NOTE: This wiki is provided by the OASIS standards consortium as a collaborative tool for members of the OASIS BIAS Technical Committee, who are permited to post to these pages. As this is an official workspace of the TC, the OASIS IPR Policy and other OASIS rules apply to its use. To learn more about the work of the TC, send a comment, or join this effort, visit the OASIS BIAS TC homepage.

Wiki pages are transient documents, so intermediate edits may not be saved. TC members should move all permanent work and stable artifacts to the TC's document repository, where the archival work product of the TC also can be viewed by the public.

Biometric Identity Assurance Services (BIAS)

To find out more about the progress and current status of the BIAS technical committee, visit our homepage at


BIAS has developed a Simple Object Access Protocol (SOAP) Profile aligning to INCITS 442:2010 - Biometric Identity Assurance Services (BIAS). A SOAP Profile is a description or contract of how to communicate with an application over the Internet--these types of applications are commonly known as a Web Service. Web services are common practice among applications that run over the Internet. As more devices become Internet-capable, the availability of such applications increases greatly. Consider smart phones--accessing your email or social networking account is as easy as a few taps. Biometrics are becoming more widely adopted in various aspects of society and a high availability of applications to process captured information is necessary. Leveraging open, and well vetted protocols, such as HTTP/HTTPS, SOAP, and XML, provide the ability to create and deploy highly scalable and distributed applications.

The BIAS SOAP Profile defines operations to enroll, identify (comparing one to many), and verify (comparing one to one) biometric information over a web service architecture. It is designed at a high enough level where it is a very effective and versatile framework that not require or preclude and special biometric modality.

Key Terms


Biometric Identity Assurance Services


HyperText Transfer Protocol


Secure HTTP


Simple Object Access Protocol


Extensible Markup Language

Reference Implementations / Statements of Use

Before a committe specification can become an official OASIS standard, there must be at least three statements of use by OASIS member organizations. The three members that have submitted a statement of use is NIST, DoD BIMA, and Viometric.


The NIST-developed reference implementation is available, as is, free of charge to the public domain. The implementation is a Class 2 implementation, providing functionality to the aggregate functions. To download, please visit NIST Biometric Web Services homepage at or click here for a direct link. NIST's implementation uses the Bozorth3 fingerprint minutiae matching algorithm provided by the NIST Biometric Image Software (NBIS) library to extract minutiae and match submitted fingerprint images.


The Biometrics Identity Management Agency (BIMA) leads Department of Defense (DoD) activities to program, integrate, and synchronize biometric technologies and capabilities and to operate and maintain DoD's authoritative biometric database to support the National Security Strategy. The BIMA is a premier organization dedicated to protecting the nation through the employment of biometric capabilities.

The BIMA used the schema from the standard to determine if it was suitable as input to programming language code generation tools, in order to test the feasibility of using the standard for test case generation in support of future implementation activities. First the BIAS XML Schema was fed into a tool and translated into an analogous ASN.1 schema based on the ISO/IEC 8825-5 | ITU-T X.694 standard for mapping XML Schema to ASN.1. The successful results of translation demonstrated that the BIAS XML Schema was XML Valid, and the tool produced a set of Abstract Syntax Notation One (ASN.1) files.

These analogous schema files were edited to create typical test case values using the ASN.1 Basic Value Notation. The modified ASN.1 schema files containing test cases (e.g., example BIAS messages) were fed into another tool, ASN-1Step, to generate an interactive test environment, in which the test case values were executed using the ASN.1 XML Encoding Rules (XER) and the Distinguished Encoding Rules (DER). The successful results demonstrated that the BIAS messages could be represented in both a compact binary format, and as XML markup that was valid against the BIAS XML Schema.


Viometric ( is a small business technology company focused in the hybrid field of Biometrics and Video Analytics. With headquarters in New Jersey, Viometric is developing commercial applications for mobile Biometric solutions. Typical applications include mobile surveillance, patient monitoring, and video data mining.

Viometric developed a .NET-based BIAS Class 2 compliant fingerprint matching client which interoperates with NIST's reference implementation. This client is a tool to perform human identification. It uses Windows bitmap images or WSQ format approved by the FBI to match fingerprints in a predefined database. It also allows to enrollment of subjects by providing their information and fingerprint images to the system.

The client software uses BIAS WCF WebService which is performing the image comparison and holding client information in the XML format. Client/Server communication was performed using the WCF protocol and a WSQ library was written in C++ and ported to C# and .NET through the interoperability mechanism of Microsoft .NET.

FrontPage (last edited 2012-05-23 14:26:11 by bobg1966)