UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 19989-2

Information security — Criteria and methodology for security evaluation of biometric systems — Part 2: Biometric recognition performance

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 October 2020
Status: active
Page Count: 40
ICS Code (IT Security): 35.030
scope:

For security evaluation of biometric verification systems and biometric identification systems, this document is dedicated to the security evaluation of biometric recognition performance applying the ISO/IEC 15408 series.

It provides requirements and recommendations to the developer and the evaluator for the supplementary activities on biometric recognition performance specified in ISO/IEC 19989-1.

The evaluation of presentation attack detection techniques is out of the scope of this document except for presentation from impostor attempts under the policy of the intended use following the TOE guidance documentation.

Document History

ISO/IEC 19989-2
October 1, 2020
Information security — Criteria and methodology for security evaluation of biometric systems — Part 2: Biometric recognition performance
For security evaluation of biometric verification systems and biometric identification systems, this document is dedicated to the security evaluation of biometric recognition performance applying the...

References

This document references:
ISO/IEC 30107-3 - Information technology - Biometric presentation attack detection - Part 3: Testing and reporting
Published by ISO on September 1, 2017
This document establishes: — principles and methods for performance assessment of presentation attack detection mechanisms; — reporting of testing results from evaluations of presentation attack...
This document references:
ISO/IEC 15408-1 - Information security, cybersecurity and privacy protection — Evaluation criteria for IT security — Part 1: Introduction and general model
Published by ISO on August 1, 2022
This document establishes the general concepts and principles of IT security evaluation and specifies the general model of evaluation given by various parts of the standard which in its entirety is...
This document references:
ISO/IEC 15408-3 - Information technology - Security techniques - Evaluation criteria for IT security - Part 3: Security assurance components
Published by ISO on August 15, 2008
This part of ISO/IEC 15408 defines the assurance requirements of ISO/IEC 15408. It includes the evaluation assurance levels (EALs) that define a scale for measuring assurance for component TOEs, the...
This document references:
ISO/IEC 18045 - Information technology - Security techniques - Methodology for IT security evaluation
Published by ISO on August 15, 2008
A description is not available for this item.
This document references:
ISO/IEC 19792 - Information technology - Security techniques - Security evaluation of biometrics
Published by ISO on August 1, 2009
This International Standard specifies the subjects to be addressed during a security evaluation of a biometric system. It covers the biometric-specific aspects and principles to be considered during...
This document references:
ISO/IEC 19795-1 - Information technology — Biometric performance testing and reporting — Part 1: Principles and framework
Published by ISO on May 1, 2021
This document: — establishes general principles for testing the performance of biometrics systems in terms of error rates and throughput rates for purposes including measurement of performance,...
This document references:
ISO/IEC 30107-3 - Information technology - Biometric presentation attack detection - Part 3: Testing and reporting
Published by ISO on September 1, 2017
This document establishes: — principles and methods for performance assessment of presentation attack detection mechanisms; — reporting of testing results from evaluations of presentation attack...
This document is referenced by:
ITU-T X.1279 - Framework of enhanced authentication using telebiometrics with anti-spoofing detection mechanisms
Published by ITU-T on September 1, 2020
This Recommendation provides an architectural framework of enhanced authentication using telebiometrics with the capabilities of anti-spoofing detection. This Recommendation analyses threats to...
This document is referenced by:
ISO/IEC TR 30117 - Information technology — Standards and applications for the integration of biometrics and integrated circuit cards (ICCs)
Published by ISO on August 1, 2021
This document summarizes how some of the main international standards and recommendations approach personal identification and its related information security, with regard to the integration of...
This document is referenced by:
ISO/IEC 27553-1 - Information security, cybersecurity and privacy protection — Security and privacy requirements for authentication using biometrics on mobile devices — Part 1: Local modes
Published by ISO on November 1, 2022
This document provides high-level security and privacy requirements and recommendations for authentication using biometrics on mobile devices, including security and privacy requirements and...
This document is referenced by:
ISO/IEC TR 29119-13 - Software and systems engineering — Software testing — Part 13: Using the ISO/IEC/IEEE 29119 series in the testing of biometric systems
Published by ISO on November 1, 2022
This document: — gives information for software testers for the systematic, risk-based testing of biometric systems and larger systems which include biometric subsystems; — establishes the importance...
View Less
View All
Advertisement