New IEEE Standard – Superseded. Identity assertion, role gathereing, multilevel access control, assurance, and auditing are provided by the Biometric Open Protocol Standard (BOPS). The BOPS implementation includes software running on a client device (smartphone or mobile device), a trusted BOPS server, and an intrusion detection system. The BOPS implementation allows pluggable components to replace existing components\u2019 functionality, accepting integration into current operating environments in a short period of time. The BOPS implementation provides continuous protection to the resources and assurance of the placement and viability of adjudication and other key features. Accountability is the mechanism that proves a service-level guarantee of security. The BOPS implementation allows the systems to meet security needs by using the application programming interface. The BOPS implementation need not know whether the underlying system is a relational database management system or a search engine. The BOPS implementation functionality offers a \u201cpoint-and-cut\u201d mechanism to add the appropriate security to the production systems as well as to the systems in development. The architecture is language neutral, allowing Representational State Transfer (REST), JavaScript Object Notation (JSON), and Secure Sockets Layer (SSL) or Transport Layer Security to provide the communication interface. The architecture is built on the servlet specification, open SSLs, Java, JSON, REST, and an open persistent store. All tools adhere to open standards, allowing maximum interoperability.<\/p>\n
| PDF Pages<\/th>\n | PDF Title<\/th>\n<\/tr>\n | ||||||
|---|---|---|---|---|---|---|---|
| 1<\/td>\n | IEEE Std 2410\u2122-2015 Front cover <\/td>\n<\/tr>\n | ||||||
| 2<\/td>\n | Title page <\/td>\n<\/tr>\n | ||||||
| 4<\/td>\n | Important notices and disclaimers concerning IEEE standards documents <\/td>\n<\/tr>\n | ||||||
| 7<\/td>\n | Participants <\/td>\n<\/tr>\n | ||||||
| 8<\/td>\n | Introduction <\/td>\n<\/tr>\n | ||||||
| 9<\/td>\n | Contents <\/td>\n<\/tr>\n | ||||||
| 10<\/td>\n | Important notice 1. Overview 1.1 Scope 1.2 Purpose <\/td>\n<\/tr>\n | ||||||
| 11<\/td>\n | 1.3 Intended audience 2. Normative references 3. Definitions, acronyms, and abbreviations 3.1 Definitions 3.2 Acronyms and abbreviations <\/td>\n<\/tr>\n | ||||||
| 12<\/td>\n | 4. Conformance <\/td>\n<\/tr>\n | ||||||
| 13<\/td>\n | 5. Security considerations 5.1 Background 5.2 Identity assertion 5.3 Role gathering 5.4 Access control <\/td>\n<\/tr>\n | ||||||
| 14<\/td>\n | 5.5 Auditing and assurance <\/td>\n<\/tr>\n | ||||||
| 15<\/td>\n | 6. BOPS interoperability 7. BOPS overview, application, registration, and prevention of replay 7.1 Overview <\/td>\n<\/tr>\n | ||||||
| 18<\/td>\n | 7.2 Application <\/td>\n<\/tr>\n | ||||||
| 19<\/td>\n | 7.3 Registration <\/td>\n<\/tr>\n | ||||||
| 21<\/td>\n | 7.4 Prevention of replay <\/td>\n<\/tr>\n | ||||||
| 22<\/td>\n | 8. BOPS API overview 8.1 Format 8.2 Identity assertion API <\/td>\n<\/tr>\n | ||||||
| 23<\/td>\n | 9. API 9.1 Enterprise concepts 9.2 Format of API cells 9.3 Genesis <\/td>\n<\/tr>\n | ||||||
| 24<\/td>\n | 9.4 API\u2014genesis <\/td>\n<\/tr>\n | ||||||
| 25<\/td>\n | 9.5 API\u2014QROpportunity <\/td>\n<\/tr>\n | ||||||
| 28<\/td>\n | 9.6 Role gathering API <\/td>\n<\/tr>\n | ||||||
| 30<\/td>\n | 9.7 Access control API <\/td>\n<\/tr>\n | ||||||
| 31<\/td>\n | 9.8 Auditing 9.9 Administration <\/td>\n<\/tr>\n | ||||||
| 32<\/td>\n | 9.10 Reporting 10. Client device requirements <\/td>\n<\/tr>\n | ||||||
| 33<\/td>\n | 11. Server-side intrusion detection system 11.1 API list blacklist 11.2 API\u2014Incident <\/td>\n<\/tr>\n | ||||||
| 35<\/td>\n | Annex A (informative) Glossary <\/td>\n<\/tr>\n | ||||||
| 36<\/td>\n | Annex B (informative) Bibliography <\/td>\n<\/tr>\n | ||||||
| 37<\/td>\n | Back cover <\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":" IEEE Standard for Biometric Open Protocol<\/b><\/p>\n |