>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

IA-5(12)Authenticator Management

Technical

>Control Description

AUTHENTICATOR MANAGEMENT | BIOMETRIC AUTHENTICATION The information system, for biometric-based authentication, employs mechanisms that satisfy organization-defined biometric quality requirements.

>Supplemental Guidance

Unlike password-based authentication which provides exact matches of user-input passwords to stored passwords, biometric authentication does not provide such exact matches. Depending upon the type of biometric and the type of collection mechanism, there is likely to be some divergence from the presented biometric and stored biometric which serves as the basis of comparison. There will likely be both false positives and false negatives when making such comparisons.

The rate at which the false accept and false reject rates are equal is known as the crossover rate. Biometric quality requirements include, for example, acceptable crossover rates, as that essentially reflects the accuracy of the biometric.

>Tailoring Guidance

This security control/enhancement specifies a very specialized and/or advanced capability that is not required for all systems. Consequently, inclusion in a departmental profile is made on a case by case basis.

Ask AI

Configure your API key to use AI features.