iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/IEC 30106-1:2016

(Main)

Information technology — Object oriented BioAPI — Part 1: Architecture

Information technology — Object oriented BioAPI — Part 1: Architecture

ISO/IEC 30106-1:2016 specifies an architecture for a set of interfaces which define the OO BioAPI. Components defined in this part of ISO/IEC 30106 include a framework, Biometric Service Providers (BSPs), Biometric Function Providers (BFPs) and a component registry. NOTE Each of these components have an equivalent component specified in ISO/IEC 19784‑1 as the OO BioAPI is intended to be an OO interpretation of this part of ISO/IEC 30106. For this reason, this part of ISO/IEC 30106 is conceptually equivalent to ISO/IEC 19784‑1. Concepts present in this part of ISO/IEC 30106 (for example, BioAPI_Unit and component registry) have the same meaning as in ISO/IEC 19784‑1. While the conceptual equivalence of this part of ISO/IEC 30106 will be maintained with ISO/IEC 19784‑1, there are differences in the parameters passed between functions and the sequence of function calls. These differences exist to take advantage of the features provided by Object Oriented Programming Languages.

Technologies de l'information — Objet orienté BioAPI — Partie 1: Architecture

General Information

Status
Published
Publication Date
22-Mar-2016
ICS
35.040 - Information coding
35.240.15 - Identification cards. Chip cards. Biometrics
Technical Committee
ISO/IEC JTC 1/SC 37 - Biometrics
Drafting Committee
ISO/IEC JTC 1/SC 37 - Biometrics
Current Stage
9093 - International Standard confirmed
Completion Date
08-Jun-2021
Ref Project

Relations

Amended By
ISO/IEC 30106-1:2016/Amd 1:2019 - Information technology — Object oriented BioAPI — Part 1: Architecture — Amendment 1: Additional specifications and conformance statements
Effective Date
18-Dec-2021

Buy Standard

ISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPIISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPI
PreviousNext
Standard
ISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPI
English language
29 pages
sale 15% off
Preview
sale 15% off
Preview
ISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPIISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPI
PreviousNext
Standard
ISO/IEC 30106-1:2016 - Information technology -- Object oriented BioAPI
English language
29 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

INTERNATIONAL ISO/IEC
STANDARD 30106-1
First edition
2016-03-15
Information technology — Object
oriented BioAPI —
Part 1:
Architecture
Technologies de l’information — Objet orienté BioAPI —
Partie 1: Architecture
Reference number
ISO/IEC 30106-1:2016(E)
©
ISO/IEC 2016

---------------------- Page: 1 ----------------------
ISO/IEC 30106-1:2016(E)

COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2016, Published in Switzerland
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form
or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior
written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of
the requester.
ISO copyright office
Ch. de Blandonnet 8 • CP 401
CH-1214 Vernier, Geneva, Switzerland
Tel. +41 22 749 01 11
Fax +41 22 749 09 47
copyright@iso.org
www.iso.org
ii © ISO/IEC 2016 – All rights reserved

---------------------- Page: 2 ----------------------
ISO/IEC 30106-1:2016(E)

Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Symbols and abbreviated terms . 1
5 Object Oriented BioAPI architecture . 2
5.1 Summary of BioAPI architecture . 2
5.2 BioAPI compatibility requirements . 4
5.3 Graphical User Interface (GUI) . 4
5.4 Implementation guidelines . 6
5.4.1 Basic concepts . 6
5.4.2 BioAPI_Unit development . 6
5.4.3 BFP development . 6
5.4.4 BSP development . 7
5.4.5 Framework and component registry . 8
5.4.6 Application development . 8
6 BioAPI CBEFF Patron Formats . 8
6.1 General . 8
6.2 Simple BIR . 8
6.3 Complex BIR .14
6.3.1 Structure .14
6.3.2 Child BIR .14
6.3.3 Parent BIR .14
7 Constants .17
7.1 General .17
7.2 Biometric types .17
7.3 Biometric subtypes .17
7.4 Error codes .18
8 OO BioAPI UML structure .21
8.1 General .21
8.2 Relationships among data structures .22
8.2.1 Class BIR .22
8.2.2 Class UnitSchema .23
8.2.3 Class BFPSchema .24
8.2.4 Class BSPSchema .24
8.2.5 Class FrameworkSchema .25
8.3 BioAPI_Unit structures .25
8.3.1 IArchive .25
8.3.2 IComparison .26
8.3.3 IProcessing .26
8.3.4 ISensor .27
8.4 BFP Structure .27
8.5 BSP Structure .28
8.6 Framework structure .28
8.7 Application related structure .29
© ISO/IEC 2016 – All rights reserved iii

---------------------- Page: 3 ----------------------
ISO/IEC 30106-1:2016(E)

Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical
activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international
organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the
work. In the field of information technology, ISO and IEC have established a joint technical committee,
ISO/IEC JTC 1.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for
the different types of document should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject
of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent
rights. Details of any patent rights identified during the development of the document will be in the
Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation on the meaning of ISO specific terms and expressions related to conformity
assessment, as well as information about ISO’s adherence to the WTO principles in the Technical
Barriers to Trade (TBT) see the following URL: Foreword - Supplementary information
The committee responsible for this document is ISO/IEC JTC 1, Information technology, SC 37, Biometrics.
ISO/IEC 30106 consists of the following parts, under the general title Information technology — BioAPI
for object oriented programming languages:
— Part 1: Architecture
— Part 2: Java implementation
— Part 3: C# implementation
iv © ISO/IEC 2016 – All rights reserved

---------------------- Page: 4 ----------------------
ISO/IEC 30106-1:2016(E)

Introduction
The existing versions of BioAPI (ANSI version-INCITS 358 and ISO/IEC 19784-1) specify an application
programming interface expressed in the C language. The use of a portable language like C ensures
the BioAPI is accessible across multiple computing platforms and application domains. BioAPI is an
appropriate fit for applications written in C and is adequate for applications written in C++.
Unfortunately, a function-based language like C does not map easily to the object oriented domain where
this issue may be answered with an object oriented (OO) version of BioAPI. As noted, the function-
based nature of a C API does not map easily to the object oriented paradigm (i.e. languages such as C#
and Java). In particular, the use of a C API from within an object oriented application is unnatural and
requires programming constructs which introduce complexity to the development of an application.
Development of a OO version of BioAPI aims to increase the productivity of software practitioners who
who wish to use the BioAPI whilst remaining in the object oriented domain.
A standard object oriented version of BioAPI allows, in case of Java, BSPs that are intended for loading
into a Java-based application server to perform verification and/or identification operations. In those
application servers, use of the OO BioAPI is more natural when developing a framework and BSPs than
the C version of BioAPI.
Another area in which a standard OO version of BioAPI would be useful is that of small computing
devices based on an object oriented language (OOL), where (as on the large application servers
mentioned above) an OO BioAPI framework and OO BSPs would fit better than their C counterparts.
This part of ISO/IEC 30106 is expected to have the following impact:
— enable creation of BioAPI applications by developers more comfortable with Object Oriented
Languages;
— create a market of standard OO BSP components which target OO environments such as Java
application servers, Java applets, small Java devices, .NET servers, .NET applications, web services;
— increase the level of adoption of BioAPI by decreasing the barrier of entry for OO developers. This
includes providing access to C based BSPs (as if they were OO BSPs) through special versions of the
BioAPI framework, bridging a standard OO BioAPI framework to a standard C BioAPI framework.
© ISO/IEC 2016 – All rights reserved v

---------------------- Page: 5 ----------------------
INTERNATIONAL STANDARD ISO/IEC 30106-1:2016(E)
Information technology — Object oriented BioAPI —
Part 1:
Architecture
1 Scope
This part of ISO/IEC 30106 specifies an architecture for a set of interfaces which define the OO BioAPI.
Components defined in this part of ISO/IEC 30106 include a framework, Biometric Service Providers
(BSPs), Biometric Function Providers (BFPs) and a component registry.
NOTE Each of these components have an equivalent component specified in ISO/IEC 19784-1 as the OO
BioAPI is intended to be an OO interpretation of this part of ISO/IEC 30106.
For this reason, this part of ISO/IEC 30106 is conceptually equivalent to ISO/IEC 19784-1. Concepts
present in this part of ISO/IEC 30106 (for example, BioAPI_Unit and component registry) have the same
meaning as in ISO/IEC 19784-1. While the conceptual equivalence of this part of ISO/IEC 30106 will be
maintained with ISO/IEC 19784-1, there are differences in the parameters passed between functions
and the sequence of function calls. These differences exist to take advantage of the features provided
by Object Oriented Programming Languages.
2 Normative references
The following documents, in whole or in part, are normatively referenced in this document and are
indispensable for its application. For dated references, only the edition cited applies. For undated
references, the latest edition of the referenced document (including any amendments) applies.
ISO/IEC 2382-37, Information technology — Vocabulary — Part 37: Biometrics
ISO/IEC 19784-1:2006, Information technology — Biometric Application Programming Interface — Part
1: BioAPI Specification
ISO/IEC 19785-1:2015, Information technology — Common Biometric Exchange Formats Framework —
Part 1: Data Element Specification
ISO/IEC 19785-3:2015, Information technology — Common Biometric Exchange Formats Framework —
Part 3: Patron format specifications
3 Terms and definitions
For the purposes of this document, the terms and definitions in ISO 2382-37, ISO/IEC 19784-1, and
ISO/IEC 19785 (all parts) apply.
4 Symbols and abbreviated terms
For the purposes of this document, the symbols and abbreviated terms defined in ISO/IEC 19784-1,
ISO/IEC 19785 (all parts) and the following apply.
API Application Programming Interface
BDB Biometric Data Block
BFP Biometric (OO) Function Provider
© ISO/IEC 2016 – All rights reserved 1

---------------------- Page: 6 ----------------------
ISO/IEC 30106-1:2016(E)

BIR Biometric Information Record
BSP Biometric Service Provider
CBEFF Common Biometric Exchange Formats Framework
FMR False Match Rate
FPI Function Provider Interface
GUI Graphical User Interface
ID Identity/Identification/Identifier
MOC Match on Card
OOBioAPI Object Oriented BioAPI
PID Product ID
SB Security Block
NOTE This term and abbreviation is imported from ISO/IEC 19785-1.
SBH Standard Biometric Header
NOTE This term and abbreviation is imported from ISO/IEC 19785-1.
SPI Service Provider Interface
UUID Universally Unique Identifier
5 Object Oriented BioAPI architecture
5.1 Summary of BioAPI architecture
Object Oriented BioAPI shall be defined in a way that allows both structured development of applications
and services, as well as interoperability between application and BSPs, and among BSPs. Therefore, the
definition has to be done respecting the hierarchical structure of BioAPI (19784-1). In few words, an
application shall be developed using an OO BioAPI that allows the instantiation of a BSP, which is based
on the instantiation of one or several BioAPI_Units. The BSP can host more than one BioAPI_Unit of each
category, and several units of each type can be used at any time, no presenting any kind of limitation
on the units to be used in a BSP. This makes it necessary for all methods to provide the reference to the
unit to be used in each of the operations.
An application is not permitted to directly access BioAPI_Units. Therefore, this part of ISO/IEC 30106
does not define a BioAPI_Unit interface, but only an object oriented hierarchical interface/class
model that may ease the implementation of the BSP. The BSP shall inherit all public methods and data
structures for each BioAPI_Unit the BSP encapsulates. It is the responsibility of the BSP’s implementation
to determine which functions of the BioAPI_Unit are offered to clients of the BSP. Note, an exception
should be returned for any BSP interface method that is not implemented in the BSP. This is represented
in Figure 1.
Programming an application, which interacts directly with a BSP, introduces practical considerations
for the application designer. One such consideration is dealing with third-party suppliers who provide
biometric components for use in applications. For example, a supplier of sensors may desire to include
support for their entire family of sensors as a single entity (e.g. a library). To achieve this, the supplier
may consider implementing the library as a single BSP, but may choose to not implement monolithic
methods (i.e. aggregated functionality such as Enrol, which does in one single call the capture, the
processing of the sample, the creation of the biometric reference and even the archiving). Without
monolithic methods, the BSP forces the application to take responsibility for the implementation
of monolithic style functionality. This situation means the BSP may pass biometric data back to the
application so the application may perform processing. The application may then need to pass this data
on to another BSP for additional processing. In some contexts, the passing of data out to an application
may simply be inefficient, in other contexts this may be a security concern. A possible solution for this
inconvenience is to allow the hypothetical sensor BSP to interact directly with other BSPs, rather than
involving the application in the management of this communication. To achieve this, the biometric
2 © ISO/IEC 2016 – All rights reserved

---------------------- Page: 7 ----------------------
ISO/IEC 30106-1:2016(E)

product provider may create an entity (e.g. a library) containing several BioAPI_Units of the same kind.
This is called a Biometric Function Provider (BFP) and exhibits the following characteristics.
— The BFP shall only host BioAPI_Units of the same category.
— The BFP is meant to allow that a BSP is linked to one of its BioAPI_Units, in order to complete or
adapt the functionality of the BSP.
— The BFP shall not provide functionality directly to the application, but only link to the BSP. The BSP
communicates with the BFP on behalf of the application. The BSP is responsible for providing the
BFP’s functionality to the application.
The above mentioned situation also solves a problem from developers’ point of view, which deals with
simplicity in developing applications. If an application may require to use BioAPI_Units from different
providers (e.g. a sensor from one provider and processing, comparison and archive BioAPI_Units from
other provider), then it will have to load two different BSPs, calling each of the methods independently.
As mentioned earlier, this has the inconvenience that it won’t be possible to call a monolithic method,
such as Verify(), which performs the data capture, the processing, extraction of the biometric reference
from the database, the comparison and taking the decision, all within the same single call. Then, the
application programmer will have to know which individual methods have to be called from each of
the BSPs, in order to get the same functionality. To summarize, a level of abstraction and efficiency is
achieved through the use of BFPs to segregate functionality into discrete sets. Each BFP aggregates a
set of functionality provided by a product supplier (through a BioAPI_Unit). These BFPs are used by
a BSP, where the BSP combines functionality from each BFP to offer monolithic methods for use by a
client. The client application may then call the monolithic methods in the BSP without concern for the
underlying implementation offered by a product supplier.
Another consideration for an application designer is the concern about security in regards to certain
operations. Biometric data is typically sensitive personal data and some implementations of OO BioAPI
may require the client application is not capable of directly accessing this data (ie: BIRs). By taking
advantage of BFPs, and the abstraction facilities they offer, the possibility of tampering by malware or
malicious users at the application level is removed. By using BFPs, all sensitive data will be handled at
a level no higher than the BSP level. This means no BIR will be accessible to the application, not only
simplifying application development, but eases concerns in relation to security.
The BFP shall not be accessed directly by the application. BioAPI calls are created to allow the
application to know the BioAPI_Units that are contained in the BFPs so that the application may later
request one BSP to include one of those BioAPI_Units of the BFP. This is done through a component
registry and the procedure is further described in 5.4.
All the above ideas shall be implemented to allow the dynamic selection of components to be used by
the application, but with no a-priori knowledge from the application developer. This is achieved by
the inclusion of a common framework, which shall be installed in the system where the application
is expected to be running. Then, the application shall request the framework for the list of the BSPs
and BFPs installed, select the BSPs (with the requested selection of BioAPI_Units from BFPs) to be
instantiated dynamically by the framework, and then accessing their methods and data structures
through the framework. The application shall never be allowed to access the BSPs directly. This is
summarized in Figure 1.
© ISO/IEC 2016 – All rights reserved 3

---------------------- Page: 8 ----------------------
ISO/IEC 30106-1:2016(E)

Figure 1 — Generic structure of a framework-based application
BSPs may be accessed by several applications at the same time, and it may also happen that BioAPI_
Units in the BFPs are also accessed by several BSPs at the same time. It is up to the implementation
of the framework the way that this implemented (e.g. this may be done by queuing requests from the
different sources, or by responding to occurring events).
For those developers that are familiar with ISO/IEC 19784, it is important to provide a relationship
about the interfaces there defined and the different layers that compose these International Standards.
The correspondence between both International Standards is given in Table 1.
Table 1 — Correspondence between ISO/IEC 30106 and ISO/IEC 19784 interfaces
Interface in ISO/IEC 30106 Interface in ISO/IEC 19784
IFramework API
IBSP SPI
IBFP SFPI
Along the ISO/IEC 30106 series, the Unit level will be also specified, not as for specifying a different
interface, but for structuring in a hierarchical way the support for each of the categories of BioAPI_
Units at the IBSP or IBFP interfaces.
5.2 BioAPI compatibility requirements
This part of ISO/IEC 30106 is defined as compatible with BioAPI version 3.0 (ISO/IEC 19784-1.revision
1), but the framework may be developed as to allow the cross compatibility with previous versions
of BioAPI, as to allow BioAPI 2.x compliant BSPs and BFPs to be used in an ISO/IEC 30106 compliant
application.
There is no provision to allow Object Oriented BSPs to be used in an ISO/IEC 19784-compliant
framework and application.
5.3 Graphical User Interface (GUI)
A BSP may handle by itself, the interaction between the user and the system. For example, a BSP with
a sensor BioAPI_Unit may address all the interaction by the displaying messages, illuminating LEDs
4 © ISO/IEC 2016 – All rights reserved

---------------------- Page: 9 ----------------------
ISO/IEC 30106-1:2016(E)

and/or activating sounds at the sensor itself. Such kind of interaction may include providing feedback
to the user on
— the finger to be placed at the sensor,
— how to improve the location of the sample in the sensor (e.g. alignment of the biometric characteristic
in relation to the sensor active area),
— whether the acquisition has been done in a correct way, or
— whether the biometric comparison has led to a positive or negative decision.
But in certain cases, it may be requested that such interaction is handled by the application using such
BSP, showing all messages and illustrations in the computer screen. This may also be handled by the
BSP itself, but this can lead to certain kinds of inconveniences such as the following:
— the BSP graphical user interface may not be adaptable to the different sizes and resolutions that the
application screen is using;
— the feedback provided has to follow the same look and feel as the main application, including the use
of service provider logos;
— the feedback has to be adaptable to the language of the user being identified, or where the system is
deployed.
In those cases, it is recommended in order to avoid re-programming the BSP or increasing the
complexity of the BSP, the interaction is handled by the application itself. As the feedback depends on
the specific step that the BSP is executing, and those steps are mostly controlled by the BSP (i.e. most
BSP functions are offered to the application as monolithic methods), then the way to solve this is by
using callback functions.
Callback functions shall be developed for each step where a BSP is required to either interact with, or
provide feedback to, a user. Naturally, the application shall provide a set of functions the BSP’s callbacks
will map to, which the BSP will call within the context of the original method call.
Therefore, if the BSP allows the use of callback functions for handling the GUI, the following development
actions shall be taken, for each of the processes requiring such interaction (e.g. Capture).
— The application shall implement all GUI related functions for such process. These functions are of
the following kinds:
— Select Function: to show the interaction with the user at the beginning or the end of the whole
process.
EXAMPLE At the beginning the process, the following message may be provided: “Capture process for
the index finger of the right hand”. And at the end of the process, the message to be given could be: “Acquisition
finished. Thank you!”. Therefore, the callback function shall know if it is being called at the beginning of the
process, or at the end. Also, the callback function can also provide the BSP with information about a user
action, such as cancelling the capture process. All this information flow is provided in parameters of the
callback function.
— State Function: Sometimes the BSP process may take several internal steps, which can be
designed a
...

DRAFT INTERNATIONAL STANDARD
ISO/IEC DIS 30106-1
ISO/IEC JTC 1/SC 37 Secretariat: ANSI
Voting begins on: Voting terminates on:
2014-12-04 2015-03-04
Information technology — BioAPI for object oriented
programming languages —
Part 1:
Architecture
Titre manque
ICS: 35.040
THIS DOCUMENT IS A DRAFT CIRCULATED
FOR COMMENT AND APPROVAL. IT IS
THEREFORE SUBJECT TO CHANGE AND MAY
NOT BE REFERRED TO AS AN INTERNATIONAL
STANDARD UNTIL PUBLISHED AS SUCH.
IN ADDITION TO THEIR EVALUATION AS
BEING ACCEPTABLE FOR INDUSTRIAL,
TECHNOLOGICAL, COMMERCIAL AND
USER PURPOSES, DRAFT INTERNATIONAL
STANDARDS MAY ON OCCASION HAVE TO
BE CONSIDERED IN THE LIGHT OF THEIR
POTENTIAL TO BECOME STANDARDS TO
WHICH REFERENCE MAY BE MADE IN
Reference number
NATIONAL REGULATIONS.
ISO/IEC DIS 30106-1:2014(E)
RECIPIENTS OF THIS DRAFT ARE INVITED
TO SUBMIT, WITH THEIR COMMENTS,
NOTIFICATION OF ANY RELEVANT PATENT
RIGHTS OF WHICH THEY ARE AWARE AND TO
©
PROVIDE SUPPORTING DOCUMENTATION. ISO/IEC 2014

---------------------- Page: 1 ----------------------
ISO/IEC DIS 30106-1:2014(E)

Copyright notice
This ISO document is a Draft International Standard and is copyright-protected by ISO. Except as
permitted under the applicable laws of the user’s country, neither this ISO draft nor any extract
from it may be reproduced, stored in a retrieval system or transmitted in any form or by any means,
electronic, photocopying, recording or otherwise, without prior written permission being secured.
Requests for permission to reproduce should be addressed to either ISO at the address below or ISO’s
member body in the country of the requester.
ISO copyright office
Case postale 56 • CH-1211 Geneva 20
Tel. + 41 22 749 01 11
Fax + 41 22 749 09 47
E-mail copyright@iso.org
Web www.iso.org
Reproduction may be subject to royalty payments or a licensing agreement.
Violators may be prosecuted.
ii © ISO 2014 – All rights reserved

---------------------- Page: 2 ----------------------
ISO/IEC DIS 30106-1
Contents Page
Foreword . v
Introduction . vi
1 Scope . 1
2 Conformance . 1
3 Normative references . 1
4 Terms and definitions . 1
5 Symbols and abbreviated terms . 1
6 Object Oriented BioAPI architecture . 2
6.1 Summary of BioAPI architecture . 2
6.2 BioAPI compatibility requirements . 4
6.3 Graphical User Interface (GUI) . 5
6.4 Implementation guidelines . 6
6.4.1 Basic concepts . 6
6.4.2 BioAPI_Unit development. 6
6.4.3 BFP development . 7
6.4.4 BSP development . 8
6.4.5 Framework and component registry . 8
6.4.6 Application development . 9
7 BioAPI C# CBEFF Patron Formats . 9
8 Constants . 9
8.1 General . 9
8.2 Biometric Types . 9
8.3 Biometric Subtypes . 10
8.4 Error Codes . 10
9 OO BioAPI UML Structure . 13
9.1 Introduction . 13
9.2 Relationships among data structures . 14
9.2.1 Class BIR . 14
9.2.2 Class UnitSchema . 15
9.2.3 Class BFPSchema . 16
9.2.4 Class BSPSchema . 17
9.2.5 Class FrameworkSchema . 18
9.3 BioAPI_Unit structures . 18
9.3.1 IArchive. 18
9.3.2 IComparison . 19
9.3.3 IProcessing . 19
9.3.4 ISensor. 20
9.4 BFP Structure . 20
9.5 BSP Structure . 21
9.6 Framework structure . 22
9.7 Application related structure . 22
Annex A (normative) Conformance statements . 23
A.1 General . 23
A.2 BioAPI OO Conformant Biometric Application . 23
A.3 BioAPI OO Conformant Framework . 23
A.4 BioAPI OO Conformant BSPs . 24
A.4.1 BioAPI OO Conformant Verification BSPs . 26
A.4.2 BioAPI OO Conformant Identification BSPs . 27
© ISO/IEC 2014 – All rights reserved iii

---------------------- Page: 3 ----------------------
ISO/IEC DIS 30106-1
A.4.3 BioAPI OO Conformant Capture BSPs . 28
A.4.4 BioAPI Conformant Verification Engines . 28
A.4.5 BioAPI OO Conformant Identification Engines . 29
A.4.6 Optional Capabilities . 29
Annex B (informative) Mapping between ISO/IEC 19784-1 and ISO/IEC 30106 . 35
B.1 Introduction . 35
B.2 Data Types . 35
B.3 Unit Classes . 46
B.3.1 Archive unit classes . 46
B.3.2 Comparison unit classes . 49
B.3.3 Processing unit classes . 52
B.3.4 Sensor unit classes . 54
B.4 BFPs . 55
B.5 BSPs . 57
B.6 Component Registry . 66
B.7 Framework . 67

iv © ISO/IEC 2014 – All rights reserved

---------------------- Page: 4 ----------------------
ISO/IEC DIS 30106-1
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies
(ISO member bodies). The work of preparing International Standards is normally carried out through ISO
technical committees. Each member body interested in a subject for which a technical committee has been
established has the right to be represented on that committee. International organizations, governmental and
non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the
International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.
International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.
The main task of technical committees is to prepare International Standards. Draft International Standards
adopted by the technical committees are circulated to the member bodies for voting. Publication as an
International Standard requires approval by at least 75 % of the member bodies casting a vote.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. ISO shall not be held responsible for identifying any or all such patent rights.
ISO/IEC 30106-1 was prepared by Technical Committee ISO/TC JTC1, Information Technology,
Subcommittee SC 37, Biometrics.
This second/third/. edition cancels and replaces the first/second/. edition (), [clause(s) / subclause(s) /
table(s) / figure(s) / annex(es)] of which [has / have] been technically revised.
ISO/IEC 30106 consists of the following parts, under the general title Information Technology — BioAPI for
Object Oriented Programming Languages:
 Part 1: Architecture
 Part 2: Java implementation
 Part 3: C# implementation
© ISO/IEC 2014 – All rights reserved v

---------------------- Page: 5 ----------------------
ISO/IEC DIS 30106-1
Introduction
The existing versions of BioAPI, the ANSI version-INCITS 358 and ISO/IEC 19784-1, specify an application
programming interface expressed in the C language. The use of this language ensures the wide applicability
and implementability of BioAPI across multiple computing platforms and application domains. This API is an
appropriate fit for applications written in the same language, and is adequate for applications written in C++.
Lack of portability of applications written in C is an issue that can be answered with an object oriented (OO)
version of BioAPI. A C API does not work well with applications written in Java, C#, and other programming
languages. In particular, the use of a C API from within an Object oriented (apart from C++) application is very
unnatural, and requires certain programming artifices that introduce complications in the application, thus
increasing the cost of application development and maintenance. If a standard OO version of BioAPI were
available, the development of Java, C#, etc. applications that use a standard biometric API would be easier
and cheaper than it is today.
A standard Object Oriented version of BioAPI would also allow, in case of Java, BSPs that are intended for
loading into a Java-based application server to perform verification and/or identification operations. In those
application servers, a Java BioAPI framework and Java BSPs would work better than their C counterparts.
Another area in which a standard OO version of BioAPI would be useful is that of small computing devices
based on object oriented language (OOL), where (as on the large application servers mentioned above) a OO
BioAPI framework and OO BSPs would fit better than their C counterparts.
This standard is expected to have the following impact:
 Enable creation of many new BioAPI applications by developers more comfortable with Object
Oriented Languages.
 Create a market of OO components that are standard OO BioAPI BSPs, and that can be used (along
with a OO BioAPI framework) in OO environments such as Java-based application servers, Java
applets, or small Java-based devices, .NET servers, .NET applications, Web Services;and
 Increase the level of adoption of BioAPI by enabling OO application developers to access C BSPs
(as if they were OO BSPs) through special versions of the BioAPI framework that will bridge a
standard OO BioAPI framework to a standard C BioAPI framework.




vi © ISO/IEC 2014 – All rights reserved

---------------------- Page: 6 ----------------------
DRAFT INTERNATIONAL STANDARD ISO/IEC DIS 30106-1

Information Technology — BioAPI for Object Oriented
Programming Languages — Part 1: Architecture
1 Scope
The proposed standard will specify a generic architecture for the interface of a BioAPI OO framework and
BioAPI OO BSP which will mirror the corresponding components specified in ISO/IEC 19784-1. Therefore, the
position occupied by the proposed standard within the general picture of biometrics standards will be the
same position that ISO/IEC 19784-1 occupies, the only difference being the programming language of the
interfaces. The concepts such as BioAPI_Unit, component registry, etc. are present in this standard and will
have the same meaning as in ISO/IEC 19784-1. The semantic equivalence of this standard will be maintained
with ISO/IEC 19784-1, but there are differences in actual parameters passed between functions and the
sequence of function calls. These differences exist to take advantage of the object oriented benefits of Object
Oriented Programming Languages.
2 Conformance
Annex A specifies the conformance requirements for systems/components claiming conformance to this
standard.
3 Normative references
The following referenced documents are indispensable for the application of this document. For dated
references, only the edition cited applies. For undated references, the latest edition of the referenced
document (including any amendments) applies.
ISO/IEC 19784-1:2006, Information Technology – Biometric Application Programming Interface – Part 1:
BioAPI Specification
ISO/IEC 19785-1:2006, Information Technology – Common Biometric Exchange Formats Framework – Part 1:
Data Element Specification
ISO/IEC 19785-2:2006, Information Technology – Common Biometric Exchange Formats Framework – Part 2:
Procedures for the Operation of the Biometric Registration Authority
4 Terms and definitions
For the purposes of this document, the terms defined in ISO/IEC 19784-1, ISO/IEC 19785 and ISO 2382-37
apply.
5 Symbols and abbreviated terms
For the purposes of this document, the symbols and abbreviated terms defined in ISO/IEC 19784-1, ISO/IEC
19785 and the following applies:
API – Application Programming Interface
BDB – Biometric Data Block
BFP – Biometric (OO) Function Provider
© ISO/IEC 2014 – All rights reserved 1

---------------------- Page: 7 ----------------------
ISO/IEC DIS 30106-1
BIR – Biometric Information Record
BSP – Biometric Service Provider
CBEFF – Common Biometric Exchange Formats Framework
FMR – False Match Rate
FPI – Function Provider Interface
GUI – Graphical User Interface
ID – Identity/Identification/Identifier
MOC – Match on Card
OOBioAPI – Object Oriented BioAPI
PID – Product ID
SB - Security Block
NOTE This term and abbreviation is imported from ISO/IEC 19785-1.
SBH – Standard Biometric Header
NOTE This term and abbreviation is imported from ISO/IEC 19785-1.
SPI – Service Provider Interface
UUID – Universally Unique Identifier

6 Object Oriented BioAPI architecture
6.1 Summary of BioAPI architecture
Object Oriented BioAPI shall be defined in a way that allows both, structured development of applications and
services, as well as interoperability between application and BSPs, and among BSPs. Therefore the definition
has to be done respecting the hierarchical structure of BioAPI (19784-1). In few words, this has to allow the
development of applications in a system based on a BioAPI Framework, as well as applications in a system
where no Framework is used (framework-free). Starting with the latter, and application in a framework-free
based system shall be developed using an OO BioAPI that allows the instantiation of a BSP, which is based
on the instantiation of one or several BioAPI_Units. The BSP can host more than one BioAPI_Unit of each
category, and when a session is attached, several units of each type can be selected, no presenting any kind
of limitation on the units to be used in a BSP. This makes it necessary for all methods to provide the reference
to the unit to be used in each of the operations.
It is not allowed that the application access BioAPI_Units directly. Therefore this International Standard does
not define a BioAPI_Unit interface, but only an object oriented hierarchical interface/class model that may
ease the implementation of the BSP. The BSP shall inherit all public methods and data structures of the
BioAPI_Units, and it is up to the implementation of the BSP implementation to decide which of them are
offered to the external world, and which of them are only returning the lack of support of such method. This is
represented in the following figure.
Programming an application using a direct connection with the BSPs, rises certain concerns in practical
situations. The first concern is dealing with industry providing elements to be used in applications. It may
happen that a provider is only providing sensors, and would like to include support to all its family of sensors
2 © ISO/IEC 2014 – All rights reserved

---------------------- Page: 8 ----------------------
ISO/IEC DIS 30106-1
as a single entity (e.g. a library). That provider may consider implementing that as a single BSP, but not being
interested in providing monolithic methods (i.e. aggregated functionality such as Enrol, which does in one
single call the capture, the processing of the sample, the creation of the biometric reference and even the
archiving). Therefore it will need to request these kind of functions to be done at the application level,
exchanging biometric information between the BSP and the application. Then, the application may forward
that biometric data to another BSP to complete the action. So a possible solution for this inconvenience is to
allow those sensors to directly interact with other BSPs, instead of using the application for that. To achieve
this, the biometric product provider may create an entity (e.g. a library) containing several BioAPI_Units of the
same kind. This is called a Biometric Function Provider (BFP), which has mainly the following characteristics:
 The BFP shall only host BioAPI_Units of the same category.
 The BFP is meant to allow that a BSP is linked to one of its BioAPI_Units, in order to complete or
adapt the functionality of the BSP.
 The BFP shall not provide functionality to the application, but only the link to the BSP. It is the BSP
the one providing functionality to the application.
The above mentioned situation also solves a problem from developers' point of view, which deals with
simplicity in developing applications. If an application may require to use BioAPI_Units from different providers
(e.g. a sensor from one provider and processing, comparison and archive BioAPI_Units from other provider),
then it will have to load two different BSPs, calling each of the methods independently. As mentioned earlier,
this has the inconvenience that it won't be possible to call a monolithic method, such as Verify(), which
performs the data capture, the processing, extraction of the biometric reference from the database, the
comparison and taking the decision, all within the same single call. Then the application programmer will have
to know which individual methods have to be called from each of the BSPs, in order to get the same
functionality. So, by using a BSP that supports monolithic methods, and requesting that BSP to be linked to
those BioAPI_Units for the BFPs of other product providers, once that link is established, then the application
can call those monolithic methods without taking into account that the functionality is provided by different
vendors.
Last, but not least, there is a concern about security in certain operations. As biometric data is sensible
personal data, some clients may require that the biometric application will not be able to access directly the
user biometric data (i.e. the BIRs), avoiding the possibility of malware to tamper with such data. By using
BFPs, all sensible data will be handled at the BSP level, and no BIR may be accessible to the application, not
only simplifying the application development (by the use of monolithic methods), but also the security level
achieved.
The BFP shall not be accessed directly by the application. BioAPI calls are created to allow the application to
know the BioAPI_Units that are contained in the BFPs so that the application may later request one BSP to
attach one of those BioAPI_Units of the BFP. This is done through a component registry and the procedure is
further described in 6.4.
All the above ideas shall be implemented to allow the dynamic selection of components to be used by the
application, but with no a-priori knowledge from the application developer. This is achieved by the inclusion of
a common framework, which shall be installed in the system where the application is expected to be running.
Then the application shall request the framework for the list of the BSPs and BFPs installed, select the BSPs
(with the requested attachment of BioAPI_Units from BFPs) to be instantiated dynamically by the framework,
and then accessing their methods and data structures through the framework. The application shall never be
allowed to access the BSPs directly. This is summarized in the following figure.
© ISO/IEC 2014 – All rights reserved 3

---------------------- Page: 9 ----------------------
ISO/IEC DIS 30106-1

Application
Component Registry
Framework
BSP1 BSPm
Unit1 Unit2 UnitQ
BFP
Unit1 Unit2 UnitN Unit1 Unit2 UnitP

Figure 1: Generic structure of a framework-based application
BSPs may be accessed by several applications at the same time, and it may also happen that BioAPI_Units in
the BFPs are also accessed by several BSPs at the same time. It is up to the implementation of the
framework the way that this implemented (e.g. this may be done by queuing requests from the different
sources, or by responding to occurring events).
For those developers that are familiar with ISO/IEC 19784, it is important to provide a relationship about the
interfaces there defined, and the different layers that compose this International Standards. The
correspondence between both International Standards is given in the following table:
Table 1 — Correspondence between ISO/IEC 30106 and ISO/IEC 19784 interfaces
Interface in ISO/IEC 30106 Interface in ISO/IEC 19784
IFramework API
IBSP SPI
IBFP SFPI

Along all parts of this International Standard, the Unit level will be also specified, but not as for specifying a
different interface, but for structuring in a hierarchical way the support for each of the categories of
BioAPI_Units at the IBSP or IBFP interfaces.
6.2 BioAPI compatibility requirements
This International Standard is defined as compatible with BioAPI version 3.0 (ISO/IEC 19784-1.revision 1), but
the framework may be developed as to allow the cross compatibility with previous versions of BioAPI, as to
allow BioAPI 2.x compliante BSPs and BFPs to be used in an ISO/IEC 30106 compliant application.
There is no provision to allow Object Oriented BSPs to be used in an ISO/IEC 19784 compliant framework
and application.
4 © ISO/IEC 2014 – All rights reserved

---------------------- Page: 10 ----------------------
ISO/IEC DIS 30106-1
6.3 Graphical User Interface (GUI)
A BSP may handle by itself the interaction between the user and the system. For example, a BSP with a
sensor BioAPI_Unit may address all the interaction by the displaying messages, illuminating LEDs and/or
activating sounds at the sensor itself. Such kind of interaction may include providing feedback to the user on:
 the finger to be placed at the sensor,
 how to improve the location of the sample in the sensor (e.g. alignment of the biometric characteristic
in relation to the sensor active area),
 whether the acquisition has been done in a correct way, or
 whether the biometric comparison has led to a positive or negative decision.
But in certain cases, it may be requested that such interaction is handled by the application using such BSP,
showing all messages and illustrations in the computer screen. This may also be handled by the BSP itself,
but this can lead to certain kinds of inconveniences such as:
 the BSP graphical user interface may not be adaptable to the different sizes and resolutions that the
application screen is using,
 the feedback provided has to follow the same look & feel as the main application, including the use of
service provider logos,
 the feedback has to be adaptable to the language of the user being identified, or where the system is
deployed.
In those cases, it is recommended that, in order to avoid the re-programming of the BSP or increasing the
complexity of the BSP, the interaction is handled by the application itself. As the feedback depends on the
specific step that the BSP is executing, and those steps are mostly controlled by the BSP (i.e. most BSP
functions are offered to the application as monolithic methods), then the way to solve this is by using callback
functions.
Callback functions shall be designed for each step where the BSP requires to interact with the user, and for
each of the processes to be called, the application provides the BSP with the selected functions, so that the
BSP can call them within the execution of the process.
Therefore, if the BSP allows the use of callback functions for handling the GUI, the following developm
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO/IEC 19785-3:2020(Main)
Information technology — Common Biometric Exchange Formats Framework — Part 3: Patron format specifications

This document specifies and publishes registered Common Biometric Exchange Formats Framework (CBEFF) patron formats defined by the CBEFF patron ISO/IEC JTC 1/SC 37, and specifies their registered CBEFF patron format types (see ISO/IEC 19785-1) and resulting full ASN.1 OIDs.

  • Standard
    151 pages
    English language
    sale 15% off
  • Draft
    151 pages
    English language
    sale 15% off
ISO
ISO/IEC 24779-5:2020(Main)
Information technology — Cross-jurisdictional and societal aspects of implementation of biometric technologies — Pictograms, icons and symbols for use with biometric systems — Part 5: Face applications

The ISO/IEC 24779 series of standards focuses on communication with the data capture subject. This document contains a set of pictograms, icons and symbols to help the general public understand the concepts and procedures for using electronic systems that collect and/or evaluate facial images. Operators can use this document, with the possibility of using additional symbols and information. This set of pictograms, icons and symbols is designed to be used to: — identify the type of biometric sensor; — provide supporting instructions related to facial image collection. To provide this functionality, the set of pictograms, icons and symbols includes both directional pictograms, icons and symbols and action or feedback pictograms, icons and symbols. The facial image pictograms, icons and symbols include: — facial image capture; — single person; — no hat; — no sunglasses; — neutral expression; — hair up; — view direction. Although the pictograms, icons and symbols are presented individually, the pictograms, icons and symbols are intended to be combined to fully illustrate the facial image capture interaction. For example, in a customs or immigration environment, procedures constructed from the individual pictograms, icons and symbols could be presented as: — a series of posters while passengers are in the queue; — a series of transitional frames in a biometric booth; — an animated video or series of transitional frames while passengers are in the queue; — instructional leaflets for passengers to read in the queue.

  • Standard
    7 pages
    English language
    sale 15% off
ISO
ISO/IEC 30137-1:2019(Main)
Information technology — Use of biometrics in video surveillance systems — Part 1: System design and specification

The ISO 30137 series is applicable to the use of biometrics in VSS (also known as Closed Circuit Television or CCTV systems) for a number of scenarios, including real-time operation against watchlists and in post event analysis of video data. In most cases, the biometric mode of choice will be face recognition, but this document also provides guidance for other modalities such as gait recognition. This document: — defines the key terms for use in the specification of biometric technologies in a VSS, including metrics for defining performance; — provides guidance on selection of camera types, placement of cameras, image specification etc. for the operation of a biometric recognition capability in conjunction with a VSS; — provides guidance on the composition of the gallery (or watchlist) against which facial images from the VSS are compared, including the selection of appropriate images of sufficient quality, and the size of the gallery in relation to performance requirements; — makes recommendations on data formats for facial images and other relevant information (including metadata) obtained from video footage, used in watchlist images, or from observations made by human operators; — establishes general principles for supporting the operator of the VSS, including user interfaces and processes to ensure efficient and effective operation, and highlights the need to have suitably trained personnel; — highlights the need for robust governance processes to provide assurance that the implemented security, privacy and personal data protection measures specific to the use of biometric technologies with a VSS (e.g. internationally recognizable signage) are fit for purpose, and that societal considerations are reflected in the deployed system. This document also provides information on related recognition and detection tasks in a VSS such as: — estimation of crowd densities; — determining patterns of movement of individuals; — identification of individuals appearing in more than one camera; — use of other biometric modalities such as gait or iris; — use of specialized software to infer attributes of individuals, e.g. estimation of gender and age; — interfaces to other related functionality, e.g. video analytics to measure queue lengths or to alert for abandoned baggage.

  • Standard
    46 pages
    English language
    sale 15% off
ISO
ISO/IEC 30106-1:2016/Amd 1:2019(Amendment)
Information technology — Object oriented BioAPI — Part 1: Architecture — Amendment 1: Additional specifications and conformance statements
  • Standard
    17 pages
    English language
    sale 15% off
ISO
ISO/IEC 20027:2018(Main)
Information technology — Guidelines for slap tenprint fingerprintture

This document provides guidelines to follow during the acquisition process of slap tenprints in order to obtain fingerprints of the best quality possible within acceptable time constraints. Non-cooperative users are out of the scope of this document. When using ten-fingerprint sensors, it is fundamental to know how to use them and how to proceed with the acquisition. This document describes how to capture fingerprints correctly by specifying best practices for slap tenprint captures. It gives recommendations on the following topics: 1) hardware of the fingerprint sensor and its deployment; 2) user guidance; 3) enrolment process including a sample workflow; 4) application software for developers and system integrators; 5) processing, compression and coding of the acquired fingerprint images; 6) operational issues and data logging; 7) evaluation of a solution and its components. Although this document primarily focuses on reaching optimal data quality for enrolment purposes, the recommendations given here are applicable for other purposes. All processes which rely on good quality tenprint slaps can take advantage of the best practices.

  • Standard
    16 pages
    English language
    sale 15% off
ISO
ISO/IEC TR 29196:2018(Main)
Information technology — Guidance for biometric enrolment

This document consolidates information relating to successful, secure and usable implementation of biometric enrolment processes, while indicating risk factors that organisations proposing to use biometric technologies will should address during procurement, design, deployment and operation. Much of the information is generic to many types of application, e.g. from national scale commercial and government applications, to closed systems for in-house operations, and to consumer applications. However, the intended application and its purpose often have influence on the necessary enrolment data quality and are intended to be taken into account when specifying an enrolment system and process. The document points out the differences in operation relating to specific types of application, e.g. where self-enrolment is more appropriate than attended operation. This document focuses on mandatory, attended enrolment at fixed locations. In summary, this document consolidates information relating to better practice implementation of biometric enrolment capability in various business contexts including considerations of process, function (system), and technology, as well as legal/privacy and policy aspects. The document provides guidance on collection and storage of biometric enrolment data and the impact on dependent processes of verification and identification. This document does not include material specific to forensic and law enforcement applications. This document does not contain any mandatory requirements. The following terms are used in this document to provide guidance. The terms "should" and "should not" indicate that among several possibilities one is recommended as particularly suitable, without mentioning or excluding others, or that a certain course of action is preferred but not necessarily required, or that (in the negative form) a certain possibility or course of action is discouraged but not prohibited. The term "may" indicates a course of action permissible within the limits of the publication. The terms "can" and "cannot" indicate a possibility and capability, whether material, physical or causal.

  • Technical report
    55 pages
    English language
    sale 15% off
ISO
ISO/IEC 19784-1:2018(Main)
Information technology — Biometric application programming interface — Part 1: BioAPI specification

ISO/IEC 19784-1:2018 defines the Application Programming Interface (API) and Service Provider Interface (SPI) for standard interfaces within a biometric system that support the provision of that biometric system using components from multiple vendors. It provides interworking between such components through adherence to this and to other International Standards. For use in a system that does not include a BioAPI Framework (called a framework-free BioAPI system), only the SPI interface is applicable, with applications interfacing directly to that in a platform-specific manner. NOTE 1 Many clauses and/or sub-clauses of this document are not applicable for implementation of a framework-free BioAPI system. These are identified at the head of the clause of sub-clause. The BioAPI specification is applicable to a broad range of biometric technology types. It is also applicable to a wide variety of biometrically enabled applications, from personal devices, through network security applications, to large complex identification systems. ISO/IEC 19784-1:2018 supports an architecture in which a BioAPI Framework supports multiple simultaneous biometric applications (provided by different vendors), using multiple dynamically installed and loaded (or unloaded) Biometric Service Provider (BSP) components and BioAPI Units (provided by other different vendors), possibly using one of an alternative set of BioAPI Function Provider (BFP) components (provided by other vendors) or by direct management of BioAPI Units. NOTE 2 Where BioAPI Units are provided by a different vendor fom a BSP, a standardised BioAPI Function Provider Interface (FPI) may be needed. This is outside the scope of this document, but is specified by later parts for the different categories of FPI. NOTE 3 Where a BioAPI Framework is not used in a system, the ability to support multiple applications and multiple BSPs is platform-dependent and depends on the nature of the system-integration techniques employed. ISO/IEC 19784-1:2018 is not required (and should normally not be referenced) when a complete biometric system is being procured from a single vendor, particularly if the addition or interchange of biometric hardware, services, or applications is not a feature of that biometric system. (Such systems are sometimes referred to as "embedded systems".) Standardisation of such systems is not in the scope of this document. ISO/IEC 19784-1:2018 does not define security requirements for biometric applications and biometric service providers. NOTE 4 ISO 19092 provides guidelines on security aspects of biometric systems[3]. The performance of biometric systems (particularly in relation to searches of a large population to provide the biometric identification capability) is not in the scope of this document. Trade-offs between interoperability and performance are not in the scope of this document. ISO/IEC 19784-1:2018 specifies a version of the BioAPI specification that is defined to have a version number described as Major 2, Minor 0, or version 2.0. It also specifies a version number described as Major 2, Minor 1, or version 2.1 that provides an enhanced Graphical User Interface. It also specifies a version number described as Major 2, Minor 2, or version 2.2 that provides features supporting fusion and security. Some clauses and sub-clauses apply only to one of these versions, some to two or more. This is identified at the head of the relevant clauses and sub-clauses. NOTE 5 Earlier versions of the BioAPI specification were not International Standards. NOTE 6 The differences between the requirements of the 2.0 specification and the 2.1 specification for framework-free operation relate only to the biometric type values and encodings. Conformance requirements are specified in Clause 5.

  • Standard
    234 pages
    English language
    sale 15% off
ISO
ISO/IEC 30136:2018(Main)
Information technology — Performance testing of biometric template protection schemes

ISO/IEC 30136:2018 supports evaluation of the accuracy, secrecy, and privacy of biometric template protection schemes. It establishes definitions, terminology, and metrics for stating the performance of such schemes. Particularly, this document establishes requirements for the measurement and reporting of: - theoretical and empirical accuracy of biometric template protection schemes, - theoretical and empirical probability of a successful attack on biometric template protection schemes (single or multiple), and - the information leaked about the original biometric when one or more biometric template protection schemes are compromised. ISO/IEC 30136:2018 also gives guidance on measuring and reporting diversity and unlinkability of templates. ISO/IEC 30136:2018 does not: - establish template protection schemes; - address testing of traditional encryption schemes.

  • Standard
    23 pages
    English language
    sale 15% off
ISO
ISO/IEC 19794-13:2018(Main)
Information technology — Biometric data interchange formats — Part 13: Voice data

ISO/IEC 19794-13:2018 specifies a data interchange format that can be used for storing, recording, and transmitting digitized acoustic human voice data (speech) assumed to be from a single speaker recorded in a single session. This format is designed specifically to support a wide variety of Speaker Identification and Verification (SIV) applications, both text-dependent and text-independent, with minimal assumptions made regarding the voice data capture conditions or the collection environment. Other uses for the data encapsulated in this format, such as automated speech recognition (ASR), may be possible, but are not addressed in this documnet. This document also does not address handling of data that has been processed to the feature or voice model levels. No application-specific requirements, equipment, or features are addressed in this document. This document supports the optional inclusion of non-standardized extended data. This document allows both the original data captured and digitally-processed (enhanced) voice data to be exchanged. A description of any processing of the original source input is intended to be included in the metadata associated with the voice representations (VRs). This document does not address data streaming. Provisions that stored and transmitted biometric data be time-stamped and that cryptographic techniques be used to protect their authenticity, integrity and confidentiality are out of the scope of this document. Information formatted in accordance with this document can be recorded on machine-readable media or can be transmitted by data communication between systems. A general content-oriented subclause describing the voice data interchange format is followed by a subclause addressing an XML schema definition. ISO/IEC 19794-13:2018 includes vocabulary in common use by the speech and speaker recognition community, as well as terminology from other ISO standards.

  • Standard
    26 pages
    English language
    sale 15% off
ISO
ISO/IEC TR 24741:2018(Main)
Information technology — Biometrics — Overview and application

ISO/IEC TR 24741:2018 describes the history of biometrics and what biometrics does, the various biometric technologies in general use today (for example, fingerprint recognition and face recognition) and the architecture of the systems and the system processes that allow automated recognition using those technologies. It also provides information about the application of biometrics in various business domains such as border management, law enforcement and driver licensing, the societal and jurisdiction considerations that are typically taken into account in biometric systems, and the international standards that underpin their use.

  • Technical report
    33 pages
    English language
    sale 15% off