Project news

Call for Participation: OASIS Biometric Services (#BIOSERV) TC

A new OASIS technical committee is being formed. The OASIS Biometric Services (BIOSERV) Technical Committee (TC) has been proposed by the members of OASIS listed in the charter below. The TC name, statement of purpose, scope, list of deliverables, audience, IPR mode and language specified in this proposal will constitute the TC’s official charter. Submissions of technology for consideration by the TC, and the beginning of technical discussions, may occur no sooner than the TC’s first meeting.

The eligibility requirements for becoming a participant in the TC at the first meeting are:

(a) you must be an employee or designee of an OASIS member organization or an individual member of OASIS, and

(b) you must join the Technical Committee, which members may do by using the Roster “join group” link on the TC’s web page at [a].

To be considered a voting member at the first meeting:

(a) you must join the Technical Committee at least 7 days prior to the first meeting (on or before 01 July 2015); and

(b) you must attend the first meeting of the TC, at the time and date fixed below (08 July 2015).

Participants also may join the TC at a later time. OASIS and the TC welcomes all interested parties.

Non-OASIS members who wish to participate may contact us about joining OASIS [b]. In addition, the public may access the information resources maintained for each TC: a mail list archive, document repository and public comments facility, which will be linked from the TC’s public home page at [c].

Please feel free to forward this announcement to any other appropriate lists. OASIS is an open standards organization; we encourage your participation.

———-

[a] https://www.oasis-open.org/apps/org/workgroup/bioserv/

[b] See http://www.oasis-open.org/join/

[c] http://www.oasis-open.org/committees/bioserv/

———-

CALL FOR PARTICIPATION

OASIS Biometric Services (BIOSERV) Technical Committee Charter

The charter for this TC is as follows.

(1) TC Charter

(1)(a) Name of the TC

OASIS Biometric Services (BIOSERV) Technical Committee

(1)(b) Statement of Purpose

Despite advances in the use of biometrics, opportunities remain for improving interoperability among biometric-related systems or system components.

The purpose of the OASIS Biometric Services Technical Committee is to define, enhance, and maintain open standards that facilitate the use of biometrics and biometric operations over a service-oriented architecture, such as web services. Improving interoperability is a key enabler for making biometrics more viable within multi-factor authentication. The Technical Committee will help bring parity to biometrics as compared to other technologies, such as cryptographic certificate use and management, where web services standards are markedly more mature.

Because improving interoperability through open standards is a primary objective, the Technical Committee is dedicated to the concept that conformance to standards will imply a well-documented level of interoperability. Additionally, standards development in the Technical Committee should both minimize and segregate components where requiring unique knowledge hinders interoperability.

(1)(c) Scope of Work

The Technical Committee will provide a general, yet targeted forum for developing a suite of open standards that will foster and accelerate the use of biometrics and biometric services in a distributed environment.

Excluded is work currently being done in ISO/IEC JTC 1 SC 37 and INCITS M1, unless in coordination with the appropriate SDO(s).

(1)(d) List of Deliverables

* WS-Biometric Devices (WS-BD) v1.0 (within 18 months of submission)

* Biometric Identity Assurance Services (BIAS) Profile Standards aligning to ISO/IEC 30108 (within 24 months of submission)

* Other biometric-related standards, guidelines, recommendations, and deliverables as initiated and approved by the Committee (completion date(s) will be provided as projects are formed).

(1)(e) IPR Mode

The Technical Committee will operate under the “RAND” mode of the OASIS IPR Policy [https://www.oasis-open.org/policies-guidelines/ipr#s10.2.3].

(1)(f) Anticipated Audience or Users

The primary audience of the work produced by the Technical Committee will be the biometrics community, the authentication community, and the identity management community.

(1)(g) Language

English shall be the language used to conduct business within the Technical Committee. The Technical Committee may elect to form subcommittees to produce localized documentation of the Committee’s work in additional languages.

(2) Non-Normative Information Regarding TC

(2)(a) Similar or Applicable Work

The proposers expect this TC to succeed the OASIS Biometrics TC. The IPR mode of the Biometrics TC limits participation from the biometrics industry and community stakeholders.

By succeeding the Biometrics TC, other committees from within OASIS can still have coordinated forum of biometrics standards work being performed.

Committees focusing on, but not limited to, authentication, e-authentication, and privacy and identity may be able to leverage this work within their own projects. Within the US, INCITS M1 working groups focus on biometrics activities but not related to web services; this is the same within ISO/IEC JTC 1 SC 37. The new committee plans to coordinate and maintain liaison relationships with both committees as well as other committees as discovered.

Activity supporting biometric standardization is underway in many venues worldwide, in de jure bodies (international, national, regional) and in de facto SSOs/SDOs, industry trade groups, inter-agency projects, etc. The OASIS Biometric Services TC will seek to align its technical activities and deliverables with these other standardization initiatives in order to support harmonized vocabularies, avoid pointless duplication of effort, and promote interoperability of biometric data exchange and machine processing.

Further, the OASIS Biometric Services TC will seek to establish working relationships with other standardization projects in the form of TC Liaisons as may be appropriate for any of its specification development activities.

(2)(b) Date, Time, and Location of First Meeting

NIST will host the first meeting, via teleconference, on July 8th, 2015 at 13:00 ET. Dial-in information will be provided at a later date, prior to the meeting.

(2)(c) Ongoing Meeting Plans and Sponsors

The TC expects to meet monthly by conference call. Hosting of meetings may rotate among TC members.

(2)(d) Proposers of the TC

1. Kevin Mangold, kevin.mangold@nist.gov, US National Institute of Standards and Technology (NIST)

2. Ross Micheals, ross.micheals@nist.gov, US National Institute of Standards and Technology (NIST)

3. Kayee Hanaoka, kayee@nist.gov, US National Institute of Standards and Technology (NIST)

4. Karen Marshall, karenm@nist.gov, US National Institute of Standards and Technology (NIST)

5. Cathy Tilton, cathy.tilton@daon.com, Daon

(2)(e) Statements of Support

I, Catherine Tilton, cathy.tilton@daon.com, Daon’s primary representative to OASIS, approve the Biometric Services TC charter and endorse all Daon proposers listed in (2)(d).

I, Elaine Newton, elaine.newton@nist.gov, NIST’s alternate representative to OASIS, approve the Biometric Services charter and endorse all NIST proposers listed in (2)(d).

(2)(f) TC Convener

Kevin Mangold, kevin.mangold@nist.gov, US National Institute of Standards and Technology (NIST) will be the convener.

(2)(g) Member Section Affiliation

(2)(h) Initial Contributions

NIST will contribute its “Specification for WS-Biometric Devices (WS-BD)” as a starting point for one of the key TC deliverables.

(2)(i) FAQ Document

(2)(j) Work Product Titles

=============================
References
=============================
[1] Specification for WS-Biometric Devices (WS-BD)
NIST Special Publication 500-288, Version 1, March 2012
http://www.nist.gov/itl/iad/ig/upload/NIST-SP-500-288-v1.pdf

Summary: “WS-Biometric Devices is a protocol which focuses on the single process shared by all biometric systems: acquisition (“capturing a biometric sample with the intention of creating either a biometric reference or biometric probe”). The specification provides a framework for deploying and invoking core synchronous operations via lightweight web service protocols for the command and control of biometric sensors. The design of this specification is influenced heavily by the REST architecture; deviations and tradeoffs were made to accommodate the inherent mismatches between the REST design goals and the limitations of devices that are (typically) oriented for a single-user.”

[2] NIST Biometric Web Services

Including Reference Implementation for Biometric Identity Assurance Services
http://www.nist.gov/itl/iad/ig/bws.cfm

[3] Biometric Identity Assurance Services (BIAS) SOAP Profile Version 1.0
OASIS Standard, 24 May 2012
http://docs.oasis-open.org/bias/soap-profile/v1.0/os/biasprofile-v1.0-os.html

Summary: This profile specifies how to use the Extensible Markup Language (XML) defined in ANSI INCITS 442-2010 – Biometric Identity Assurance Services to invoke Simple Object Access Protocol (SOAP)-based services that implement BIAS operations. These SOAP-based services enable an application to invoke biometric identity assurance operations remotely in a Services Oriented Architecture (SOA) infrastructure. This OASIS BIAS profile specifies the design concepts and architecture, data model and data dictionary, message structure and rules, and error handling necessary to invoke SOAP-based services that implement BIAS operations. Together, the BIAS standard and the BIAS profile provide an open framework for deploying and remotely invoking biometric-based identity assurance capabilities that can be readily accessed across an SOA infrastructure.

[4] Biometrics in a Networked World (Kevin Mangold)
http://www.planetbiometrics.com/article-details/i/1271/

[5] OASIS Biometrics TC, https://www.oasis-open.org/committees/biometrics/

** Biometric Standards: General References **

[6] Getting Started: Biometric Standards (Catherine J. Tilton)
http://www.planetbiometrics.com/article-details/i/499/

[7] Biometric Standards: Interview with Christoph Busch
http://www.planetbiometrics.com/article-details/i/1172/

[8] Advance of Biometric Standards: Fernando Podio
http://www.planetbiometrics.com/article-details/i/1130/

** Biometric Standardization Venues **

[9] ISO/IEC JTC1 SC 37 (Biometrics)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=313770
http://www.christoph-busch.de/standards-sc37wg3.html

[10] ISO/IEC JTC 1/SC 17 (Cards and Personal Identification)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=45144

[11] ISO/IEC JTC 1/SC 27 (IT Security Techniques)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=45306

[12] ISO TC 68/SC 2 (Financial Services, Security)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=49670

[13] INCITS/M1, Biometrics Technical Committee
http://standards.incits.org/a/public/group/m1

[14] ITU-T Study Group 17 (SG17)
http://www.itu.int/net/ITU-T/info/sg17.aspx

[15] BioAPI Consortium
http://www.bioapi.org/

[16] International Biometric Industry Association (IBIA)
http://ibia.org/

[17] NIST Information Technology Laboratory (ITL) for Biometrics
http://www.nist.gov/biometrics-portal.cfm

[18] US Defense Forensics and Biometrics Agency (DFBA)
http://www.biometrics.dod.mil/

[19] US National Information Exchange Model (NIEM) Biometrics Domain
https://www.niem.gov/communities/biometrics/Pages/about-bm.aspx

[20] UN International Civil Aviation Organization (ICAO)
[Machine Readable Travel Documents (MRTDs), Biometrics and Border Security]
http://www.icao.int/Meetings/mrtd-Zimbabwe2012/Pages/default.aspx

[21] Unique Identity Authority of India (UIDAI) Aadhaar Project
http://uidai.gov.in/aadhaar.html

[22] VoiceXML Forum [Voice Biometrics]
http://www.voicexml.org/