ISO IEC 29164-2011 PDF

Full title and description

ISO/IEC 29164:2011 — Information technology — Biometrics — Embedded BioAPI. This International Standard specifies a standard interface (Embedded BioAPI) for hardware biometric modules intended to be integrated in resource-constrained embedded systems. It defines the commands and behaviour that such hardware-based biometric modules shall implement so they can interoperate with host applications in embedded environments.

Abstract

ISO/IEC 29164:2011 defines the Embedded BioAPI: a command-level interface for hardware biometric modules used in embedded devices (limited memory, processing, and power). The standard specifies the interface at two levels and describes the commands, data structures and expected behaviours for module implementations. Low-level implementation details and detailed security/key management mechanisms are outside the scope; security considerations are noted but normative security requirements are handled by other standards.

General information

• Status: Published (International Standard; reviewed and confirmed in 2024)
• Publication date: October 2011 (Edition 1, 2011)
• Publisher: ISO/IEC (ISO/IEC JTC 1/SC 37)
• ICS / categories: 35.240.15 (Identification cards; chip cards; biometrics)
• Edition / version: Edition 1 (2011)
• Number of pages: 41

Scope

The standard applies to hardware-based biometric modules designed for integration in embedded systems (for example, smartcards, secure tokens, embedded controllers and dedicated appliances) where memory, CPU and power are constrained. It specifies a standardized command-level interface (Embedded BioAPI) for requesting biometric operations and receiving results. The document excludes low-level implementation details of biometric algorithms and devices, detailed security mechanisms such as key management (these are expected to be provided by other standards or system-level designs), and detailed specifications of subcomponents or device-specific characteristics.

Key topics and requirements

• Definition of the Embedded BioAPI command set and data structures for embedded biometric modules.
• Two-level specification approach (logical levels for command/response behaviour and higher-level functional mappings).
• Interface requirements for enrollment, verification and template handling appropriate to embedded contexts.
• Requirements and recommendations to support constrained resources (memory, CPU, power) and predictable behaviour.
• Module discovery, initialization, control and error/reporting mechanisms suitable for embedded hosts.
• Interoperability considerations to enable multiple vendors' modules to be integrated within embedded systems.
• Security considerations described at a high level; explicit cryptographic key management and detailed security mechanisms are out of scope.
• Testing and conformance guidance at the interface/behaviour level to support integration and interoperability.

Typical use and users

Device and module manufacturers creating biometric sensors and processing modules for embedded products; system integrators embedding biometric modules into appliances, payment devices, ID tokens, access-control hardware and IoT devices; firmware and embedded software developers implementing host-side drivers or middleware; test laboratories and certification bodies assessing interface conformance and interoperability; standards committees and technical architects designing biometric-enabled embedded solutions.

Related standards

ISO/IEC 29164 is part of the biometric standards ecosystem and is commonly used alongside other standards such as the BioAPI family (for example ISO/IEC 19784-1 BioAPI specification), the BioAPI Interworking Protocol (ISO/IEC 24708), and biometric security and evaluation standards (for example ISO 19092 for biometric security frameworks in financial services and ISO/IEC 19792 for biometric security evaluation). It is aligned with work from ISO/IEC JTC 1/SC 37 (Biometrics).

Keywords

Embedded BioAPI, BioAPI, biometrics, embedded systems, biometric module, interface, commands, interoperability, device integration, biometric enrolment, verification, constrained devices, JTC 1/SC 37.

FAQ

Q: What is this standard?

A: ISO/IEC 29164:2011 defines Embedded BioAPI — a standardized command-level interface for hardware biometric modules used in embedded systems.

Q: What does it cover?

A: It covers the command set, data structures and expected behaviours for hardware biometric modules in resource-constrained embedded environments, including module initialization, operation, template handling and error reporting. It does not prescribe low-level algorithm implementations or detailed cryptographic key management.

Q: Who typically uses it?

A: Biometric hardware vendors, embedded device manufacturers, firmware and middleware developers, system integrators, test laboratories and certification bodies working on biometric-enabled embedded products.

Q: Is it current or superseded?

A: ISO/IEC 29164:2011 is published as Edition 1 (2011) and was reviewed and confirmed in 2024; it remains a current International Standard unless a future revision or superseding edition is published.

Q: Is it part of a series?

A: It is part of the broader biometric standards family maintained by ISO/IEC JTC 1/SC 37 and is used in conjunction with related documents such as the BioAPI specification (ISO/IEC 19784 series) and other biometric security/evaluation standards.

Q: What are the key keywords?

A: Embedded BioAPI, BioAPI, biometrics, embedded systems, biometric module, interface, interoperability, constrained devices, enrollment, verification.