Biometrics Security

CCDB iTC Liaison:  Japan

Introduction and Status

The CCDB has established a Work Group to assist in creating an iTC (and hence cPPs) for Biometrics Security (the Work Group name is abbreviated to "BS WG").  The Work Group comprises participating Certification Bodies from 4 nations, at present:  Australia, Japan, Spain and Turkey. 

The invitation notice for joining the candidate iTC, with contact details, can be found here:  iTC invitation letter

To join the iTC, please message:  isec-itc-bio-info@ipa.go.jp.

Biometrics Security Public Review Draft 1 for v1.1 Published

The BIO-iTC has published the Public Review Draft 1 set of documents for the v1.1 release of the PP-Module, Supporting Document and PP-Configuration (for MD). The review period is open for comments until August 15, 2021. The Overview document provides more detailed information about the process as well as the documents and specific points for review called out by the BIO-iTC.

The BIO-iTC Status Page will provide ongoing status updates on the review process.

Biometrics Security Public Release v1.0 Published

The BIO-iTC has published v1.0 of the PP-Module, Supporting Document and PP-Configuration (for MD) on May 11, 2020. 

The BIO-iTC Status Page is https://biometricITC.github.io. PDF and HTML versions of the documents can be accessed here along with the latest status information. 

Initial Essential Security Requirements (ESR) and Position Statements

Essential Security Requirements

   Biometric Authentication

The working group has produced an Essential Security Requirements document for Biometrics Security and initial iTC members have updated the ESR.  The ESR represents the common needs of the WG and initial iTC members in the technology area.  The document can be found here:  Essential Security Requirements

Information about Biometrics Security cPP Position Statements can be found here:  Position Statements

   Continuous Multifactor Authentication

The iTC has produced an Essential Security Requirements document for Continuous Multifactor Authentication (CMFA). The ESR represents the common needs of the iTC members in the technology area. The document can be found here: CMFA Essential Security Requirements