iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/IEC 30107-4:2024

(Main)

Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices

Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices

This document is a profile that specifies requirements for testing biometric presentation attack detection (PAD) mechanisms on mobile devices with local biometric recognition and on biometric modules integrated into mobile devices. The profile lists requirements from ISO/IEC 30107-3 that are specific to mobile devices. It also establishes requirements that are not present in ISO/IEC 30107-3. For each requirement, the profile defines an “Approach in PAD Tests for Mobile Devices”. For some requirements, numerical values or ranges are provided in the form of best practices. This profile is applicable to mobile devices that operate as closed systems with no access to internal results, including mobile devices with local biometric recognition as well as biometric modules for mobile devices. This document is not applicable to mobile devices with solely remote biometric recognition. The attacks considered in this document take place at the capture device during the presentation and collection of biometric characteristics. Any other attacks are outside the scope of this document.

Technologies de l'information — Détection d'attaque de présentation en biométrie — Partie 4: Profil pour les essais des dispositifs mobiles

General Information

Status
Published
Publication Date
06-Feb-2024
ICS
35.240.15 - Identification cards. Chip cards. Biometrics
Technical Committee
ISO/IEC JTC 1/SC 37 - Biometrics
Drafting Committee
ISO/IEC JTC 1/SC 37 - Biometrics
Current Stage
6060 - International Standard published
Start Date
07-Feb-2024
Due Date
11-Feb-2024
Completion Date
07-Feb-2024
Ref Project

Relations

Revises
ISO/IEC 30107-4:2020 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices
Effective Date
06-Jun-2022

Buy Standard

ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023
PreviousNext
Draft
ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023
English language
15 pages
sale 15% off
Preview
sale 15% off
Preview
REDLINE ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023REDLINE ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023
PreviousNext
Draft
REDLINE ISO/IEC FDIS 30107-4 - Information technology — Biometric presentation attack detection — Part 4: Profile for testing of mobile devices Released:26. 10. 2023
English language
15 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

FINAL
INTERNATIONAL ISO/IEC
DRAFT
STANDARD FDIS
30107-4
ISO/IEC JTC 1/SC 37
Information technology — Biometric
Secretariat: ANSI
presentation attack detection —
Voting begins on:
2023-11-09
Part 4:
Voting terminates on:
Profile for testing of mobile devices
2024-01-04
Technologies de l'information — Détection d'attaque de présentation
en biométrie —
Partie 4: Profil pour les essais des dispositifs mobiles
RECIPIENTS OF THIS DRAFT ARE INVITED TO
SUBMIT, WITH THEIR COMMENTS, NOTIFICATION
OF ANY RELEVANT PATENT RIGHTS OF WHICH
THEY ARE AWARE AND TO PROVIDE SUPPOR TING
DOCUMENTATION.
IN ADDITION TO THEIR EVALUATION AS
Reference number
BEING ACCEPTABLE FOR INDUSTRIAL, TECHNO-
ISO/IEC FDIS 30107-4:2023(E)
LOGICAL, COMMERCIAL AND USER PURPOSES,
DRAFT INTERNATIONAL STANDARDS MAY ON
OCCASION HAVE TO BE CONSIDERED IN THE
LIGHT OF THEIR POTENTIAL TO BECOME STAN-
DARDS TO WHICH REFERENCE MAY BE MADE IN
NATIONAL REGULATIONS. © ISO/IEC 2023

---------------------- Page: 1 ----------------------
ISO/IEC FDIS 30107-4:2023(E)
FINAL
INTERNATIONAL ISO/IEC
DRAFT
STANDARD FDIS
30107-4
ISO/IEC JTC 1/SC 37
Information technology — Biometric
Secretariat: ANSI
presentation attack detection —
Voting begins on:
Part 4:
Voting terminates on:
Profile for testing of mobile devices
Technologies de l'information — Détection d'attaque de présentation
en biométrie —
Partie 4: Profil pour les essais des dispositifs mobiles
COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2023
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
RECIPIENTS OF THIS DRAFT ARE INVITED TO
ISO copyright office
SUBMIT, WITH THEIR COMMENTS, NOTIFICATION
OF ANY RELEVANT PATENT RIGHTS OF WHICH
CP 401 • Ch. de Blandonnet 8
THEY ARE AWARE AND TO PROVIDE SUPPOR TING
CH-1214 Vernier, Geneva
DOCUMENTATION.
Phone: +41 22 749 01 11
IN ADDITION TO THEIR EVALUATION AS
Reference number
Email: copyright@iso.org
BEING ACCEPTABLE FOR INDUSTRIAL, TECHNO­
ISO/IEC FDIS 30107­4:2023(E)
Website: www.iso.org
LOGICAL, COMMERCIAL AND USER PURPOSES,
DRAFT INTERNATIONAL STANDARDS MAY ON
Published in Switzerland
OCCASION HAVE TO BE CONSIDERED IN THE
LIGHT OF THEIR POTENTIAL TO BECOME STAN­
DARDS TO WHICH REFERENCE MAY BE MADE IN
ii
  © ISO/IEC 2023 – All rights reserved
NATIONAL REGULATIONS. © ISO/IEC 2023

---------------------- Page: 2 ----------------------
ISO/IEC FDIS 30107-4:2023(E)
Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Abbreviated terms . 2
5 Conformance . 2
6 General profile for PAD testing of mobile devices . 2
7 FIDO Profile for PAD testing of mobile devices . 9
Bibliography .15
iii
© ISO/IEC 2023 – All rights reserved

---------------------- Page: 3
...

ISO/IEC DISFDIS 30107-4:2023(E)
ISO/IEC JTC 001 1/SC 37/WG 3
Secretariat: ANSI
Date: 2023-01-2510-26
Information technology — Biometric presentation attack
detection —
Part 4:
Profile for testing of mobile devices
Technologies de l'information — Détection d'attaque de présentation en biométrie —
Partie 4: Profil pour les essais des dispositifs mobiles
FDIS stage

---------------------- Page: 1 ----------------------
ISO/IEC DISFDIS 30107-4:2023(E)
© ISO/IEC 2023
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this
publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical,
including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can
be requested from either ISO at the address below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: + 41 22 749 01 11
EmailE-mail: copyright@iso.org
Website: www.iso.orgwww.iso.org
Published in Switzerland
ii © ISO/IEC 2023 – All rights reserved
ii © ISO/IEC 2023 – All rights reserved

---------------------- Page: 2 ----------------------
ISO/IEC DISFDIS 30107-4:2023(E)
Contents
Foreword . iv
Introduction . vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 2
4 Abbreviated terms . 2
5 Conformance . 2
6 General profile for PAD testing of mobile devices . 3
7 FIDO Profile for PAD testing of mobile devices . 9
Bibliography . 17

Foreword ii
Introduction iii
1 Scope 1
2 Normative references 1
3 Terms and definitions 1
4 Conformance 2
5 Profile for PAD testing of mobile devices 3
Annex A (Normative) FIDO biometric presentation attack detection evaluation requirements 8
Bibliography 13
© ISO/IEC 2023 – All rights reserved iii
© ISO/IEC 2023 – All rights reserved iii

---------------------- Page: 3 ----------------------
ISO/IEC DISFDIS 30107-4:2023(E)
Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical activity.
ISO and IEC technical committees collaborate in fields of mutual interest. Other international
organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the
work.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of document should be noted. This document was drafted in accordance with the editorial
rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directiveswww.iso.org/directives or
www.iec.ch/members_experts/refdocswww.iec.ch/members_experts/refdocs).
ISO and IEC draw attention to the possibility that the implementation of this document may involve the
use of (a) patent(s). ISO and IEC take no position concerning the evidence, validity or applicability of any
claimed patent rights in respect thereof. As of the date of publication of this document, ISO and IEC had
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO/IEC 30108-2:2023(Main)
Biometrics — Identity attributes verification services — Part 2: RESTful specification

The ISO/IEC 30108 series defines biometric services used for identity assurance that are invoked over a services-based framework. It provides a generic set of biometric and identity-related functions and associated data definitions to allow remote access to biometric services. Although focused on biometrics, the ISO/IEC 30108 series includes support for other related identity assurance mechanisms such as biographic and document capabilities. Identity attributes verification services (IAVSs) are intended to be compatible with and used in conjunction with other biometric standards as described in ISO/IEC 30108-1. This document implements the specification provided in ISO/IEC 30108-1 using representational state transfer (REST). Specification of biometric functionality is limited to remote (backend) services. Services between a client-side application and biometric capture devices are not within the scope of this document. Integration of biometric services as part of an authentication service or protocol is not within the scope of this document.

  • Standard
    126 pages
    English language
    sale 15% off
  • Draft
    127 pages
    English language
    sale 15% off
  • Draft
    125 pages
    English language
    sale 15% off
  • Draft
    125 pages
    English language
    sale 15% off
ISO
ISO/IEC 39794-2:2023(Main)
Information technology — Extensible biometric data interchange formats — Part 2: Finger minutiae data

This document specifies: — generic extensible data interchange formats for the representation of finger minutia data: — a tagged binary data format based on an extensible specification in ASN.1, — a textual data format based on an XML schema definition that is capable of holding the same information as the tagged binary format, and — an on-card biometric comparison format based on extensible TLV encoding; — on-card biometric comparison parameters based on extensible TLV encoding for constructing valid probe data in the on-card biometric comparison format; — examples of data record contents; — application-specific requirements, recommendations and best practices in determining minutiae location, direction and type; and — conformance test assertions and conformance test procedures applicable to this document. NOTE Whereas ISO/IEC 39794-4 covers finger, palm, toe and foot image data, this document covers only finger minutiae and is not applicable to palms, toes or feet.

  • Standard
    79 pages
    English language
    sale 15% off
  • Draft
    85 pages
    English language
    sale 15% off
ISO
ISO/IEC 30107-1:2023(Main)
Information technology — Biometric presentation attack detection — Part 1: Framework

This document establishes terms and definitions that are useful in the specification, characterization and evaluation of presentation attack detection (PAD) methods. This document does not provide the following: — standardization of specific PAD detection methods; — detailed information about countermeasures (i.e. anti-spoofing mechanisms), algorithms or sensors; — overall system-level security or vulnerability assessment. The attacks to be considered in this document are those that take place at the capture device during the presentation and collection of the biometric characteristics. Any other attacks are considered outside the scope of this document.

  • Standard
    11 pages
    English language
    sale 15% off
ISO
ISO/IEC 39794-4:2019/Amd 1:2023(Amendment)
Information technology — Extensible biometric data interchange formats — Part 4: Finger image data — Amendment 1: Extension towards improved interoperability with ANSI/NIST-ITL
  • Standard
    8 pages
    English language
    sale 15% off
ISO
ISO/IEC TS 22604:2023(Main)
Information technology — Biometric recognition of subjects in motion in access-related systems

This document establishes requirements for development of biometric solutions for verification and identification processes for secure access without physical contact with any device at any time. The solution acquires the biometric characteristics that are captured while the data subjects are in motion to verify or identify the individuals requiring access, and thus controlling access using contactless biometrics.

  • Technical specification
    16 pages
    English language
    sale 15% off
  • Draft
    16 pages
    English language
    sale 15% off
  • Draft
    16 pages
    English language
    sale 15% off
ISO
ISO/IEC TR 20322:2023(Main)
Information technology — Cross-jurisdictional and societal aspects of implementation of biometric technologies — Biometrics and elderly people

This document builds upon the information provided in ISO/IEC TR 24714-1, ISO/IEC TR 29194 and ISO/IEC 29138-1 in order to highlight in a more detailed way the medical, physical and cognitive aspects that are specific for the use of biometrics by elderly persons.

  • Technical report
    9 pages
    English language
    sale 15% off
  • Draft
    9 pages
    English language
    sale 15% off
  • Draft
    9 pages
    English language
    sale 15% off
ISO
ISO/IEC 30107-3:2023(Main)
Information technology — Biometric presentation attack detection — Part 3: Testing and reporting

This document establishes: — principles and methods for the performance assessment of presentation attack detection (PAD) mechanisms; — reporting of testing results from evaluations of PAD mechanisms; and — a classification of known attack types (Annex A). Outside the scope are: — standardization of specific PAD mechanisms; — detailed information about countermeasures (i.e. anti-spoofing techniques), algorithms or sensors; and — overall system-level security or vulnerability assessment. The attacks considered in this document take place at the biometric capture device during presentation. Any other attacks are considered outside the scope of this document.

  • Standard
    39 pages
    English language
    sale 15% off
ISO
ISO/IEC 29120-1:2022(Main)
Information technology — Machine-readable test data for biometric testing and reporting — Part 1: Test reports

This document establishes: — machine-readable records for documenting the output of a biometric test; — formats for data that ISO/IEC 19795 series tests are required to report; and — an ASN.1 syntax for test reports. This document does not: — require, prohibit, or otherwise specify the format of biometric samples or templates used in a test; — require, prohibit or otherwise specify the encapsulation of biometric samples or templates used in a test; or — regulate metrics for tests. NOTE The reportable metrics are established in ISO/IEC 19795-1.

  • Standard
    36 pages
    English language
    sale 15% off
ISO
ISO/IEC 19794-14:2022(Main)
Information technology — Biometric data interchange formats — Part 14: DNA data

This document specifies a data interchange format for the exchange of deoxyribonucleic acid (DNA) data for person identification or verification technologies that utilize human DNA. Consideration of laboratory procedures is out of scope of this document. This document provides the ability for DNA profile data to be exchanged and used for comparison (subject to privacy regulations) with DNA profile data produced by any other system that is based on a compatible DNA profiling technique and where the data format conforms to this document. This document is intended to cover current forensic DNA profiling or typing techniques that are based on short tandem repeats (STRs), including STRs on the X chromosome (X-STRs) the Y chromosome (Y-STRs), as well as mitochondrial DNA. A single DNA profile for a subject can contain data resulting from more than one of these different DNA techniques. This document enables data from multiple DNA techniques to be presented in a single DNA profile for a given subject. This document has been prepared in light of ongoing efforts to reduce human involvement in the processing (enrolment and comparison) of DNA. In anticipation of the data format requirements for automated DNA techniques, this document describes a format for both processed and raw (electrophoretic) DNA data. A normative XML schema definition (XSD) is provided in Clause A.1 for the syntax of DNA data XML documents. In Clause A.2, there is a sample DNA data XML document. This document is not intended for any other purposes than exchange of DNA for biometric verification and identification of individuals. In particular, it is not intended for the exchange of medical and other health-related information. This document also specifies elements of conformance testing methodology, test assertions and test procedures as applicable to this document. It establishes test assertions pertaining to the structure of the DNA data format (Type A Level 1 as defined in ISO/IEC 19794-1:2011/Amd. 1:2013) and test assertions pertaining to internal consistency of the values contained within each field (Type A,ind Level 2 as defined in ISO/IEC 19794-1:2011/Amd. 1:2013). This document also specifies test assertions pertaining to the content of DNA data XML documents (Level 3 as defined in ISO/IEC 19794-1:2011/Amd. 1:2013). The successful completion of Level 1 and Level 2 is a prerequisite for carrying out the tests at Level 3. The conformance testing methodology specified in this document does not establish: — tests of other characteristics of biometric products or other types of testing of biometric products (e.g. acceptance, performance, robustness, security); — tests of systems not claimed to conform to the requirements of this document.

  • Standard
    135 pages
    English language
    sale 15% off
ISO
ISO/IEC TR 49794:2022(Main)
Information technology — Transition examples from the ISO/IEC 19794:2005 series to the ISO/IEC 39794 series for ID documents

This document provides transition examples from ISO/IEC 19794-4:2005 and ISO/IEC 19794-5:2005 formats to ISO/IEC 39794-4:2019 and ISO/IEC 39794-5:2019 formats for eMRTD application. This document also provides an implementation example for the ISO/IEC 39794-6:2021 format. This document includes: — information for eMRTD issuers and eMRTD-reader vendors; — summarized tables of data elements of ISO/IEC 19794-4:2005 and ISO/IEC 19794-5:2005 and ISO/IEC 39794-4:2019, ISO/IEC 39794-5:2019 and ISO/IEC 39794-6:2021; — correspondence tables of data elements between ISO/IEC 19794-4:2005 and ISO/IEC 19794-5:2005 and ISO/IEC 39794-4:2019 and ISO/IEC 39794-5:2019, providing: — information on whether each data element is normative or optional, and — a brief note of each data element from the viewpoint of transition; — tag, length, value (TLV) data examples of ISO/IEC 39794-4:2019, ISO/IEC 39794-5:2019 and ISO/IEC 39794-6:2021 for implementation, and, — tag lists of ISO/IEC 39794-4:2019, ISO/IEC 39794-5:2019 and ISO/IEC 39794-6:2021, and an extended example of ISO/IEC 39794-5 as informative annexes. The following are not within the scope of this document: — second and later editions of the ISO/IEC 19794 series (2011 and after), and, — ASN.1 formats and XML formats specified in the ISO/IEC 39794 series.

  • Technical report
    53 pages
    English language
    sale 15% off
  • Draft
    53 pages
    English language
    sale 15% off