OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

tc-announce message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Proposed Charter for OASIS Biometrics (biometrics) Technical Committee


To OASIS Members:

A draft TC charter has been submitted to establish the OASIS Biometrics Technical Committee. In accordance with the OASIS TC Process Policy section 2.2: (https://www.oasis-open.org/policies-guidelines/tc-process#formation) the proposed charter is hereby submitted for comment. The comment period shall remain open until 11:45 pm ET on 04 December 2012.

OASIS maintains a mailing list for the purpose of submitting comments on proposed charters. Any OASIS member may post to this list by sending email to: oasis-charter-discuss@lists.oasis-open.org. All messages will be publicly archived at: http://lists.oasis-open.org/archives/oasis-charter-discuss/. Members who wish to receive emails must join the group by selecting "join group" on the group home page: http://www.oasis-open.org/apps/org/workgroup/oasis-charter-discuss/. Employees of organizational members do not require primary representative approval to subscribe to the oasis-charter-discuss e-mail.

A telephone conference will be held among the Convener, the OASIS TC Administrator, and those proposers who wish to attend within four days of the close of the comment period. The announcement and call-in information will be noted on the OASIS Charter Discuss Group Calendar.

We encourage member comment and ask that you note the name of the proposed TC (biometrics) in the subject line of your email message.

---

Proposal for OASIS Biometrics Technical Committee

(1) TC Charter

(1)(a) Name of the TC

OASIS Biometrics Technical Committee

(1)(b) Statement of Purpose

Despite existing efforts, opportunities remain for improving interoperability among biometric-related systems or system components.

The purpose of the OASIS Biometrics Technical Committee is to define, enhance, and maintain open standards that facilitate the use of biometrics and biometric operations over a service-oriented architecture, such as web services. Improving interoperability is a key enabler for making biometrics more viable within multi-factor authentication. The Technical Committee will help bring parity to biometrics as compared to other technologies, such as cryptographic certificate use and management, where web services standards are markedly more mature.

Because improving interoperability through open standards is a primary objective, the Technical Committee is dedicated to the concept that conformance to standards will imply a well-documented level of interoperability. Additionally, standards development in the Technical Committee should both minimize and segregate components where requiring unique knowledge hinders interoperability.

(1)(c) Scope of Work

The Technical Committee will provide a general, yet targeted forum for developing a suite of open standards that will foster and accelerate the use of biometrics and biometric services in a distributed environment.

(1)(d) List of Deliverables

* OASIS Specification for WS-Biometric Devices (WS-BD) based on contribution from NIST (12–18 months from the first meeting) [1]

* Maintenance of the OASIS BIAS SOAP Profile [3] and related work products as required (immediately from first meeting)

* Maintenance of the OASIS XML Common Biometric Format (XCBF) Standard [4] (immediately from first meeting) and related work products as required

* Other standards, guidelines, recommendations, and deliverables as initiated and approved by the Committee (dates of deliverable according to their introduction and coordination within the TC)

(1)(e) IPR Mode

The Technical Committee will operate under the "RF on Limited Terms" mode of the OASIS IPR Policy [https://www.oasis-open.org/policies-guidelines/ipr#s10.2.3].

(1)(f) Anticipated Audience or Users

The primary audience of the work produced by the Technical Committee will be the biometrics community, the authentication community, and the identity management community.

(1)(g) Language

English shall be the language used to conduct business within the Technical Committee. The Technical Committee may elect to form subcommittees to produce localized documentation of the Committee’s work in additional languages.

(2) Non-Normative Information Regarding TC 

(2)(a) Similar or Applicable Work

OASIS has other committees that are related to Biometrics but the committees are run in a very narrow scope: BIAS or XCBF. This narrow scope may constrain some of the creativity within a TC. It is planned that other biometrics-related work done by other TCs will be moved into this new TC to provide a central location. Other committees from within OASIS can then have a single source of biometrics standards work being performed. Committees focusing on, but not limited to, authentication, e-authentication, and privacy and identity may be able to leverage this work within their own projects. Within the US, INCITS M1 working groups focus on biometrics activities but not related to web services; this is the same within ISO/IEC JTC 1 SC 37. The new committee plans to coordinate and maintain liaison relationships with both committees as well as other committees as discovered.

Activity supporting biometric standardization [5] is underway in many venues worldwide, in de jure bodies (international, national, regional) and in de facto SSOs/SDOs, industry trade groups, inter-agency projects, etc [6].  The OASIS Biometrics TC will seek to align its technical activities and deliverables with these other standardization initiatives in order to support harmonized vocabularies, avoid pointless duplication of effort, and promote interoperability of biometric data exchange and machine processing.

Further, the OASIS Biometrics TC will seek to establish working relationships with other standardization projects in the form of TC Liaisons as may be appropriate for any of its specification development activities.

(2)(b) Date, Time, and Location of First Meeting
The first meeting will be held by teleconference on Tuesday, 05 February 2013, at 12:00 PM Eastern Standard Time. NIST will sponsor the meeting. 

(2)(c) Ongoing Meeting Plans and Sponsors
The TC expects to meet monthly by conference call. Sponsorship is to be determined at the first meeting.

(2)(d) Proposers of the TC

1. Kevin Mangold, kevin.mangold@nist.gov, US National Institute of Standards and Technology (NIST)
2. Ross Micheals, ross.micheals@nist.gov, US National Institute of Standards and Technology (NIST) 
3. Brad Wing, bradford.wing@nist.gov, US National Institute of Standards and Technology (NIST) 
4. Cathy Tilton, cathy.tilton@daon.com, Daon
5. Ryan Triplett, Triplett_Ryan@bah.com, Booz Allen Hamilton
6. Raul Sanchez-Reillo, raul.sanchezreillo@gmail.com, Carlos III University of Madrid

(2)(e) Statements of Support
1. Mary Brady, mary.brady@nist.gov, NIST. "As NIST’s primary representative to OASIS, I approve the Biometrics TC charter and endorse all NIST proposers listed in (2)(d)." 

2. William Barnhill, barnhill_william@bah.com, Booz Allen Hamilton. "I, William Barnhill, Booz Allen Hamilton’s primary representative to OASIS, approve the Biometrics TC charter and endorse all BAH proposers listed in (2)(d)."

3. Raul Sanchez-Reillo, raul.sanchezreillo@gmail.com, Carlos III University of Madrid. "I, Raul Sanchez-Reillo, Carlos III University of Madrid’s primary representative to OASIS, approve the Biometrics TC charter and endorse all Carlos III University of Madrid proposers listed in (2)(d). '

(2)(f) TC Convener

Kevin Mangold, kevin.mangold@nist.gov, US National Institute of Standards and Technology (NIST) will be the convener. 

(2)(g) Member Section Affiliation

(2)(h) Initial Contributions

NIST will contribute its "Specification for WS-Biometric Devices (WS-BD)" [1] as a starting point for one of the key TC deliverables.

(2)(i) FAQ Document

(2)(j) Work Product Titles

=============================
References
=============================

[1] Specification for WS-Biometric Devices (WS-BD)
    NIST Special Publication 500-288, Version 1, March 2012
    http://www.nist.gov/itl/iad/ig/upload/NIST-SP-500-288-v1.pdf

Summary: "WS-Biometric Devices is a protocol which focuses on
the single process shared by all biometric systems: acquisition
("capturing a biometric sample with the intention of creating
either a biometric reference or biometric probe"). The 
specification provides a framework for deploying and invoking
core synchronous operations via lightweight web service 
protocols for the command and control of biometric sensors.
The design of this specification is influenced heavily by the
REST architecture; deviations and tradeoffs were made to
accommodate the inherent mismatches between the REST design
goals and the limitations of devices that are (typically)
oriented for a single-user."

[2] NIST Biometric Web Services
Including Reference Implementation for Biometric Identity Assurance Services
http://www.nist.gov/itl/iad/ig/bws.cfm

[3] Biometric Identity Assurance Services (BIAS) SOAP Profile Version 1.0
    OASIS Standard, 24 May 2012
    http://docs.oasis-open.org/bias/soap-profile/v1.0/os/biasprofile-v1.0-os.html

Summary: This profile specifies how to use the Extensible Markup
Language (XML) defined in ANSI INCITS 442-2010  -- Biometric
Identity Assurance Services to invoke Simple Object Access
Protocol (SOAP)-based services that implement BIAS operations.
These SOAP-based services enable an application to invoke 
biometric identity assurance operations remotely in a Services
Oriented Architecture (SOA) infrastructure. This OASIS BIAS 
profile specifies the design concepts and architecture, data
model and data dictionary, message structure and rules, and
error handling necessary to invoke SOAP-based services that
implement BIAS operations. Together, the BIAS standard and 
the BIAS profile provide an open framework for deploying and
remotely invoking biometric-based identity assurance capabilities
that can be readily accessed across an SOA infrastructure."


[4] XML Common Biometric Format
    OASIS Standard, August 2003
    http://www.oasis-open.org/committees/download.php/3353/oasis-200305-xcbf-specification-1.1.doc

Summary: "This specification defines a common set of secure
XML encodings for the patron formats specified in CBEFF, the
Common Biometric Exchange File Format (NISTIR 6529). These 
XML encodings are based on the ASN.1 schema defined in
ANSI X9.84 Biometric Information Management and Security. For
security purposes, they make use of the Canonical XML Encoding
Rules (CXER) for ASN.1 defined in ITU-T Rec. X.693, and rely
on the security and processing requirements specified in the
X9.96 XML Cryptographic Message Syntax (XCMS) and X9.73
Cryptographic Message Syntax (CMS) standards."

[5] ** Biometric Standards: General References **

[6] Getting Started: Biometric Standards (Catherine J. Tilton)
    http://www.planetbiometrics.com/article-details/i/499/

[7] Biometric Standards: Interview with Christoph Busch
    http://www.planetbiometrics.com/article-details/i/1172/

[8] Advance of Biometric Standards: Fernando Podio
    http://www.planetbiometrics.com/article-details/i/1130/

[9] ** Biometric Standardization Venues **

[10] ISO/IEC JTC1 SC 37 (Biometrics)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=313770
http://www.christoph-busch.de/standards-sc37wg3.html

[11] ISO/IEC JTC 1/SC 17 (Cards and Personal Identification)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=45144

[12] ISO/IEC JTC 1/SC 27 (IT Security Techniques)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=45306

[13] ISO TC 68/SC 2 (Financial Services, Security)
http://www.iso.org/iso/home/store/catalogue_tc/catalogue_tc_browse.htm?commid=49670

[14] INCITS/M1, Biometrics Technical Committee
http://standards.incits.org/a/public/group/m1

[15] ITU-T Study Group 17 (SG17)
http://www.itu.int/net/ITU-T/info/sg17.aspx

[16] BioAPI Consortium
http://www.bioapi.org/

[17] International Biometric Industry Association (IBIA)
http://ibia.org/

[18] NIST Information Technology Laboratory (ITL) for Biometrics
http://www.nist.gov/biometrics-portal.cfm

[19] US Biometrics Identity Management Agency (BIMA)
http://www.biometrics.dod.mil/

[20] US National Information Exchange Model (NIEM) Biometrics Domain
https://www.niem.gov/communities/biometrics/Pages/about-bm.aspx

[21] UN International Civil Aviation Organization (ICAO)
     [Machine Readable Travel Documents (MRTDs), Biometrics and Border Security]
http://www.icao.int/Meetings/mrtd-Zimbabwe2012/Pages/default.aspx

[22] Unique Identity Authority of India (UIDAI) Aadhaar Project
http://uidai.gov.in/aadhaar.html

[23] VoiceXML Forum [Voice Biometrics]
http://www.voicexml.org/

[24] Biometrics in a Networked World (Kevin Mangold)
http://www.planetbiometrics.com/article-details/i/1271/

/chet 
----------------
Chet Ensign
Director of Standards Development and TC Administration 
OASIS: Advancing open standards for the information society
http://www.oasis-open.org

Primary: +1 973-996-2298
Mobile: +1 201-341-1393




[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]