LANGUAGE
  • 日本語
  • 한국어
  • 简体中文
  • English
  • 仕様概要
  • Knowledge Base
  • FIDOアライアンスへの入会方法
FIDO Alliance
  • The Alliance
    About FIDO Alliance
    • FIDOアライアンスの概要
    • FIDOアライアンスの沿革
    • FIDO Leadership
    • 法務およびロゴの使用に関して
    • 行動規範
    • お問い合わせ先
    Our Membership
    • FIDO Members
    • Members
    • Liaison Partners
    • Liaison Partners
    • ワーキンググループ(作業部会)
    • Committees and Study Groups
    Join FIDO Alliance
    • メンバー特典と会費のレベル
    • FIDOアライアンスへの入会方法
    Newsletter Sign-Up
    FIDO Explained
  • Standards & Technology
    Work Areas
    • FIDO Authentication
    • FIDO認証
    • Identity Verification & Binding
    • Internet of Things
    FIDO Authentication
    • FIDOの仕組み
    • FIDO2
    • Metadata Service
    Specifications
    • 仕様概要
    • Specifications Overview
    • Download Specifications
    Developers
    • 開発者向けリソース
    • Getting Started
    • Developer Resources
  • Discover FIDO
    Getting Started Knowledge Base
    • Intro to FIDO
    • Building the Business Case
    Adoption
    • FIDO Case Studies
    • 業界別ソリューション
    • Market Solutions
    • FIDOアライアンスの政府および政策向けプログラム
    • Government & Public Policy
    • PSD2 Compliance
    • Commercial Deployments
    Resources
    Showcase
    Research
    Videos
    White Papers
    Presentations
    FAQ
  • FIDO® Certified
    FIDO Certification Programs
    • FIDO Certified Professional Program
    • Introduction
    • Functional Certification
    • Authenticator Certification
    • Biometric Component Certification
    • Introduction
    • Certification Maintenance and Updates
    Get Certified
    • 認定の概要
    • Certification Fees
    • 事務局
    • FIDO 商標ライセンス契約書: 付属文書 A
    Certified Products
    • FIDO® Certified Products
    • FIDO Certified Showcase
  • News & Events
    Latest Updates
    • Events Calendar
    • FIDO in the News
    • Press Center
    • FIDO Blog
  • 仕様概要
  • Knowledge Base
  • FIDOアライアンスへの入会方法
Language
  • 日本語
  • 한국어
  • 简体中文
  • English
search
  • Biometric Component Certification - Japanese
    • Menu Item
    1. Home 
    2. Certification Overview 
    3. Biometric Component Certification

    Biometric Component Certification

    Biometric user verification has become a popular way to replace passwords and PINs, but the lack of an industry-defined program to validate performance claims has led to concerns over variances in the accuracy and reliability of these solutions. To fill this gap, the FIDO Alliance launched the Biometric Component Certification Program – the first such program for the industry at large. The program utilizes accredited independent labs to certify that biometric subcomponents meet globally recognized performance standards for biometric recognition performance and Presentation Attack Detection (PAD) and are fit for commercial use.  

    The FIDO Alliance aims to deliver several benefits to providers and users of biometric recognition systems through the new Biometric Component Certification Program. Until now, due diligence was performed primarily by large enterprise customers who had the capacity to conduct such reviews. This required biometric vendors to repeatedly prove performance for each customer. The FIDO Alliance program allows vendors to test and certify only once to validate their system’s performance and re-use that third-party validation across their potential and existing customer base, resulting in substantial time and cost savings.

    “The lack of standards has long been an issue in biometrics, forcing security professionals to ‘get deep in the weeds’ to not only understand the attributes that are important but subsequently evaluate vendors on those attributes. An unbiased Alliance-based certification program expedites solution evaluation for companies but also eases adoption by providing assurances to the C-suite of proper choice.”

    Frank Dickson, Research Vice President, IDC

    For customers, such as regulated online service providers, OEMs and enterprises, the new certification program provides a standardized way to trust that the biometric systems they are relying upon for fingerprint, iris, face and/or voice recognition can reliably identify users and detect presentation attacks.

    FIDO Biometric Certification Program from FIDO Alliance

    The Biometric Certification Component Program introduces biometric requirements to the FIDO Certification Program. The goal of the Biometric Certification Component Program is to provide a framework for the certification of biometric subsystems that can in turn be integrated into FIDO Certified authenticators.

    This page contains the Policy and Requirements Documents and detailed information about the biometric component certification process.


    Biometric Component Certification Process

    FIDO Alliance’s Biometric Component Certification Program is independent of its other certification programs. There are no FIDO certification prerequisites to apply for biometric component certification for a subsystem. Once a biometric subsystem has been certified, there are rules for how it can be integrated into an authenticator seeking FIDO Authenticator Certification. These rules are described in the Allowed Integration Document and are defined by the biometric vendor during the biometric component certification process.

    The use of a certified biometric component is optional for level 1 and level 2 FIDO authenticator. At level 3 and higher an authenticator shall use a certified biometric component if a biometric modality is used for authentication.

    The following figure and paragraphs explain the overall process certification of a biometric component.

    Application

    In order to apply for an application for a biometric component, the developer first needs to apply for an account via the account request form. After this account has been created, the developer can login to the Biometric Dashboard and issue a request for certification. 

    FIDO Alliance’s biometric component certification secretariat reviews the application, notifies the Vendor if it is approved, rejected, or requires clarification.

    Biometric Testing

    In this step of the overall process the vendor submits the biometric component to a FIDO accredited biometric laboratory along with its required documentation. A time estimate is provided by the accredited laboratory; vendor and laboratory agree on the cost involved for testing.

    The FIDO Accredited biometric laboratory is responsible for testing against the requirements through a combination of online and offline live subject testing. The first step in the certification process is demonstrated below.

    An allowed integration document is used to document the changes that may be necessary to accommodate integration of the biometric component into an authenticator. The allowed integration document must be drafted by the vendor and provided to the accredited biometric laboratory.

    A list of FIDO Accredited Biometric Laboratories is available on the FIDO website.

    Laboratory Reports

    The accredited laboratory performs testing and returns a laboratory report to the vendor and to FIDO’s biometric certification secretariat. The report also includes the review of the allowed integration document. The laboratory must validate that the changes will not impact fulfilling the requirements.

    FIDO Alliance’s biometric component certification secretariat reviews the laboratory report and makes a decision to approve, reject, or ask for clarification.

    Certification Request

    After the laboratory report has been approved, the vendor completes a certification request. The certification request also includes metadata to be added to the metadata service to describe the certified biometric subsystem (see FIDO Metadata Service).

    FIDO Alliance provides information to relying parties regarding FIDO authenticators through the FIDO Metadata Service. This information can be used by relying parties for purposes such as determining whether it accepts the authenticator or enables certain privileges (e.g., checking an account balance vs. transferring funds).

    The biometric-related information that the FIDO Metadata Service provides includes the following:

    • Biometric Certification Level
    • Self-Attested False Accept Rate (FAR)
    • Self-Attested False Reject Rate (FRR)

    Submitting metadata to the FIDO Metadata Service is optional. However, metadata must be submitted during the biometric component certification process and will be verified for accuracy and completeness during the laboratory evaluation.

    Certification Issuance

    FIDO Alliance reviews and, if complete, approves the certification request and issues a biometric compontent certificate.

    Metadata Submission to MDS (Optional)

    The vendor has the option to submit Metadata to the FIDO Metadata Service (MDS).

    Biometric Certification Fees

    • FIDO Member: $12,000 USD
    • Non-Member: $15,600 USD

    Policy and Requirements Documents

    The documents for Authenticator Certification include:

    Biometric Component Certification Policy

     

    This policy governs the biometric certification aspects of the FIDO Certification Program. It defines the overall process of the biometric certification and also answers questions around recertification.

    Biometric Component Certification Policy v1.4 (ACTIVE): HTML | PDF
    Biometric Component Certification Policy v1.3 (Sunset): HTML | PDF
    Biometric Component Certification Policy v1.2 (Sunset): HTML | PDF

    FIDO Authenticator Vendor NDA

     

    Non-disclosure Agreement to be signed by Authenticator Vendors (Implementers) completing Biometric Certification.

    Download: PDF

    FIDO Biometric Certification Requirements

     

    This document defines the requirements and test procedures for biometric component certification. It contains the requirements for the performance of the biometric authenticator as well as requirements on Presentation Attack Detection.

    FIDO Biometric Certification Requirements v3.0 (ACTIVE) HTML | PDF

    FIDO Biometric Certification Requirements v2.2 (Sunset) HTML | PDF

    FIDO Biometric Certification Requirements v1.1(Sunset) HTML | PDF

    FIDO Authenticator Metadata Requirements

     

    This document defines the authenticator metadata requirements referenced in the biometric component certification requirements.

    Download: HTML | PDF

    FIDO Allowed Integration Document template

     

    This document contains a template for an Allowed Integration Document for a biometric component.

    Download: PDF

    Biometric Implementer Dashboard

    Implementers can Login to view their Dashboard.

    FIDO Alliance
    • FIDOとは
    • FIDOの仕組み
    • How FIDO Works
    • FIDOアライアンスの概要
    • FIDO2 Project
    • Terms of Use
    • SPECIFICATIONS OVERVIEW
    • 仕様概要
    • CERTIFICATION OVERVIEW
    • 認定の概要
    • KNOWLEDGE BASE
    • Knowledge Base
    • PRESS CENTER
    • PRIVACY POLICY

    Join the Community

    Get the Latest Updates Participate in FIDO-Dev Forum

    Categories

    • Announcements
    • Building the Business Case
    • Buying, Building & Partnering
    • FIDO in the News
    • FIDOリソース
    • Implementation & Deployment
    • Intro to FIDO
    • Market Research
    • Perspectives
    • Uncategorized
    Certification Overview
    • Functional Certification
      • Implementer Dashboard
      • Biometric Dashboard
      • 保護中: FIDO Certified v2
      • Conformance Self‐Validation Testing
      • FIDO Certification Registration & Fees
      • 保護中: Vendor ID Page
        • Vendor ID
        • Vendor ID
      • Reference Implementation Library
      • Lab Dashboard
      • On Demand Registration Calendar
      • In-Person Testing Request
      • Certification Account Request
      • Reference Implementation Donation Form
      • Password Recovery
      • Lab Accreditation Request
      • Vendor IDs
        • Vendor ID Request
    • Certification Maintenance and Updates
      • Derivative Certification
    • Secretariat
      • FIDO Certification Request Agreement
        • FIDO Certification Request
    • FIDO® Certified
    • Certified Authenticator Levels
      • Authenticator Certification Scenarios
      • Authenticator Level 3
      • Authenticator Level 3+
      • FIDO Accredited Security Laboratories
      • Authenticator Level 1+
      • Authenticator Level 1
      • Authenticator Level 2
      • Companion Programs
    • Getting Started
    • Certification Mark Usage
    • Interoperability Testing
      • Interop Registration
    • Biometric Component Certification
      • FIDO Accredited Biometric Laboratories
    • Certification Fees

    Document Authenticity (DocAuth) Certification Program for Remote Identity Verification

    • Introduction
    • Certification Process Overview
    • Certification Fees
    • Accredited Labs
    • Get Certified
    • Resource Documentation
    Sign up for updates!Get news from FIDO Alliance in your inbox.

    By submitting this form, you are consenting to receive communications from: FIDO Alliance, 3855 SW 153rd Drive, Beaverton, OR 97003, US, http://www.fidoalliance.org. You can revoke your consent to receive emails at any time by using the unsubscribe link found at the bottom of every email.

    First Name
    Last Name
    Email
    Country
    Company
    Job Title
    • 日本語
    • 한국어
    • 简体中文
    • English