https://pomeu.com.br/biometria-padroes/globalplatform-define-modelo-para-match-on-card/ https://pomeu.com.br/biometria-padroes/globalplatform-define-modelo-para-match-on-card/#comments Mon, 13 Apr 2009 19:58:46 +0000 Nelson Correa http://cfsec.com.br/?p=158 A GlobalPlatform é uma organização que define padrões tecnológicos para smartcards, formada pelos principais players mundiais desse mercado, como por exemplo: Datacard, Visa Inc, STMicroelectronics, ActivIdentity, Gemalto, Giesecke & Devrient, MasterCard Worlwide, NTT Corp, Oberthur Card Systems, Sun Microsystems, Toshiba Corporation, dentre vários outros. A GlobalPlatform também participa como membro de mais de duas dezenas de organizações como: ISO/WG4, INCITS, Java Card Forum, NIST, OMTP, Smart Card Alliance e outros.

É com esse respaldo do mercado mundial de cartões que a GlobalPlatform publicou no início de abril/2009 o documento que dá o direcionamento tecnológico para os smartcards que terão embarcada a tecnologia de Match-on-Card. Muitos esforços têm sido despendidos na viabilização da tecnologia que mantém a privacidade e o alto nível de segurança para as transações biométricas, com a comparação (ou match) biométrica ocorrendo e sendo processada dentro do chip do smartcard.

O NIST (National Institute of Standards and Technology) dos Estados Unidos também tem colocado muito esforço nessa definição para que a tecnologia de Match-on-Card possa ser usada o mais rapidamente possível nos cartões do programa PIV (Personal Identity Verification), que serão os cartões usados para carregarem dados biométricos dos funcionários e terceiros que serão autenticados para ingressarem em áreas e prédios governamentais.

Ano passado (2008), o NIST conduziu o Secure Biometrics Match-on-Card (SBMOC) Feasibility Study, onde definiu condições para a autenticação biométrica segura via Match-on-Card, com contato e sem contato, incluindo padrões de criptografia e tempos máximos de processamento. O documento pode ser encontrado aqui.

O white paper, The GlobalPlatform Value Proposition for Biometric Match-on-Card Verification, da GlobalPatform pode ser baixado aqui. Certamente será este o modelo que a indústria de cartões irá adotar para a Biometria Match-on-Card.

Creative Commons (by-nc-nd) CFSEC/h7>]]> https://pomeu.com.br/biometria-padroes/globalplatform-define-modelo-para-match-on-card/feed/ 0

Para os órgãos governamentais que queiram se basear nos padrões ISO/IEC para especificar suas licitações, é de conhecimento obrigatório. São elas:

PUBLICADAS

ISO/IEC 19784-1:2006
Information technology — Biometric application programming interface — Part 1: BioAPI specification

ISO/IEC 19784-1:2006/Amd 1:2007
BioGUI specification

ISO/IEC 19784-2:2007
Information technology — Biometric application programming interface — Part 2: Biometric archive function provider interface

ISO/IEC 19785-1:2006
Information technology — Common Biometric Exchange Formats Framework — Part 1: Data element specification

ISO/IEC 19785-2:2006
Information technology — Common Biometric Exchange Formats Framework — Part 2: Procedures for the operation of the Biometric Registration Authority

ISO/IEC 19785-3:2007
Information technology — Common Biometric Exchange Formats Framework — Part 3: Patron format specifications

ISO/IEC 19794-1:2006
Information technology — Biometric data interchange formats — Part 1: Framework

ISO/IEC 19794-2:2005
Information technology — Biometric data interchange formats — Part 2: Finger minutiae data

ISO/IEC 19794-3:2006
Information technology — Biometric data interchange formats — Part 3: Finger pattern spectral data

ISO/IEC 19794-4:2005
Information technology — Biometric data interchange formats — Part 4: Finger image data

ISO/IEC 19794-5:2005
Information technology — Biometric data interchange formats — Part 5: Face image data

ISO/IEC 19794-5:2005/Amd 1:2007
Conditions for taking photographs for face image data

ISO/IEC 19794-5:2005/Cor 1:2008

ISO/IEC 19794-5:2005/Cor 2:2008

ISO/IEC 19794-6:2005
Information technology — Biometric data interchange formats — Part 6: Iris image data

ISO/IEC 19794-7:2007
Information technology — Biometric data interchange formats — Part 7: Signature/sign time series data

ISO/IEC 19794-8:2006
Information technology — Biometric data interchange formats — Part 8: Finger pattern skeletal data

ISO/IEC 19794-9:2007
Information technology — Biometric data interchange formats — Part 9: Vascular image data

ISO/IEC 19794-10:2007
Information technology — Biometric data interchange formats — Part 10: Hand geometry silhouette data

ISO/IEC 19795-1:2006
Information technology — Biometric performance testing and reporting — Part 1: Principles and framework

ISO/IEC 19795-2:2007
Information technology — Biometric performance testing and reporting — Part 2: Testing methodologies for technology and scenario evaluation

ISO/IEC TR 19795-3:2007
Information technology — Biometric performance testing and reporting — Part 3: Modality-specific testing

ISO/IEC 19795-4:2008
Information technology — Biometric performance testing and reporting — Part 4: Interoperability performance testing

ISO/IEC 24708:2008
Information technology — Biometrics — BioAPI Interworking Protocol

ISO/IEC 24709-1:2007
Information technology — Conformance testing for the biometric application programming interface (BioAPI) — Part 1: Methods and procedures

ISO/IEC 24709-2:2007
Information technology — Conformance testing for the biometric application programming interface (BioAPI) — Part 2: Test assertions for biometric service providers

ISO/IEC 24713-1:2008
Information technology — Biometric profiles for interoperability and data interchange — Part 1: Overview of biometric systems and biometric profiles

ISO/IEC 24713-2:2008
Information technology — Biometric profiles for interoperability and data interchange — Part 2: Physical access control for employees at airports

ISO/IEC TR 24714-1:2008
Information technology — Biometrics — Jurisdictional and societal considerations for commercial applications — Part 1: General guidance

ISO/IEC TR 24722:2007
Information technology — Biometrics– Multimodal and other multibiometric fusion

ISO/IEC TR 24741:2007
Information technology — Biometrics tutorial

EM DESENVOLVIMENTO

ISO/IEC 19784-1:2006/FPDAmd 2
Framework-free BioAPI

ISO/IEC 19784-1:2006/FPDAmd 3
Support for the interchange of certificates and security assertions and other security aspects

ISO/IEC CD 19784-4
BioAPI — Biometric Application Programming Interface — Part 4: Biometric sensor function provider interface

ISO/IEC 19785-1:2006/FPDAmd 1
Support for Additional Data Elements

ISO/IEC 19785-2:2006/FPDAmd 1
Addditional Registrations

ISO/IEC 19785-3:2007/FPDAmd 1
Support for Additional Data Elements

ISO/IEC FCD 19785-4.2
Information technology — Common Biometric Exchange Formats Framework — Part 4: Security Block format specifications

ISO/IEC CD 19794-1
Information technology — Biometric data interchange formats — Part 1: Framework

ISO/IEC CD 19794-2
Information technology — Biometric data interchange formats — Part 2: Finger minutiae data

ISO/IEC 19794-2:2005/FPDAmd 1
Detailed Description of Finger Minutiae location, Direction and Type

ISO/IEC 19794-2:2005/CD Cor 1

ISO/IEC WD 19794-3
Information technology — Biometric data interchange formats — Part 3: Finger pattern spectral data

ISO/IEC CD 19794-4
Information technology — Biometric data interchange formats — Part 4: Finger image data

ISO/IEC 19794-4:2005/CD Cor 1

ISO/IEC CD 19794-5
Information technology — Biometric data interchange formats — Part 5: Face image data

ISO/IEC 19794-5:2005/FPDAmd 2
Three dimensional face image data interchange format

ISO/IEC WD 19794-6
Information technology — Biometric data interchange formats — Part 6: Iris image data

ISO/IEC CD 19794-8
Information technology — Biometric data interchange formats — Part 8: Finger pattern skeletal data

ISO/IEC CD 19794-11
Information technology — Biometric data interchange formats — Part 11: Signature/sign processed dynamic data

ISO/IEC WD 19794-13
Information technology — Biometric data interchange formats — Part 13: Voice Data

ISO/IEC WD 19794-14
Information technology — Biometric data interchange formats — Part 14: DNA Data

ISO/IEC NP 19794-N
Information technology — Biometric data interchange formats — Part N: Face Identity Data

ISO/IEC CD 19795-5
Information technology — Biometric performance testing and reporting — Part 5: Framework for biometric device performance evaluation for access control

ISO/IEC CD 19795-6
Biometric Performance Testing And Reporting — Part 6: Testing Methodologies for Operational Evaluation

ISO/IEC CD 19795-7
Biometric Performance Testing and Reporting — Part 7: Testing of ISO/IEC 7816-based Verification Algorithms

ISO/IEC 24708:2008/NP Amd 1
Support for interchange of certificates and security assertions and other security aspects

ISO/IEC CD 24709-3
Information technology — Conformance testing for the biometric application programming interface (BioAPI) — Part 3: Test assertions for BioAPI frameworks

ISO/IEC WD 24709-4
Information technology — Conformance testing for the biometric application programming interface (BioAPI) — Part 4: Test assertions for biometric applications

ISO/IEC FCD 24713-3
Information technology — Biometric profiles for interoperability and data interchange — Part 3: Biometrics-based verification and identification of seafarers

ISO/IEC WD TR 24714-2
Information technology — Biometrics — Jurisdictional and societal considerations for commercial applications — Part 2: Specific technologies and practical applications

ISO/IEC WD 24779-1
Pictograms, Icons and Symbols for use with Biometric Systems — Part 1: Overview

ISO/IEC WD 24779-2
Pictograms, Icons and Symbols for use with Biometric Systems — Part 2: Fingerprint applications

ISO/IEC FCD 29109-1
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 1: Generalized conformance testing methodology

ISO/IEC FCD 29109-2
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 2: Finger minutiae data

ISO/IEC NP 29109-3
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 3: Titre manque

ISO/IEC FCD 29109-4
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 4: Finger image data

ISO/IEC CD 29109-5
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 5: Face image data

ISO/IEC WD 29109-6
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 6: Iris image data

ISO/IEC WD 29109-9
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 9: Vascular image data

ISO/IEC FCD 29109-10
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 10: Hand geometry silhouette data

ISO/IEC NP 29109-11
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 11: Signature/sign processed dynamic data

ISO/IEC NP 29109-13
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 13: Speech data interchange format for speaker recognition

ISO/IEC WD 29109-14
Information technology — Conformance testing methodology for biometric data interchange formats defined in ISO/IEC 19794 — Part 14: DNA data

ISO/IEC WD 29120-1
Information technology — Machine Readable Test Data for biometric testing and reporting — Part 1: Framework and components

ISO/IEC NP 29120-2
Information technology — Machine Readable Test Data for biometric testing and reporting — Part 2: Test Input Data

ISO/IEC NP 29120-3
Information technology — Machine Readable Test Data for biometric testing and reporting — Part 3: Test Reports

ISO/IEC NP 29120-4
Conformance Testing Methodology for Biometric Data Interchange formats defined in ISO/IEC 19794. — Part 4: Biometric test certificates

ISO/IEC FCD 29141
Information technology — Biometrics — Tenprint capture using biometric application programming interface (BioAPI)

ISO/IEC NP 29144
the Role of Biometrics in Identity Management

ISO/IEC CD 29159-1
Biometric Calibration, augmentation and fusion data — Part 1: Fusion information format

ISO/IEC CD 29164
BioAPI Lite

ISO/IEC FCD 29794-1.2
Information technology — Biometric sample quality — Part 1: Framework

ISO/IEC DTR 29794-4
Information Technology – Biometric Sample Quality — Part 4: Finger Image Data

ISO/IEC DTR 29794-5
Information Technology – Biometric Sample Quality — Part 5: Face Image Data

(*) ISO – International Organization for Standardization em seu Comitê Técnico JTC 1 (Joint ISO/IEC Technical Committee), subcomitê SC 37 que trata dos padrões internacionais relacionados à biometria (criado em 2002).