OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

oasis-charter-discuss message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: FW: New project to standardize biometrics for multi-factor authentication

________________________________________
From: Dee Schur [dee.schur@oasis-open.org]
Sent: Tuesday, December 04, 2012 12:27
To: Mangold, Kevin C.; chet.ensign@oasis-open.org
Subject: RE: New project to standardize biometrics for multi-factor authentication

We are on it.
dee

Dee Schur
Senior Manager - Standards Advocate
OASIS: Advancing open standards for the information society
http://www.oasis-open.org
+1.781.425.5073 x211

-----Original Message-----
From: Mangold, Kevin C. [mailto:kevin.mangold@nist.gov]
Sent: Tuesday, December 04, 2012 12:04 PM
To: dee.schur@oasis-open.org; chet.ensign@oasis-open.org
Subject: RE: New project to standardize biometrics for multi-factor
authentication

Dee/Chet,

Can you assist Janine with this issue?

Thanks,
Kevin
________________________________________
From: Janine Kennedy [jkennedy@lumidigm.com]
Sent: Monday, December 03, 2012 16:38
To: dee.schur@oasis-open.org
Cc: Mangold, Kevin C.; Paul Butler
Subject: FW: New project to standardize biometrics for multi-factor
authentication

Hi Dee, I'm sorry to bother you about this. We got the below email from
Kevin Mangold today stating that we needed to send our comments to a list
address. However, our submission bounced back from
oasis-charter-discuss@lists.oasis-open.org! I had copied you and Kevin.
Apparently Kevin is out of the office, so I'm reaching out to you on this.
Can you make another suggestion so that our comments end up in the right
place?

Best regards,

Janine

Janine Kennedy
Marketing & Communications Manager
Lumidigm, Inc.
+1 505 272 7082

If you have received this communication in error, please immediately notify
us by telephone (+1 505 272 7084), and delete the original message.

-----Original Message-----
From: Mangold, Kevin C. [mailto:kevin.mangold@nist.gov]
Sent: Monday, December 03, 2012 11:27 AM
To: Janine Kennedy; Paul Butler
Subject: RE: New project to standardize biometrics for multi-factor
authentication

Janine, Paul,

I noticed that you had submitted some questions to Dee regarding the OASIS
Biometrics TC. I just wanted to send out a reminder that
comments/suggestions need to be submitted to the OASIS mailing list
(oasis-charter-discuss@lists.oasis-open.org) for official inclusion. The
deadline to submit comments is Tomorrow, Tuesday, December 4th and 23:59
EST.

Regards,
Kevin

-----Original Message-----
From: Dee Schur [mailto:dee.schur@oasis-open.org]
Sent: Monday, November 26, 2012 20:29
To: Mangold, Kevin C.
Cc: 'Dee Schur'
Subject: FW: New project to standardize biometrics for multi-factor
authentication

Here is another response I need some help with?
Thanks a million!
dee

Dee Schur
Senior Manager - Standards Advocate
OASIS: Advancing open standards for the information society
http://www.oasis-open.org
+1.781.425.5073 x211

-----Original Message-----
From: Paul Butler [mailto:pbutler@lumidigm.com]
Sent: Wednesday, November 21, 2012 9:41 AM
To: dee.schur@oasis-open.org; Paul Butler
Cc: Phil Scarfo; Janine Kennedy; Rob Rowe; Reinier van der Drift
Subject: RE: New project to standardize biometrics for multi-factor
authentication

Hello Dee - thanks! for the notice.

In reading the charter and supporting documents...

(1) we believe there is a need to enable biometrics to become a more viable
/ mature alternative in multi-factor authentication and we support the
charter and intent.

(2) I noticed that the concept of a "trusted device" and "anti-spoofing"
seem missing.  In a web based world it is critical that not only is the
communications channel secured from man in the browser but you need to know
that the end point device is secure and that the biometric sample being
presented to the sensor is genuine.  Without these attributes biometrics may
not be a viable alternative. Is this in scope of the project?

(3) NIST SP 800-63-1 has promulgated the concept that biometrics will never
be a viable means of authentication because the biometric is not a secret...
the narrative in this document therefore claims that biometrics should only
be used to unlock tokens rather than be considered a viable authentication
mode.  I believe the project has to define and justify a broader use of
biometrics to achieve the project objective.

Cheers,
Paul Butler


-----Original Message-----
From: Janine Kennedy
Sent: Tuesday, November 20, 2012 4:08 PM
To: Rob Rowe; Paul Butler
Cc: Phil Scarfo
Subject: FW: New project to standardize biometrics for multi-factor
authentication

FYI

Janine Kennedy
Marketing & Communications Manager
Lumidigm, Inc.
+1 505 272 7082

If you have received this communication in error, please immediately notify
us by telephone (+1 505 272 7084), and delete the original message.

-----Original Message-----
From: Dee Schur [mailto:dee.schur@oasis-open.org]
Sent: Tuesday, November 20, 2012 12:11 PM
To: Janine Kennedy
Subject: New project to standardize biometrics for multi-factor
authentication

Janine,

In cooperation with the US NIST, the OASIS open standards consortium is
starting a project to improve interoperability among biometric systems,
making biometrics more viable within multi-factor authentication. Since this
work may directly affect Lumidigm, we hope you will review the draft charter
and let us know what you think.

The project aims to develop a suite of open standards that will accelerate
the use of biometrics and biometric services in a distributed environment.
The Committee's work will build on the WS-Biometric Devices (WS-BD)
specification (NIST Special Publication
500-288) and other current standards, including the BIAS SOAP Profile and
XML Common Biometric Format (XCBF).

The goal is to bring biometrics on par with technologies like cryptographic
certificates, where web services standards are markedly more mature.

OASIS is in the process of building an international coalition of support
for this project. The US National Institute of Standards and Technology
(NIST), Booz Allen Hamilton, Daon, and the Carlos III University of Madrid
are initial proposers; the US Department of Defense, Department of Homeland
Security, and General Services Administration are finalizing their
participation. Involvement from the public and private sectors across the
world is a priority, which is why we are seeking your support.

The charter will be finalized after 4 Dec; please send us your comments
before then. If Lumidigm would like to be listed as an OASIS Biometrics
Technical Committee proposer in the formal Call for Participation
(membership is required), we'd be happy to discuss your options for getting
involved.

Regards,
Dee

** References **

OASIS Biometrics TC Draft Charter
https://lists.oasis-open.org/archives/tc-announce/201211/msg00005.html

OASIS Membership Categories and Dues
http://www.oasis-open.org/join/categories-dues

--

Dee Schur
Senior Manager - Standards Advocate
OASIS: Advancing open standards for the information society
WWW: http://www.oasis-open.org/
Tel: +1.781.425.5073 x211
Email: dee.schur@oasis-open.org

Date: 2012-11-20
Sent to: Janine Kennedy [jkennedy@lumidigm.com]

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]