BS PD ISO/IEC TR 29156:2015提供了指定认证性能要求的指南 使用生物识别技术，以实现用户所需的安全性和可用性水平 身份验证机制。该指南解决了以下问题:影响安全性和可用性的生物特征性能指标；比较并量化生物特征识别和其他身份验证的安全性和可用性 单独或组合使用时的机械装置；如何结合各个身份验证元素的性能以满足总体需求 安全性和可用性要求；在使用生物识别的应用中，安全性和可用性之间的权衡； 在使用生物识别技术的系统中维护安全性和可用性的注意事项。该指南针对使用生物识别技术进行个人身份验证的应用程序，以及中小型应用程序（就登记的个人数量而言）。本指南未涉及以下内容:监控系统；其主要目的是检测和防止个人试图创造多个目标的系统 以不同身份注册；注册人数众多且多样化的系统，其中可能包括有特殊需求的人；功能、安全和可用性要求复杂的其他系统。 此类大规模应用程序通常是大型组织的领域，并且假设 这类系统的开发者将获得适当的生物识别专业知识，能够提供指导 超出本技术报告的范围。本技术报告不涉及生物识别模式和技术特定问题，也不涉及 提供满足特定应用的定量生物特征性能要求。交叉引用:ISO/IEC 2382ISO/IEC 2382-37ISO 9241-171:2008ISO 9241-210:2010ISO 13407ISO/IEC 29003ISO/IEC 29115ISO/IEC 30107-3ISO/TS 16071ISO/IEC/TR 24714-1ISO/IEC/TR 29196购买本文件时提供的所有当前修订均包含在购买本文件中。

BS PD ISO/IEC TR 29156:2015 provides guidance on specifying performance requirements for authentication using biometric recognition in order to achieve desired levels of security and usability for the authentication mechanism.Guidance addresses issues such as the following:the biometric performance metrics that impact security and usability;comparing and quantifying the security and usability of biometrics and other authentication mechanisms, when used alone or in combination;how to combine performance of individual authentication elements in order to meet an overall security and usability requirement;the trade-off between security and usability in applications using biometric recognition;considerations in maintaining security and usability in systems incorporating biometrics.The guidance is targeted towards applications thatuse biometrics for the authentication of individuals, andare of small to medium size (in terms of the number of enrolled individuals).The guidance does not address the following:surveillance systems;systems whose primary aim is to detect and prevent attempts by individuals to create multiple enrolments under different identities;systems with a large and diverse population of enrolees, which can include people with special needs;other systems with a complex mix of functional, security and usability requirements.Such large-scale applications are typically the domain of large organizations, and it is assumed that the developers of such systems will have access to appropriate biometric expertise able to provide guidance beyond the scope of this Technical Report.This Technical Report does not address biometric modality and technology specific issues, nor does it provide quantitative biometric performance requirements that would satisfy a particular application.Cross References:ISO/IEC 2382ISO/IEC 2382-37ISO 9241-171:2008ISO 9241-210:2010ISO 13407ISO/IEC 29003ISO/IEC 29115ISO/IEC 30107-3ISO/TS 16071ISO/IEC/TR 24714-1ISO/IEC/TR 29196All current amendments available at time of purchase are included with the purchase of this document.