Versions

 

OM-3.2.6

Licensees must establish adequate security features for customer authentication including the use of the following three elements:

(a) an element categorised as knowledge (something only the user knows), such as length or complexity of the pin or password;
(b) an element categorised as possession (something only the user possesses) such as algorithm specifications, key length and information entropy, and
(c) for the devices and software that read, elements categorised as inherence (something the user is), i.e. algorithm specifications, biometric sensor and template protection features.
Added: January 2020