The document outlines the FIDO Alliance's Biometric Certification Program. It aims to certify biometric components and subsystems to ensure interoperability, promote adoption of FIDO standards, and provide performance benchmarks. The certification process involves two steps - first testing the biometric subcomponent, then full authenticator testing. It defines biometric performance metrics like false accept and reject rates, and requires components to meet specified thresholds or allow self-attestation with test data. The certification is independent of the Authenticator Certification Program and helps identify solutions as officially FIDO certified.

1. All Rights Reserved | FIDO Alliance | Copyright 2018
FIDO Biometric
Certification Program

2. All Rights Reserved | FIDO Alliance | Copyright 20182
CERTIFICATION GOALS
• Enable implementations to be identified as officially
FIDO certified
• Ensure interoperability between FIDO officially
recognized implementations
• Promote the adoption of the FIDO ecosystem
• Provide RPs with the ability to assess performance
requirements for user authenticators
• Provide the industry at large with a testing baseline
for biometric component performance

3. FIDO Alliance | All Rights Reserved | Copyright 20183
FIDO CERTIFICATION PURPOSE
The FIDO Biometric Certification
Program is intended to certify biometric
components and/or subsystems and is
independent from Authenticator
Certification Program

4. All Rights Reserved | FIDO Alliance | Copyright 20184
TESTING STEP 1: BIOMETRIC SUBCOMPONENT

5. FIDO Alliance | All Rights Reserved | Copyright 20185
ALLOWED INTEGRATION DOCUMENT
• Developed by vendor and submitted to lab
• Used to document changes necessary to accommodate integration with
authenticator
• Must include explanation of software changes which accommodate
hardware changes

6. All Rights Reserved | FIDO Alliance | Copyright 20186
TESTING STEP 2: AUTHENTICATOR

7. All Rights Reserved | FIDO Alliance | Copyright 20187
AUTHENTICATOR CERTIFICATION
Using a Certified Biometric Subcomponent:
• Optional for Authenticators using a Biometric at L1-L2.
• The Security Requirements enforce Biometric Certification of the
biometric at L3 and higher when a biometric is used in the
authenticator.
• Once L2+ is finalized Biometric Certification will also be required
• Results in a “FIDO Certified” Authenticator

8. FIDO Alliance | All Rights Reserved | Copyright 20188
BIOMETRIC DEFINITIONS
• False Accept Rate (FAR): The proportion of verification transactions with
wrongful claims of identity that are incorrectly confirmed
• False Reject Rate (FRR): The proportion of verification transactions with
truthful claims of identity that are incorrectly denied
• Impostor Attack Presentation Match Rate (IAPMR): Proportion of
presentation attacks in which the target reference is matched

9. FIDO Alliance | All Rights Reserved | Copyright 20189
BIOMETRIC PERFORMANCE LEVELS
• Biometric Requirements:
• False Accept Rate (FAR): SHALL meet the requirement of less than 1:10,000 for the
upper bound of a 80% confidence interval. FAR is measured at the transaction
level.
• False Reject Rate (FRR): SHALL meet the requirement of less than 3:100 for the
upper bound of a 80% confidence interval. FRR is measured at the transaction
level.
• Presentation Attack Detection: SHALL be performed by the FIDO-accredited
independent testing laboratory on the TOE provided by vendor. The evaluation
measures the Impostor Attack Presentation Match Rate for each presentation
attack type, as defined in ISO 30107 Part 3.
NOTE: FIDO-accredited independent testing laboratory performs live subject scenario testing on the TOE provided by vendor
using a combination of on-line/off-line testing, as well as presentation attack testing, based on ISO 19795-1 and ISO 30107-3.

10. FIDO Alliance | All Rights Reserved | Copyright 201810
SELF-ATTESTATION - OPTIONAL
• Biometric Requirements:
• False Accept Rate (FAR): The vendor SHALL attest to an FAR of [1:25,000 or
1:50,000 or 1:75,000 or 1:100,000] at an FRR of 3% or less.
• False Reject Rate (FRR): The vendor SHALL attest to an FRR at no greater than 3%
as measured when determining the self-attested FAR. In other words, self
attestation for FRR is only possible when self attesting for FAR.
NOTE: Self-attestation for FAR and FRR shall be supported by test data and
documented in a report submitted to lab from vendor.

11. All Rights Reserved | FIDO Alliance | Copyright 201811
GETTING STARTED – BIOMETRIC CERTIFICATION
Apply for Biometric component certification
• Request an account: https://fidoalliance.org/certification/certification-
account-request/
Select an Accredited Biometric Lab and agree to terms for testing
• Biometric Accredited Lab list:
https://fidoalliance.org/fido-accredited-biometric-laboratories/

12. Biometric
Testing
Laboratory
Report
Certification
Request
Certification
Issuance
(recommended)
Authenticator
Certification
FIDO Alliance | All Rights Reserved | Copyright 201812
CERTIFICATION PROCESS OVERVIEW

13. All Rights Reserved | FIDO Alliance | Copyright 201813
Connect with FIDO
fidoalliance.org