More info
Full Description
X9 X9.84-2018 describes the security framework for using biometrics for authentication of individuals in financial services. It introduces the types of biometric technologies and addresses issues concerning their application. This standard also describes the architectures for implementation, specifies the minimum security requirements for effective management, and provides control objectives and recommendations suitable for use by a professional practitioner. Within the scope of this standard the following topics are addressed: Security for the collection, distribution, and processing, of biometric data, encompassing data integrity, data confidentiality, origin authenticity, and non-repudiation. Management of biometric data across its life cycle comprised of the enrollment, transmission and storage, verification, identification, and termination processes. Usage of biometric technology, including one-to-one and one-to-many matching, for the identification and authentication of banking customers and employees. Application of biometric technology for internal and external, as well as logical and physical access control. Encapsulation and cryptographic protection of biometric information for security, interoperability, and data confidentiality. Encryption, signcryption, tokenization methods, and biometric policy for privacy Secure transmission and storage of biometric information during its life cycle. Security of the physical hardware used throughout the biometric data life cycle. Cryptographic techniques for data integrity, origin authenticity, and data confidentiality of biometric information. Validation of credentials presented at enrollment to support authentication as required by risk management; Surveillance to protect the financial institution and its customers.Product Details
Published: 04/20/2018 ANSI: ANSI Approved Number of Pages: 148File Size: 1 file , 2.9 MB