iTC Meeting Minutes 2023 05 30 - biometricITC/cPP-biometrics GitHub Wiki

Agenda

https://github.com/biometricITC/cPP-biometrics/wiki/iTC-Meeting-Agenda-2023-05-30

Call started at 10:02am EDT

Attendees

Brian Wood
Greg Fiumara
Jim Arnold
Ahmad Dahari Jarno
Scott Chapman
Naruki Kai
Clare Parran

Record of Decisions

None

Action Items

Naruki will try to work on a draft of the project overview document before the next call
Brian will reach out to BixeLabs to schedule the presentation

Minutes

The call started with a review of the task list. Brian checked off the remaining BSI items at this time.

There are no general updates at this time.

Naruki then presented information about BixeLabs from Australia. They presented their background to him and would like to present to the whole group. They are a certified biometrics lab, including NIST, ISO and FIDO certifications. We will reach out to them to present in 4 weeks.

Brian then asks who else we should reach out to to help with this work on PADv2. Clarkson U. seems a good place to start (since Stephanie is from there). Greg F. suggests reaching out to IARPA as well.

Brian then asks how we would vet the organizations and how many we would want to include. There is no general thought specifically on vetting. Brian suggests maybe just knowing the people is sufficient at this time as too many would be difficult to manage anyway. The thinking is maybe start with BixeLabs and Clarkson and see if Stephanie can recommend another university to contact, so the group would be generally small at this point.

Brian then asked what modalities should be considered for coverage. The agreement here is on face and fingerprint as these are clearly the most common in use at this point.

It was agreed then that while there is no specific timeline expectation, we would want to get started soon on this with the goal of having some sort of first draft prepared around the time of the ICCC. It was agreed that there should be a document covering the general outlines of the project, including timelines, that could be shared with the groups working with us on creating the PADv2.

Brian then pointed out some additional considerations that will need to be made during this time:

Who will have access to the repo? Will it be limited to labs (and schemes), will companies need to go through the lab to gain access? Will multiple people from a lab be allowed in or one?
What is the process for determining access and governing ongoing access rights?
What change will we need to bring in PADv2 into the PP-Module?
- Should we issue a statement about an expected move to mandating PADv1? Greg F. stated that this is likely to happen soon anyway, the NIST 800-63 spec will push things in that direction, and we should be aligned with that if possible.

The call ended at 10:43am EDT.