欢迎来到麦多课文档分享! | 帮助中心 海量文档,免费浏览,给你所需,享你所想!
麦多课文档分享
全部分类
  • 标准规范>
  • 教学课件>
  • 考试资料>
  • 办公文档>
  • 学术论文>
  • 行业资料>
  • 易语言源码>
  • ImageVerifierCode 换一换
    首页 麦多课文档分享 > 资源分类 > PDF文档下载
    分享到微信 分享到微博 分享到QQ空间

    ITU-T X 1086-2008 Telebiometrics protection procedures C Part 1 A guideline to technical and managerial countermeasures for biometric data security (Study Group 17)《电信生物测定的保护程序 第1部.pdf

    • 资源ID:804484       资源大小:344.44KB        全文页数:32页
    • 资源格式: PDF        下载积分:10000积分
    快捷下载 游客一键下载
    账号登录下载
    微信登录下载
    二维码
    微信扫一扫登录
    下载资源需要10000积分(如需开发票,请勿充值!)
    邮箱/手机:
    温馨提示:
    如需开发票,请勿充值!快捷下载时,用户名和密码都是您填写的邮箱或者手机号,方便查询和重复下载(系统自动生成)。
    如需开发票,请勿充值!如填写123,账号就是123,密码也是123。
    支付方式: 支付宝扫码支付    微信扫码支付   
    验证码:   换一换

    加入VIP,交流精品资源
     
    账号:
    密码:
    验证码:   换一换
      忘记密码?
        
    友情提示
    2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
    3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
    4、本站资源下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。
    5、试题试卷类文档,如果标题没有明确说明有答案则都视为没有答案,请知晓。

    ITU-T X 1086-2008 Telebiometrics protection procedures C Part 1 A guideline to technical and managerial countermeasures for biometric data security (Study Group 17)《电信生物测定的保护程序 第1部.pdf

    1、 International Telecommunication Union ITU-T X.1086TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (11/2008) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Information and network security Telebiometrics Telebiometrics protection procedures Part 1: A guideline to technical and mana

    2、gerial countermeasures for biometric data security Recommendation ITU-T X.1086 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS X.1X.199 OPEN SYSTEMS INTERCONNECTION X.200X.299 INTERWORKING BETWEEN NETWORKS X.300X.399 MESSAGE HANDLING SYSTEMS

    3、 X.400X.499DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS X.600X.699 OSI MANAGEMENT X.700X.799 SECURITY X.800X.849 OSI APPLICATIONS X.850X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION AND NETWORK SECURITY General security aspects X.1000X.1029 Network security X.1030X.1049 Security

    4、management X.1050X.1069 Telebiometrics X.1080X.1099 SECURE APPLICATIONS AND SERVICES Multicast security X.1100X.1109 Home network security X.1110X.1119 Mobile security X.1120X.1139 Web security X.1140X.1149 Security protocols X.1150X.1159 Peer-to-peer security X.1160X.1169 Networked ID security X.11

    5、70X.1179 IPTV security X.1180X.1199 CYBERSPACE SECURITY Cybersecurity X.1200X.1229 Countering spam X.1230X.1249 Identity management X.1250X.1279 SECURE APPLICATIONS AND SERVICES Emergency communications X.1300X.1309 Ubiquitous sensor network security X.1310X.1339 For further details, please refer to

    6、 the list of ITU-T Recommendations. Rec. ITU-T X.1086 (11/2008) i Recommendation ITU-T X.1086 Telebiometrics protection procedures Part 1: A guideline to technical and managerial countermeasures for biometric data security Summary Recommendation ITU-T X.1086 defines the requirements of guidelines to

    7、 provide security countermeasures for the telebiometrics protection procedures. This Recommendation defines the vulnerabilities and threats in operating telebiometric systems, and proposes a general guideline for security countermeasures, from both technical and managerial perspectives, in order to

    8、establish a safe environment for the use of telebiometric systems and to protect individual privacy. This Recommendation describes countermeasures that allow the protection of biometric devices as related to their installation, removal, and delivery. Countermeasures are proposed for the protection o

    9、f biometric systems as related to their operational procedures, as well as the roles and responsibilities of personnel involved in system design. It is expected that the proposed countermeasures will ensure the security and reliability of the flow of biometric information in a telecommunications env

    10、ironment. Source Recommendation ITU-T X.1086 was approved on 13 November 2008 by ITU-T Study Group 17 (2009-2012) under Recommendation ITU-T A.8 procedures. Keywords Telebiometrics authentication models, telebiometrics countermeasures, telebiometrics protection guideline, telebiometrics vulnerabilit

    11、ies. ii Rec. ITU-T X.1086 (11/2008) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ o

    12、f ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topi

    13、cs for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prep

    14、ared on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation ma

    15、y contain certain mandatory provisions (to ensure e.g. interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to exp

    16、ress requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTS ITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Pro

    17、perty Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice o

    18、f intellectual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2010

    19、All rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. Rec. ITU-T X.1086 (11/2008) iii CONTENTS Page 1 Scope 1 2 References. 1 3 Definitions 1 3.1 Terms defined elsewhere 1 3.2 Terms defined in this Recommendation. 2

    20、4 Abbreviations and acronyms 3 5 Conventions 3 6 Components and vulnerabilities of a biometric system 3 7 Protection of biometric input devices. 6 7.1 Vulnerabilities 6 7.2 Guidelines for protection 7 8 Protection of the process of transmitting biometric raw data. 7 8.1 Vulnerabilities 7 8.2 Guideli

    21、nes for protection 7 9 Protection of the signal processing component 8 9.1 Vulnerabilities 8 9.2 Guidelines for protection 8 10 Protection of the process of transmitting extracted biometric templates 9 10.1 Vulnerabilities 9 10.2 Guidelines for protection 9 11 Protection of the biometric template co

    22、mparison component 9 11.1 Vulnerabilities 9 11.2 Guidelines for protection 9 12 Protection of the storage . 10 12.1 Vulnerabilities 10 12.2 Guidelines for protection 10 13 Protection of the process of transmitting data from the registration to the storage 10 13.1 Vulnerabilities 11 13.2 Guidelines f

    23、or protection 11 14 Protection of the process of transmitting results from the comparison component . 11 14.1 Vulnerabilities 11 14.2 Guidelines for protection 11 15 Protection of the registration 11 15.1 Vulnerability. 12 15.2 Guideline for protection . 12 16 Protection of the biometric template de

    24、cision component . 12 16.1 Vulnerability. 12 iv Rec. ITU-T X.1086 (11/2008) Page 16.2 Guideline for protection . 12 17 Protection of the process of transmitting the stored biometric templates. 12 17.1 Vulnerabilities 12 17.2 Guidelines for protection 12 18 Protection of the process of transmitting r

    25、esults from the decision component. 13 18.1 Vulnerabilities 13 18.2 Guidelines for protection 13 Annex A Check list for usage of telebiometric system mechanism . 14 Appendix I Check list for the application of telebiometric protection procedures. 15 I.1 Definition of check list . 15 I.2 Check list o

    26、f items 15 Appendix II Biometric verification process model. 18 Appendix III Comparison between vulnerabilities and threats. 20 Appendix IV Replay attacks on telebiometrics. 22 IV.1 Definition of a replay attack. 22 IV.2 Countermeasures for replay attack . 22 Rec. ITU-T X.1086 (11/2008) 1 Recommenda

    27、tion ITU-T X.1086 Telebiometrics protection procedures Part 1: A guideline to technical and managerial countermeasures for biometric data security 1 Scope This Recommendation proposes a general guideline for security countermeasures, from both technical and managerial perspectives, that would allow

    28、for the protection of biometric information against various threats, such as hijacking, modification and illegal access, from the point of its creation to its disposal in a telecommunications environment. Also this Recommendation proposes countermeasures for the protection of biometric systems as re

    29、lated to their operational procedures, as well as the roles and responsibilities of personnel involved in system design. From a technical point of view, this Recommendation proposes several countermeasures to ensure data integrity, mutual authentication, and confidentiality. From a managerial perspe

    30、ctive, this Recommendation describes countermeasures that allow for the protection of biometric devices as related to their installation, removal, and delivery. Not in the scope of this Recommendation is defining security requirements for biometric data and biometric security algorithms. 2 Reference

    31、s The following ITU-T Recommendations and other references contain provisions which, through reference in this text, constitute provisions of this Recommendation. At the time of publication, the editions indicated were valid. All Recommendations and other references are subject to revision; users of

    32、 this Recommendation are therefore encouraged to investigate the possibility of applying the most recent edition of the Recommendations and other references listed below. A list of the currently valid ITU-T Recommendations is regularly published. The reference to a document within this Recommendatio

    33、n does not give it, as a stand-alone document, the status of a Recommendation. ITU-T X.1084 Recommendation ITU-T X.1084 (2008), Telebiometrics system mechanism Part 1: General biometric authentication protocol and system model profiles for telecommunications systems. ISO 19092 ISO 19092 (2008), Fina

    34、ncial services Biometrics Security framework. ISO/IEC 19784-1 ISO/IEC 19784-1 (2006), Information technology Biometric application programming interface Part 1: BioAPI specification. ISO/IEC 19785-1 ISO/IEC 19785-1 (2006), Information technology Common Biometric Exchange Formats Framework Part 1: Da

    35、ta element specification. ISO/IEC 19795-1 ISO/IEC 19795-1 (2006), Information technology Biometric performance testing and reporting Part 1: Principles and framework. ISO/IEC 24761 ISO/IEC 24761 (2009), Information technology Security techniques Authentication context for biometrics. 3 Definitions 3

    36、.1 Terms defined elsewhere This Recommendation uses the following terms defined elsewhere: 3.1.1 biometric ISO/IEC 19785-1: Pertaining to the field of biometrics. NOTE “biometric“ should never be used as a noun. 2 Rec. ITU-T X.1086 (11/2008) 3.1.2 biometrics ISO/IEC 19785-1: Automated recognition of

    37、 individuals based on their behavior and characteristics. 3.1.3 biometric data ISO/IEC 19785-1: A biometric sample at any stage of processing, biometric reference, biometric feature, or biometric property. 3.1.4 biometric product ISO/IEC 19785-1: A software or hardware product or a combination of so

    38、ftware and hardware, which is assigned a biometric product identifier by a CBEFF biometric organization called the biometric product owner of the biometric product. 3.1.5 biometric sample ISO/IEC 19785-1: Information obtained from a biometric device, either directly or after further processing. 3.1.

    39、6 biometric system ISO 19092: Automated system capable of capturing, extraction, matching and returning a decision (match/ non-match). 3.1.7 biometric template ISO/IEC 19784-1: A biometric sample or combination of biometric samples that is suitable for storage as a reference for future comparison. 3

    40、.1.8 capture ISO/IEC 19785-1: Acquisition of a biometric sample. 3.1.9 enrolment ISO 19092: Process of collecting biometric samples from a person and the subsequent generation and storage of biometric reference templates associated with that person. NOTE See also initial enrolment and re-enrolment.

    41、3.1.10 extraction (feature extraction) ISO/IEC 19785-1: Process of converting raw biometric data into processed biometric for use in template comparison or reference template creation. 3.1.11 identification ISO/IEC 19795-1: Application in which a search of the enrolled database is performed, and a c

    42、andidate list of 0, 1 or more identifiers is returned. 3.1.12 registration ISO/IEC 19785-1: The process in which a person shall prove their identity by presenting credentials to the biometric service provider before being allowed to enroll, and assigns an electronic identifier. 3.1.13 score (scoring

    43、) ISO/IEC 19784-1: Value indicating the degree of similarity or correlation between a biometric sample and a biometric reference template. 3.1.14 template ISO/IEC 19785-1: Data, which represents the biometric measurement of an individual, used by a biometric system to execute biometric matches. 3.1.

    44、15 threshold ISO/IEC 19785-1: Point above which the degree of similarity between two compared templates is sufficiently high to constitute a “match“, and below which the degree of similarity between two compared templates is sufficiently low to constitute a “non-match“. NOTE Thresholds can often be

    45、adjusted at an administrative level to decrease the false match rate or to decrease the false non-match rate. 3.1.16 verification ISO/IEC 19795-1: Biometric measures are compared to the enrolled template for the claimed identity, and an accept or reject decision regarding the identity claim is retur

    46、ned. NOTE The claimed identity might be in the form of a name, personal identification number (PIN), swipe card, or other unique identifier provided to the system. 3.2 Terms defined in this Recommendation This Recommendation defines the following terms: 3.2.1 biometric data auditor: An independent t

    47、hird-party auditing organization, or a member thereof, given the task of protecting privacy. 3.2.2 biometric data manager: A person who collects, manages, or utilizes biometric data. Rec. ITU-T X.1086 (11/2008) 3 3.2.3 biometric data provider: An individual who provides his or her biometric data for

    48、 the purposes of personal identification. 3.2.4 biometric feature: Concise representation of information extracted from a biometric sample by applying a mathematical transformation. 3.2.5 biometric reference: One or more stored biometric samples, biometric templates, or biometric models attributed t

    49、o a subject and used for comparison. 3.2.6 managerial protection countermeasures: Protection countermeasures regarding biometric data protection policies, biometric data protection organizations, outsider security, information property classification, information protection education and training, and business continuity management. NOTE A biometric data provider must prepare all the necessary procedures required to access and manage users biometric data, and enforce re


    注意事项

    本文(ITU-T X 1086-2008 Telebiometrics protection procedures C Part 1 A guideline to technical and managerial countermeasures for biometric data security (Study Group 17)《电信生物测定的保护程序 第1部.pdf)为本站会员(cleanass300)主动上传,麦多课文档分享仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知麦多课文档分享(点击联系客服),我们立即给予删除!




    关于我们 - 网站声明 - 网站地图 - 资源地图 - 友情链接 - 网站客服 - 联系我们

    copyright@ 2008-2019 麦多课文库(www.mydoc123.com)网站版权所有
    备案/许可证编号:苏ICP备17064731号-1 

    收起
    展开