ISO 19092 Financial Services - Biometrics, released asISO 19092 Financial Services - Biometrics - Part 1: Security framework, is anISO standard and describes the adequate information management security controls and the proper procedures for usingbiometrics as an authentication mechanism for secure remote electronic access or local physical access controls for thefinancial and other critical infrastructure industries.[1]
The standard also provides a useful tutorial on biometric systems and technology, describes the physical security requirements ofbiometric devices, the minimal content forBiometric Policy (BP) andBiometric Practice Statements (BPS), and secure event journal content for review and audit of biometric systems.
There was to be anISO 19092 Financial Services - Biometrics - Part 2: Message syntax and cryptographic requirements to describes the techniques, protocols, cryptographic requirements, and syntax for usingbiometrics as an identification and verification mechanism in a wide variety of security applications in thefinancial industry.[2][3] However, consensus was never reached on this part.[4]
The standard was to provide support for policy based matching decisions for remote authentication and allows biometrics to be used securely with theISO 8583 retail transaction messaging standard.[5] A secure review and audit event journal syntax was to allow many of the security controls specified in Part 1 to be implemented.[6]
 | Thisstandards- ormeasurement-related article is astub. You can help Wikipedia byexpanding it. |
