Access Control Industry Best Practices

With a wide variety of reader technologies to choose from, it's important to ensure that the technology selected properly balances risk, cost, and convenience factors.

By Holly Sacks | Jan 12, 2010
Page 1 of 2
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn
Choosing the Right Reader

With a wide variety of reader technologies to choose from, it's important to ensure that the technology selected properly balances risk, cost, and convenience factors. Prox technology is a viable choice, especially for sites where there are existing Prox cards in use, but contactless smart cards represent the next generation Prox technology and offer all of the convenience of Prox along with increased security and additional benefits such as multiple applications, read/write and increased memory. However, when selecting a vendor's system, be aware that some manufacturers, in an attempt to sell "universal” readers capable of reading almost any contactless smart card, bypasses the security measures of contactless smart cards in order to achieve their goal. These readers, known as "CSN readers,” only read the card's serial number, which, as per ISO standards, are required to be able to be read by any reader for the express purposes of being able to read multiple cards presented to a reader at the same time. Furthermore, because the ISO specifications are publicly available, details of how this process works can be employed by unknown persons to gain unauthorized access.

Communications Protocol

Access control readers typically read a card and send the card data to another "upstream” device such as a panel, which decides whether to allow access. When this communication takes place using wires, the most popular method is the Wiegand Protocol because it's almost universally supported by all vendors. Although more modern protocols such as RS485 and TCP/IP offer more security, there is less interoperability between different manufacturers of readers and panels.

Protect the Wiring

Installing the security system's wiring in conduits makes it more difficult to compromise due to the difficulty of identifying the correct conduit. Additionally, bundling several wire runs together so that identifying the correct set of wires is more difficult is also desirable.  Avoid the use of readers with built-in connectors that are easy to swap out with an unauthorized reader and connect wires in a permanent fashion by soldering.

Use Security Screws

Utilize security screws that require special tools to remove a reader. This makes the removal process longer and more difficult and increases the possibility that a malicious attack will be noticed.

Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter
Helpful Links

  • Yankee Group Mobile WAN Optimization Report

    Mobile work continues to evolve. Your organization must keep up with the demands of its mobile workforce. This report introduces the concept of mobile WAN optimization and provides three case studies including RCM, PRTM and Einstein that highlight how this emerging technology can help IT departments achieve what previously appeared to be conflicting goals. Read >

  • Network Security Resources

    More threats than ever before pose a danger to today's enterprise network. Get the latest tips and intel on the newest risks in our guide to network security resources. Read >

  • Extreme Savings: Cutting Costs with WAN Optimization

    Did you know it's possible to cut IT costs without impacting day-to-day IT operations? In fact, when you download this whitepaper from Riverbed on cost-savings through WAN optimization, you'll discover how businesses of all different sizes have realized a return on investment in just a few months through significant hard cost savings in areas such as bandwidth reduction and IT consolidation. It's called Extreme Savings and its only from Riverbed. Read >