport.
It is recommended that the confidentiality, integrity, and availability of biometric data be safeguarded in accordance with local, regional, or national policy considerations.
This part of ISO/IEC 24713 does not preclude users building applications based on this part of ISO/IEC 24713 from being able to meet such privacy/data protection requirements as may apply to their application. The specification of privacy/data protection requirements that may apply is outside the scope of this part of ISO/IEC 24713.
| Standards | Relationship |
| ISO/IEC 24713-2:2008 | Identical |
| ISO/IEC 18031:2011 | Information technology Security techniques Random bit generation |
| ISO/IEC 19794-3:2006 | Information technology Biometric data interchange formats Part 3: Finger pattern spectral data |
| ISO/IEC 24713-1:2008 | Information technology Biometric profiles for interoperability and data interchange Part 1: Overview of biometric systems and biometric profiles |
| ISO/IEC 19794-4:2011 | Information technology — Biometric data interchange formats — Part 4: Finger image data |
| ISO/IEC 18032:2005 | Information technology Security techniques Prime number generation |
| ISO/IEC 9646-7:1995 | Information technology Open Systems Interconnection Conformance testing methodology and framework Part 7: Implementation Conformance Statements |
| ISO/IEC 19785-1:2015 | Information technology Common Biometric Exchange Formats Framework Part 1: Data element specification |
| ISO/IEC 19794-2:2011 | Information technology — Biometric data interchange formats — Part 2: Finger minutiae data |
| ISO 19092:2008 | Financial services — Biometrics — Security framework |
| ISO/IEC 19785-3:2015 | Information technology Common Biometric Exchange Formats Framework Part 3: Patron format specifications |
| ISO/IEC 19795-2:2007 | Information technology — Biometric performance testing and reporting — Part 2: Testing methodologies for technology and scenario evaluation |
| ISO/IEC 19795-1:2006 | Information technology Biometric performance testing and reporting Part 1: Principles and framework |
| ISO/IEC 19794-6:2011 | Information technology — Biometric data interchange formats — Part 6: Iris image data |
| ISO/IEC 19794-5:2011 | Information technology — Biometric data interchange formats — Part 5: Face image data |
| ISO/IEC 19794-7:2014 | Information technology Biometric data interchange formats Part 7: Signature/sign time series data |
| ISO/IEC 19794-9:2011 | Information technology — Biometric data interchange formats — Part 9: Vascular image data |
| ISO/IEC 19794-8:2011 | Information technology — Biometric data interchange formats — Part 8: Finger pattern skeletal data |
| ISO/IEC 9796:1991 | Information technology Security techniques Digital signature scheme giving message recovery |
| ISO/IEC 19794-10:2007 | Information technology — Biometric data interchange formats — Part 10: Hand geometry silhouette data |
| ISO/IEC 19784-1:2006 | Information technology Biometric application programming interface Part 1: BioAPI specification |
| ISO/IEC 7816-11:2004 | Identification cards Integrated circuit cards Part 11: Personal verification through biometric methods |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.