Privacy Leader Issues Opinion on Biometrics in Passports
April 1, 2008 // Published as a news service by IHS
| |
| Electronics & TelecomDocs |
IHS sells a full selection of standardsdocuments & collections from the industry's top organizations.
Tolearn more, and for a free quote, please complete the formbelow. |
|
Europe-wide regulations on biometrics in passports and travel documents that the European Commission (EC) recently proposed revising are still unsatisfactory, according to an opinion issued on March 26 by the European Data Protection Supervisor (EDPS).
The EC has proposed new rules requiring passports to contain certain security features involving biometric identifiers in the form of fingerprints.
After reviewing the proposed rules, which did identify some exemptions - principally for children and the elderly - Peter Hustinx of the EDPS said that the concessions do not go far enough to protect the rights of citizens.
"The fact that the commission took into account the need for fallback procedures, stated in previous opinions, is more than welcomed," Hustinx said. "These exemptions are, however, still unsatisfactory. They fail to address all the possible and relevant issues triggered by the inherent imperfections of biometric systems, and more specifically those related to children and elderly."
With a view to ensuring stringent safeguards to the proposed system, the EDPS opinion included the following recommendations:
- Fingerprints from children - The proposed six-year age limit should be considered as a provisional one, or brought in line with international practice (14 years of age). After three years, the age limit should be reviewed and defined by an in-depth study that is to identify the accuracy of the systems obtained under real conditions.
- Fingerprints from the elderly - An age limit for elderly people, based on similar experiences already in place (at 79 years of age), should be introduced as an additional exemption. (This is because the reliability and accuracy of fingerprints decreases as people get older.)
- Principle of "one person - one passport" - This principle should be applied only to children above the relevant age limit.
- "Breeder" documents - Additional measures should be proposed to harmonise the production and the use of documents required in member states to issue passports.
- Better harmonisation for the implementation of regulation 2252/2004 - Only decentralised storage of biometric data collected for member states' passports and common error rates for the enrolment and matching process should be implemented.
For more information, see the EDPS web site and read the EDPS opinion on biometrics in passports.
Source: European Commission.
| Selected Biometrics Standards |
ANSI INCITS 383
Information Technology - Biometric Profile Interoperability and Data Interchange Biometrics-Based Verification and Identification of Transportation Workers |
ANSI INCITS 394
Information Technology - Application Profile for Interoperability, Data Interchange and Data Integrity of Biometric-Based Personal Identification for Border Management |
ANSI INCITS 395
Information Technology - Biometric Data Interchange Formats - Signature/Sign Data |
ANSI INCITS 398
Information Technology - Common Biometric Exchange Formats Framework (CBEFF) |
ANSI INCITS 409.1
Biometric Performance Testing and Reporting Part 1: Principles and Framework |
ANSI INCITS 409.2
Biometric Performance Testing and Reporting Part 2: Technology Testing and Reporting |
ANSI INCITS 409.3
Biometric Performance Testing and Reporting Part 3: Scenario Testing and Reporting |
ANSI INCITS 409.4
Information Technology – Biometric Performance Testing and Reporting – Part 4: Operational Testing Methodologies |
ANSI X9.84
Biometric Information Management and Security for the Financial Services Industry |
BSI BS ISO/IEC 19784-1
Information Technology - Biometric application programming interface Part 1: BioAPI specification |
BSI BS ISO/IEC 19785-1
Information Technology - Common Biometric Exchange Formats Framework Part 1: Data element specification |
BSI BS ISO/IEC 19785-2
Information Technology - Common Biometric Exchange Formats Framework Part 2: Procedures for the operation of the Biometric Registration Authority |
BSI BS ISO/IEC 19794-1
Information Technology - Biometric data interchange formats Part 1: Framework |
BSI BS ISO/IEC 19794-3
Information Technology - Biometric data interchange formats Part 3: Finger pattern spectral data |
BSI BS ISO/IEC 19794-4
Information Technology - Biometric data interchange formats Part 4: Finger image data |
BSI BS ISO/IEC 19794-5
Information Technology - Biometric data interchange formats Part 5: Face image data |
BSI BS ISO/IEC 19794-6
Information Technology - Biometric data interchange formats Part 6: Iris image data |
CSA ISO/IEC 7816-11-05
Identification cards Integrated circuit cards Part 11: Personal verification through biometric methods-ISO/IEC 7816-11: 2004 |