标准摘要
[中文适用范围]: 本文件为在移动设备上使用生物特征识别进行身份验证提供了高级别的安全和隐私要求,特别是针对功能组件、通信、存储和远程处理。本文件适用于远程模式,即以下情况:——生物特征样本通过移动设备捕获,且——生物特征数据或派生生物特征数据在移动设备和远程服务之间以任一或双向传输。以下不在本文件范围内:——生物特征数据或派生生物特征数据从不离开移动设备的情况(即本地模式),——身份验证程序之前的生物特征注册初步步骤,以及——使用生物特征识别作为身份验证的一部分。 [外文原描述]: This document provides high-level security and privacy requirements for authentication using biometrics on mobile devices, in particular, for functional components, communication, storage and remote processing. This document is applicable to remote modes, i.e. the cases where: — the biometric sample is captured through mobile devices, and — the biometric data or derived biometric data are transmitted between the mobile devices and the remote services in either or both directions. The following are out of scope of this document: — the cases where the biometric data or derived biometric data never leave the mobile devices (i.e. local modes), — the preliminary steps for biometric enrolment before authentication procedure, and — the use of biometric identification as part of the authentication.
英文名称Information security, cybersecurity and privacy protection - Security and privacy requirements for authentication using biometrics on mobile devices - Part 2: Remote modes