NIST生物识别数据规范：个人身份验证

NIST

SP800

需积分: 5 6 浏览量更新于2024-07-16 收藏 717KB PDF 举报

身份认证购VIP最低享 7 折!

30元优惠券

"NIST SP800-76-1是美国国家标准与技术研究所（NIST）发布的一份技术规范文档，详细规定了用于联邦员工和承包商个人身份验证（PIV）的生物特征数据规格。该文档是基于FIPS 201的要求，涉及身份证明、注册、PIV卡发行和使用等一系列生命周期活动。FIPS 201定义了身份凭证的结构，包括生物特征数据，并在FIPS和800-78中描述了对生物特征数据的加密保护要求。NIST SP800-76-1旨在实现PIV卡的互操作性和性能，涵盖了图像采集、指纹模板创建、保留和认证等过程。文档通过引用生物识别标准并明确要求来确保实施的一致性，促进互操作性和性能，特别针对PIV应用进行定制。此外，文档指出，任何在PIV数据模型中的生物特征数据都应嵌入到Common Biometric Exchange Formats Framework（CBEFF）结构中，并提供了一种测试符合性的策略概述，但不是完整的认证或合规性测试要求集。" NIST SP800系列标准是信息安全领域的权威指南，SP800-76-1则专注于生物特征数据在PIV系统中的应用。它确保联邦政府的个人信息安全，通过制定严格的生物特征数据规格，提高了身份验证的可靠性和安全性。文档的核心内容包括： 1. 身份验证流程：定义了从身份证明到使用PIV卡进行访问控制的身份验证全过程，涵盖了个人身份的核实、注册、卡片发行和使用。 2. 生物特征数据格式：规定了PIV卡上必须使用的生物特征数据格式，以便于不同系统之间的兼容性和互操作性。 3. CBEFF结构：所有在PIV数据模型中的生物特征数据都需要按照CBEFF框架进行封装，以支持标准化的数据交换。 4. 性能和一致性：通过限制对标准的解释，确保了实施的一致性和性能标准，这有助于简化实施过程并提高系统的可靠性。 5. 测试策略：提供了初步的测试策略，帮助确定系统是否符合标准要求，但不包含全面的认证或合规性测试要求。 6. 数据安全：根据FIPS 201和800-78，强调了对生物特征数据的加密保护，以防止未经授权的访问和使用。 NIST SP800-76-1对于政府和相关组织来说至关重要，因为它为创建安全、一致的生物特征身份验证系统提供了基础，同时确保了公民和雇员的隐私得到保护。该标准的实施有助于防止身份欺诈，增强政府服务的安全性，并促进了联邦机构间的信息共享。

资源详情

资源推荐

Special Publication 800-76-1 Biometric Specification for Personal Identity Verification

List of Figures

Figure 1 : PIV fingerprint image flow.................................................................................................................. 4

Figure 2 : Minutiae angle determination............................................................................................................. 9

List of Tables

Table 1: Fingerprint acquisition protocols ......................................................................................................... 5

Table 2: Quality control procedure for acquisition of a full set of fingerprint images ........................................ 6

Table 3: INCITS 378 profile for PIV Card templates ......................................................................................... 7

Table 4: INCITS 381 profile for agency retention of fingerprint Images.......................................................... 10

Table 5: Record types for background checks................................................................................................ 12

Table 6: INCITS 385 profile for PIV facial images........................................................................................... 14

Table 7: Simple CBEFF structure ...................................................................................................................17

Table 8: Patron format PIV specification......................................................................................................... 17

Table 9: CBEFF biometric data type encoding ............................................................................................... 18

Table 10: INCITS 381 specification for PIV Card template generator certification......................................... 21

Table 11: INCITS 378 specification for PIV Card template generator and matcher certification.................... 22

Special Publication 800-76-1 Biometric Specification for Personal Identity Verification

1. Introduction

1.1 Authority

This document has been developed by the National Institute of Standards and Technology (NIST) in furtherance

of its statutory responsibilities under the Federal Information Security Management Act (FISMA) of 2002,

Public Law 107-347.

NIST is responsible for developing standards and guidelines, including minimum requirements, for providing

adequate information security for all agency operations and assets, but such standards and guidelines shall not

apply to national security systems. This recommendation is consistent with the requirements of the Office of

Management and Budget (OMB) Circular A-130, Section 8b(3), Securing Agency Information Systems, as

analyzed in A-130, Appendix IV: Analysis of Key Sections. Supplemental information is provided in A-130,

Appendix III.

This recommendation has been prepared for use by federal agencies. It may be used by non-governmental

organizations on a voluntary basis and is not subject to copyright. Nothing in this document should be taken to

contradict standards and guidelines made mandatory and binding on Federal agencies by the Secretary of

Commerce under statutory authority. Nor should this recommendation be interpreted as altering or superseding

the existing authorities of the Secretary of Commerce, Director of the Office of Management and Budget, or any

other Federal official.

1.2 Purpose and scope

FIPS 201 [FIPS], Personal Identity Verification (PIV) for Federal Employees and Contractors, defines

procedures for the PIV lifecycle activities including identity proofing, registration, PIV Card issuance, and PIV

Card usage. FIPS also defines the structure of an identity credential which includes biometric data.

Requirements concerning cryptographic protection of the biometric data are also described in [FIPS] and in

[800-78].

This document contains technical specifications for biometric data mandated in [FIPS]. These specifications

reflect the design goals of interoperability and performance of the PIV Card. This specification addresses image

acquisition to support the background check, fingerprint template creation, retention, and authentication. The

goals are addressed by citing biometric standards normatively and by enumerating requirements where the

standards include options and branches. In such cases, a biometric profile can be used to declare what content is

required and what is optional. This document goes further by constraining implementers' interpretation of the

standards. Such restrictions are designed to ease implementation, assure conformity, facilitate interoperability,

and ensure performance, in a manner tailored for PIV applications.

The biometric data specification in this document is the mandatory format for biometric data carried in the PIV

Data Model (Appendix A of SP 800-73-1). Biometric data used only outside the PIV Data Model is not within

the scope of this standard.

This document does however specify that any biometric data in the PIV Data Model shall be embedded in the

Common Biometric Exchange Formats Framework (CBEFF) structure of section 6. This document provides an

overview of the strategy that can be used for testing conformance to the standard. It is not meant to be a

comprehensive set of test requirements that can be used for certification or demonstration of compliance to the

specifications in this document.

1.3 Audience, assumptions, and overview

This document is targeted at Federal agencies and implementers of PIV systems. Readers are assumed to have a

working knowledge of biometric standards and applications. This document defines, in section 3, the fingerprint

acquisition process, the format of the PIV Card minutiae templates, and a format for agency-optional image

retention. In section 4 it puts requirements on fingerprint mediated verification implementations, and specifies,

剩余32页未读，继续阅读

艾米的爸爸

粉丝: 781
资源: 314

NIST生物识别数据规范：个人身份验证

NIST SP800-88_rev1.pdf

NIST SP800-108.pdf

NIST SP800-73-2_part2.pdf

NIST SP800-73-2_part3_end-point-client-api-final.pdf

NIST SP800-76-2.pdf

NIST SP800-73-2_part1-datamodel-final.pdf

NIST SP800-98_RFID-2007.pdf

NIST SP800-53-rev2-final.pdf

NIST SP800-100-Mar07-2007.pdf

NIST SP800-160-vol2-draft.pdf

NIST SP800-85b-072406-final.pdf

NIST SP800-85A-2-final.pdf

NIST SP800-60 Vol1 Rev1.pdf

NIST SP800-66-Revision1.pdf

NIST SP800-73-2 part4.pdf

NIST SP800-52r2-draft2.pdf

NIST SP800-60 Vol2 Rev1.pdf

NIST SP800-38Gr1-draft.pdf

NIST SP800-133r1-draft.pdf

最新资源