ISO 19092:2023
ISO 19092:2023 Financial services – Biometrics – Security framework
CDN $351.00
Description
This document specifies the security framework for using biometrics for authentication of customers in financial services, focusing exclusively on retail payments. It introduces the most common types of biometric technologies and addresses issues concerning their application. This document also describes representative architectures for the implementation of biometric authentication and associated minimum control objectives.
The following are within the scope of this document:
–    use of biometrics for the purpose of:
–    verification of a claimed identity;
–    identification of an individual;
–    biometric authentication threats, vulnerabilities and controls;
–    validation of credentials presented at enrolment to support authentication;
–    management of biometric information across its life cycle, comprising enrolment, transmission and storage, verification, identification and termination processes;
–    security requirements for hardware used in conjunction with biometric capture and biometric data processing;
–    biometric authentication architectures and associated security requirements.
The following are not within the scope of this document:
–    detailed specifications for data collection, feature extraction and comparison of biometric data and the biometric decision-making process;
–    use of biometric technology for non-financial transaction applications, such as physical or logical system access control.
Edition
2
Published Date
2023-03-02
Status
PUBLISHED
Pages
65
Language
English
Format
Secure PDF
Secure – PDF details
- Save your file locally or view it via a web viewer
- Viewing permissions are restricted exclusively to the purchaser
- Device limits - 3
- Printing – Enabled only to print (1) copy
See more about our Environmental Commitment
Abstract
This document specifies the security framework for using biometrics for authentication of customers in financial services, focusing exclusively on retail payments. It introduces the most common types of biometric technologies and addresses issues concerning their application. This document also describes representative architectures for the implementation of biometric authentication and associated minimum control objectives.
The following are within the scope of this document:
-    use of biometrics for the purpose of:
-    verification of a claimed identity;
-    identification of an individual;
-    biometric authentication threats, vulnerabilities and controls;
-    validation of credentials presented at enrolment to support authentication;
-    management of biometric information across its life cycle, comprising enrolment, transmission and storage, verification, identification and termination processes;
-    security requirements for hardware used in conjunction with biometric capture and biometric data processing;
-    biometric authentication architectures and associated security requirements.
The following are not within the scope of this document:
-    detailed specifications for data collection, feature extraction and comparison of biometric data and the biometric decision-making process;
-    use of biometric technology for non-financial transaction applications, such as physical or logical system access control.
Previous Editions
Can’t find what you are looking for?
Please contact us at:
Related Documents
-
ISO 14742:2010 Financial services – Recommendations on cryptographic algorithms and their use
CDN $273.00 Add to cart -
ISO 13491:2024 Financial services – Secure cryptographic devices (retail) – Part 1: Concepts and requirements
CDN $273.00 Add to cart -
ISO 22126:2022 Financial services – Semantic technology – Part 5: Mapping from FIX Orchestra to the common model
CDN $76.00 Add to cart -
ISO 5201:2024 Financial services – Code-scanning payment security
CDN $273.00 Add to cart
