|
Work item:
|
X.1080.0 (ex X.pbact)
|
|
Subject/title:
|
Access control for telebiometrics data protection
|
|
Status:
|
Approved on 2017-03-30 [Issued from previous study period]
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
New
|
|
Equivalent number:
|
-
|
|
Timing:
|
-
|
|
Liaison:
|
-
|
|
Supporting members:
|
-
|
|
Summary:
|
Recommendation ITU-T X.1080.0, Access control for telebiometrics data protection, is a specification for how to protect telebiometrics information against unauthorized access. It does so by taking a service-oriented view, where only information necessary for a particular purpose is provided, i.e., access is given not only on a right-to-know basis, but also on a need-to-know basis.
The heart of this Recommendation is an attribute specification included in an attribute certificate or public-key certificate that specifies in details what privileges a particular entity has for one or more service types.
Security is provided by using a profile of the cryptographic message syntax (CMS). The CMS profile provides authentication, integrity and, when required, confidentiality (encryption).
This profile is intended to provide security support for telebiometrics specifications in general. The profile assumes and is dependent upon a correct deployment of a public-key infrastructure (PKI).
Recommendation ITU-T X.1080.0 is also dependent on a deployment of a privilege management infrastructure (PMI).
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2015-04-30 13:20:58
|
|
Last update:
2017-05-03 16:04:11
|
