There’s a new international standard governing the Biometrics Security and Financial Services. The new standard, establishes the security requirements for the implementation and management of biometric identification technology within the financial industry.

It introduces the types of biometric technologies and addresses issues concerning their application.

Biometrics is the most reliable means of identification. It includes technologies such as finger image, voice identification, eye scan and facial image.

ISO 19092:2008 gives the architectures for implementation, specifies the minimum security requirements for management, and provides control objectives and recommendations. 
ISO 19092:2008 also includes

1. usage of biometrics for the authentication of employees and persons seeking financial services by:
   - verification of a claimed identity
   - identification of an individual
2. validation of credentials presented at enrolment to support authentication as required by risk management
3. management of biometric information across its life cycle comprised of the enrolment, transmission and storage, verification, identification and termination processes
4. security of biometric information during its life cycle, encompassing data integrity, origin authentication and confidentiality
5. application of biometrics for logical and physical access control
6. surveillance to protect the financial institution and its customers
7. security of the physical hardware used throughout the biometric information life cycle.