ISO/TC 68/SC 2
| Projekta Nr. | ISO 19092:2008 |
|---|---|
| Nosaukums | <div id="MathJax_Message" style="display: none;"></div> <p>ISO 19092:2008 describes the security framework for using biometrics for authentication of individuals in financial services. It introduces the types of biometric technologies and addresses issues concerning their application. ISO 19092:2008 also describes the architectures for implementation, specifies the minimum security requirements for effective management, and provides control objectives and recommendations suitable for use by a professional practitioner.</p> <p>The following are within the scope of ISO 19092:2008:</p> <ul> <li>usage of biometrics for the authentication of employees and persons seeking financial services by: <ul> <li>verification of a claimed identity;</li> <li>identification of an individual;</li> </ul> </li> <li>validation of credentials presented at enrolment to support authentication as required by risk management;</li> <li>management of biometric information across its life cycle comprised of the enrolment, transmission and storage, verification, identification and termination processes;</li> <li>security of biometric information during its life cycle, encompassing data integrity, origin authentication and confidentiality;</li> <li>application of biometrics for logical and physical access control;</li> <li>surveillance to protect the financial institution and its customers;</li> <li>security of the physical hardware used throughout the biometric information life cycle.</li> </ul> <p>ISO 19092:2008 provides the mandatory means whereby biometric information may be encrypted for data confidentiality or other reasons.</p> |
| Reģistrācijas numurs (WIID) | 50145 |
| Darbības sfēra | <div id="MathJax_Message" style="display: none;"></div> <p>ISO 19092:2008 describes the security framework for using biometrics for authentication of individuals in financial services. It introduces the types of biometric technologies and addresses issues concerning their application. ISO 19092:2008 also describes the architectures for implementation, specifies the minimum security requirements for effective management, and provides control objectives and recommendations suitable for use by a professional practitioner.</p> <p>The following are within the scope of ISO 19092:2008:</p> <ul> <li>usage of biometrics for the authentication of employees and persons seeking financial services by: <ul> <li>verification of a claimed identity;</li> <li>identification of an individual;</li> </ul> </li> <li>validation of credentials presented at enrolment to support authentication as required by risk management;</li> <li>management of biometric information across its life cycle comprised of the enrolment, transmission and storage, verification, identification and termination processes;</li> <li>security of biometric information during its life cycle, encompassing data integrity, origin authentication and confidentiality;</li> <li>application of biometrics for logical and physical access control;</li> <li>surveillance to protect the financial institution and its customers;</li> <li>security of the physical hardware used throughout the biometric information life cycle.</li> </ul> <p>ISO 19092:2008 provides the mandatory means whereby biometric information may be encrypted for data confidentiality or other reasons.</p> |
| Statuss | Atcelts |
| ICS grupa | 03.060 35.240.40 |