Re: Certificate profile for Biometrics information.

["Phillip H. Griffin" <phil.griffin@xxxxxxxxx>]

See http://www.oasis-open.org/committees/xcbf/#documents,

• XML Common Biometric Format (XCBF) Working Draft October 24, 2002
  
  
• XCBF ASN.1 Schema for XML Markup October 24, 2002
  

Certificate extensions have been defined here for both X.509 Certificate and
AttributeCertificate
types, and for X.9.68 Digital Certificates for Mobile/
Remote and High Volume Transaction Systems for Financial Services. These
can
be encoded in either ASN.1 Distinguished Encoding Rules (DER) or using the
new
XML Encoding Rules (XER).

I'm cutting the same definitions into the current revision of X9.84 Biometric
Information
Management and Security this week. We hope to have this revision completed
and into
X9 ballot by the end of the year. After this, the US will likely propose
this revision into
ISO TC 68/SC2 Security and General Banking Operations as a new work item.

Working code from my company and from others already supports this certificate
extension payload. See http://asn-1.com/biolojava.htm for more information.

Phil Griffin


Ebbe Hansen wrote:
> I am looking for biometrics profile-definitions on how biometrics reference
> information may be encoded and embedded into X.509 certificates (Public Key
> Certificates as well as Attribute Certificates). The only
> "biometrics-data-extension" I have found so far is included in RFC 3039 as
> the "biometricInfo" extension.
>
> Are there other biometrics profiles that have been defined at this time?
>
> Regards Ebbe Hansen