新版完整标准 BS ISO-IEC 24745-2022 信息安全、网络安全和隐私保护-生物特征信息保护

新版完整标准 BS ISO-IEC 24745-2022 Information security, cybersecurity and privacy protection. Biometric information protection 信息安全、网络安全和隐私保护-生物特征信息保护

信息安全、网络安全和隐私保护-生物特征信息保护

新版完整标准BSISO-IEC24745-2022Informationsecurity,cybersecurity-行业报告文档类资源-CSDN下载新版完整标准BSISO-IEC24745-2022Informationsecurity,更多下载资源、学习资料请访问CSDN下载频道.https://download.csdn.net/download/std7879/851419331范围
本文件涵盖了生物特征信息在存储和传输期间的保密性、完整性和可更新性/可撤销性的各种要求下的保护。它还为生物特征信息的安全和隐私兼容管理和处理提供了要求和建议。
本文件规定了以下内容：
-分析生物识别和生物识别系统应用模型固有的威胁和对策；
-生物特征参考（BR）和身份参考（IR）之间安全绑定的安全要求；
-生物识别系统应用模型，具有不同的BRs存储和比较场景；
-生物特征信息处理过程中个人隐私保护指南。
本文件不包括与物理安全、环境安全和加密技术密钥管理相关的一般管理问题。

1 Scope
This document covers the protection of biometric information under various requirements for confidentiality, integrity and renewability/revocability during storage and transfer. It also provides requirements and recommendations for the secure and privacy-compliant management and processing of biometric information.
This document specifies the following:
— analysis of the threats to and countermeasures inherent to biometrics and biometric system application models;
— security requirements for securely binding between a biometric reference (BR) and an identity reference (IR);
— biometric system application models with different scenarios for the storage and comparison of BRs; 
— guidance on the protection of an individual's privacy during the processing of biometric information.
This document does not include general management issues related to physical security, environmental security and key management for cryptographic techniques.