• Like
Role of Biometric Standards in IdM
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

Role of Biometric Standards in IdM

  • 1,935 views
Published

Brief delivered at the 2009 Identity Protection and Management Conference titled "Role of Biometric Standards in IdM"

Brief delivered at the 2009 Identity Protection and Management Conference titled "Role of Biometric Standards in IdM"

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
1,935
On SlideShare
0
From Embeds
0
Number of Embeds
1

Actions

Shares
Downloads
48
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide
  • The SIAC TWG hopes to gain an understanding of how biometrics fits into the greater DoD Information Assurance enterprise. This meeting will also set the stage for growth into identity management standards that leverage biometrics.
  • DoD
  • DoD has a close working relationship with DISA. DoD has 4 votes in INCITS M1: BTF has 1, DISA has 1, and 2 are unclaimed. This is an opportunity for a DoD entity to get involved in the development of biometric standards and increase DoD’s influence.
  • How do we prioritize standards development projects? Initially M1 tries to initiated an international project, instead of starting a national project. In the past, M1 started a national project, then focused on international.
  • BTF Standards Status and Activities Update – Consolidated view of all BTF and BSWG standards activities – published quarterly. BTF Standards Development Status Update – Comprehensive list of DISR-approved biometric standards, proposed DISR standards, published standards, and standards projects currently under development in various bodies – published quarterly.

Transcript

  • 1. Role of Biometric Standards in Interoperability and Data Sharing Identity Protection and Management Conference Mr. Benji Hutchinson April 2009 UNCLASSIFIED UNCLASSIFIED
  • 2.
    • Purpose
    • Provide an overview of Biometrics Task Force (BTF) biometric standards initiatives that are underway and planned for the future in the Department of Defense (DoD) and across the United States Government (USG).
    • Goals
    • Demonstrate the importance of biometric standards in the DoD Biometrics Enterprise.
    Purpose and Goal of Brief UNCLASSIFIED
  • 3.
    • DoD Policy and Strategy
    • DoD Directive for Biometrics 8521.01E (England 2008) – Responsibilities of the Executive Agent for Biometrics (Director BTF):
      • E4.3. – “Provide for the standardization of biometric data formats, technical interfaces, conformance methodologies, performance evaluations, and other related areas to permit interoperability…”
      • E4.3.1. – “Provide for participation on national and international standards bodies to influence and accelerate standards development.”
      • E4.3.2 – “Establish a DoD Biometric Standards Working Group [BSWG] to coordinate and build consensus on biometric standards development, recommend standards for DoD adoption, and provide guidance for consistent standards implementation.“
    • DoD Biometrics Enterprise Strategic Plan – 2008-2015 (DoD Biometrics EXCOM 2008):
      • “ Objective 3.4 – Develop and facilitate adoption of biometric standards to enable interoperability”
    • DoD Requirements
    • Initial Capabilities Document (ICD) Biometrics in Support of Identity Management (JROC 2008)
      • Documents 21 capability gaps to be resolved in the 2009-2015 timeframe
      • 6 of the 21 gaps describe DoD shortfalls in biometric standards. (Gaps #4, 5, 9, 12, 15, 17)
    DoD Policy, Strategy, and Requirements for Biometric Standards UNCLASSIFIED
  • 4. BTF Standards Initiatives/Activities
    • To achieve interoperability and information sharing, BTF addresses five standards-related activities on behalf of DoD:
      • Participation in Standards Bodies and Standards Development – Participant in 3 Standards Bodies; Sponsor and Editor of 6 standards; Developer of DoD EBTS
      • Standards Adoption & Implementation – 29 standards adopted for use in DoD since 2004 and 17 standards currently under review for adoption
      • Joint, Interagency & Multinational (JIM) Collaboration and Coordination – Coordinate across U.S. government and NATO, as needed
      • Interoperability Tools Development – Developer of Conformance Testing and Quality Measurement Tools (BioAPI, Face, Finger)
      • USG-wide and DoD Conformity Assessment Programs – DoD developing and coordinating a standardized, program for testing with partners
    Standards Body Participation and Standards Development Test Methodologies and Tools Standards Adoption & Implementation JIM Collaboration & Coordination Conformity Assessment Program UNCLASSIFIED
  • 5. BTF Led Biometric Standards Activities UNCLASSIFIED Voting members, Editors, Technical Contributors DoD Biometric Standards Working Group NSTC SC on Biometrics and IdM INCITS M1 & M1 TGs ISO/IEC JTC1 SC37 & SC37 WGs OASIS Chair and Coordinate Champion (Lead) and Coordinate Members of U.S. Expert Delegation, Editors, Technical Contributors Provide Technical Expertise DISR Security Information Assurance and Cryptography Technical Working Group NSTC SC Biometrics and IdM SCA WG DHS BCG
  • 6.
    • BTF is a voting member of the National Biometric Standards Body (INCITS M1) and a member of the U.S. Experts delegation to the International (JTC 1/SC 37) Biometric Standards Body:
      • BTF maintains voting rights and advocates DoD interests with regard to international standards at the national level.
      • Coordinates DoD positions within M1 on national and international standards.
      • DoD influences the content and timeline of biometric standards under development.
      • Tracks biometric standards development activities and reports progress and outcomes to the DoD community through the DoD Biometric Standards Working Group (BSWG).
      • Provides editorship, technical contributions, leadership for Ad-Hoc and Special Groups, and serves as the SC 37 Liaison to SC 27 (International Security Techniques Standards Body).
    • Also a member of Organi zation for the Advancement of Structured Information Standards (OASIS) – a standards body on Web services and service-oriented architectures (SOA)
    DoD Participation in Standards Development UNCLASSIFIED
  • 7.
    • DoD EBTS v2.0
      • Emerging multimodal transmission specification for all DoD biometric systems
      • DoD EBTS v2.0 published on 27 March 2009 and is now available!
      • BTF develops and maintains specifications and will perform conformance testing to this standard – current conformance testing conducted for v1.2
      • DoD’s implementation of ANSI/NIST-ITL 1-2007 standard
      • Provides increased flexibility to multiple mission sets through application profiles
      • Leverages the Integrated Data Dictionary, which standardizes a broad range of data elements available for implementation in DoD biometric systems
      • V2.0 is currently under review to be included in DISR as ‘Emerging’ – v1.2 is currently ‘Mandated’ by DISR.
    • Obtaining a Copy of DoD EBTS v2.0
      • Contact Mr. Dale Hapeman at: [email_address] or 304-326-3029.
      • DoD EBTS v2.0 is freely available to the general public. No restrictions apply.
    • Next Steps
      • Initiate development of DoD EBTS XML Version (Based on ANSI/NIST-ITL 2-2008 (XML))
      • Consider best approach for BTF to use the National Information Exchange Model (NIEM)
    DoD Electronic Biometric Transmission Specification (EBTS) Version 2.0 UNCLASSIFIED
  • 8.
    • High Priorities
    • Biometric Data Interchange Formats for Modalities
      • Fingerprint/Palm (Image and template)
      • Face (2-D and 3-D)
      • Iris (Image and compact)
      • Voice
      • DNA
      • Vascular
    • Biometric Transmission Specifications
      • DoD EBTS XML
    • National and International Testing Methodologies
      • Conformance Testing for Data Interchange Formats
      • Conformance Testing for Technical Interfaces
      • Quality Measurement
      • Performance Testing
    • Emerging Priorities
      • Role of Biometrics in Identity Management
      • Security Techniques
      • Identification Cards
    High Priority Biometrics Standards UNCLASSIFIED
  • 9. DoD Standards Coordination: Biometric Standards Working Group
    • BTF chairs and coordinates the DoD Biometric Standards Working Group (BSWG), which is the primary forum that leads, consolidates, and coordinates biometric standards development and adoption activities within DoD and across USG.
      • Contribute DoD technical input to standards development bodies
      • Coordinate DoD voting positions with federal partners for standards bodies
    • On behalf of DoD, the BSWG empowers stakeholders with standards updates
      • Documents available on BTF maintained in the DoD Biometric Expert Knowledgebase System (DBEKS) Web site accessible at: http://www.biometrics.dod.mil
      • Meeting minutes, activities documents, and standards development status updates
    • Membership: Service branches, CENTCOM, SOCOM, NORTHCOM, MEPCOM, BTF, DMDC, DISA, DISR, NSA, ASD(NII)
    • Interagency Partners/Liaisons: OSTP, IC, DHS, FBI, NIST, DOT, FAA
    • DoD BSWG interested in expanding roster to include members of international organizations, foreign partners, and other federal agencies!
    UNCLASSIFIED
  • 10. NSTC Subcommittee on Biometrics and Identity Management
    • BTF participates in the National Science and Technology Council (NSTC) Subcommittee on Biometrics and Identity Management
      • For more information on this organization and their work, go to: http://www.biometrics.gov & http://www.ostp.gov/cs/nstc
    • BTF leads DoD participation in the NSTC Standards and Conformity Assessment Working Group (SCA WG)
      • For more information on this working group and its work, go to: http://www.biometrics.gov/Standards/Default.aspx
    • BTF is a primary contributor to 5 policies regarding USG standards under development in the NSTC SCA WG:
      • “ Registry of USG Recommended Biometric Standards” – version 2.0 expected 2009
      • “ Registry of Active Biometric Testing Programs” – expected 2009
      • “ USG Agency Action Plan and Timeline for the Development, Adoption and Use of Biometric Standards” – expected 2009
      • “ Supplemental Information on the USG Agency Action Plan for the Development, Adoption and Use of Biometric Standards” – expected 2009
      • “ USG Policy for Use, Development and Adoption of Biometric Standards” –published 2007
    UNCLASSIFIED
  • 11. DoD Standards Adoption Strategy for Biometrically Enabled Capabilities * This list of DoD biometrically enabled systems is not comprehensive. Taken from the DoD Integrated Data Dictionary (Nov 2008). As of April 2009 – 29 Biometric Standards Adopted in DoD UNCLASSIFIED Current Categories of Biometric Standards Adopted in 2009 Legacy Biometrically Enabled Systems* in 2009 Future Biometrics and Identity Management Standards (2010 – Beyond) Future Biometrically Enabled Capabilities (2010 – Beyond)
    • Transmission Specifications (DoD EBTS)
    • Multimodal (ANSI/NIST ITL)
    • Data interchange Formats (Face, Finger, and Iris)
    • Application Profiles
    • Technical Interfaces (BioAPI, CBEFF)
    • Testing (Performance, Conformance, and Quality)
    • Biometrics Automated Toolset (BAT)
    • Detainee Reporting System (DRS)
    • Biometrics Intelligence Resource (BIR)
    • Biometrics Identification System for Access (BISA)
    • Defense Biometrics Identification System (DBIDS)
    • DoD Automated Biometric Identification System (ABIS)
    • Next Generation Automated Biometric Identification System (NG-ABIS)
    • Expanded Maritime Interception Operations (EMIO) System
    • Special Operation Command (SOCOM)
    • DoD EBTS Application Profiles for Specific DoD Systems
    • Maintenance of existing categories of national and international biometric standards in DISR
    • Web Services and Service Oriented Architecture (SOA) Standards
    • Extensible Markup Language (XML) Representations of Existing Standards
    • Integration of Security into Standards
    • Identity Management (IdM) Standards
    Programs of Record via two Capability Development Documents (CDD): 1. Biometrically Enabled Capability (BEC) – authoritative source(s) 2. Joint Personnel Identification (JPI) – tactical collection device(s)
  • 12. DoD Adoption and Implementation Process
    • BTF Standards Branch works closely with the Defense Information Systems Agency (DISA), the Executive Agent for standards within DoD
    • BTF submits published, high-priority standards to DISA for inclusion in the DoD Information Technology Registry (DISR): https://disronline.disa.mil (requires a CAC)
      • All change requests originate in the DoD BSWG and are submitted to the Security, Information Assurance and Cryptography, with Biometrics, Technical Working Group (SIAC TWG) for formal vetting by DISA.
    • For a current list of biometric standards adopted within DoD, go to the BTF website: http://www.biometrics.dod.mil
      • Access to BSWG materials requires a DBEKS user account
      • To qualify for access to DBEKS, you must be a U.S. government or military employee or be capable of providing a valid U.S. government or military sponsor.
      • BTF Standards Development Status Update – published quarterly and posted to BSWG Web site.
    UNCLASSIFIED
  • 13. Interoperability Tools Development
    • To ensure interoperability, BTF is developing unique biometric conformance testing and image quality measurement algorithms and tools.
      • Developed and publicly released the BioAPI CTS (first USG conformance testing tool) – Feb 2006
      • Finger Image Quality Measurement (FIQM) – NIST testing complete
      • Facial Image Quality Measurement (FaceQM) – NIST Phase I testing complete, planning for Phase II testing underway
      • Iris Image Quality Measurement – BTF coordinating with West Virginia University to establish a joint development project
    • Development of Quality Measurement algorithms and tools is driven by DoD operational needs.
      • Quality of biometric samples can be used to predict the accuracy of matching
      • The tools are vendor-agnostic and suitable for use with any matching system
      • The tools can be integrated with biometric enrollment applications
      • Tools have been distributed to NSA, CIA, Navy, Air Force, IDProTECT Protoype Team, Army G-2, and others
    • BTF Quality Measurement Tools are available to all government agencies.
      • To obtain the quality tools, contact Dr. Robert Yen at: [email_address] or 703-984-0434
      • To obtain the tools, you must be a U.S. government or military employee or be capable of providing a valid U.S. government or military sponsor
    UNCLASSIFIED
  • 14.
    • Expand collaboration and coordination with Joint, Interagency, and Multinational partners.
    • Continue participation in standards development bodies and expand participation in development of Identity Management standards.
    • Expand adoption and implementation of international biometric and identity management standards.
    • Participate in establishing the USG-wide biometrics conformity assessment program.
    DoD Biometrics Standards Strategy Moving Forward UNCLASSIFIED
  • 15. Mr. Dale Hapeman BTF/Booz Allen Hamilton 304-326-3029 [email_address] MAJ Craig White Branch Chief Standards Branch [email_address] Dr. Bob Yen BTF/Booz Allen Hamilton 703-984-0434 [email_address] Mr. Alexander Montgomery BTF/Booz Allen Hamilton 703-607-1959 [email_address] Mr. Gregory Zektser BTF/Booz Allen Hamilton 703-984-0432 [email_address] Mr. Benji Hutchinson BTF/Booz Allen Hamilton 703-607-1951 [email_address] Mr. William Zimmerman Division Chief Capabilities Integration Division [email_address] Mr. Don Waymire BTF/Booz Allen Hamilton 703-984-0429 [email_address] BTF Standards Branch Contact Information UNCLASSIFIED