Access control controllers - Expert commentary

Why is key management so important?
Why is key management so important?

More and more business security practices are going digital. Mechanical keys are still the backbone of most corporate security plans, and it can be very expensive for companies to switch to electronic access control on a large scale. Therefore, enterprises need to choose the most suitable access control system. What is key management? Key management is the process of protecting, tracking, and scheduling mechanical keys. Why is this important? Because the key carries access to sensitive locations and assets within the organisation, when you increase the security of the key, you can enhance the security of these valuable resources. The key management system also controls the cost of using physical keys. The system reduces the overhead caused by key loss or security breaches. Some smaller companies may be able to adopt a paper-and-pencil key management protocol. Larger companies, or those who want to better understand and control keys, usually choose to use an electronic key management system. Key management systems can store and assign keys securely and increase the efficiency of organisation Why use a key management system? The key management system can become the cornerstone of your key control process. At the most basic level, key management systems can accomplish two things that paper and pen systems cannot: they store and assign keys securely, and they increase the efficiency of your organisation's use of keys through automation and analysis. What can key management systems do? 1) Improve access control By better protecting the keys, you can improve the access control to the spaces and devices unlocked by these keys. You can use your key management to simplify the process of providing temporary employees with one-time-key access. In addition, the system can record all their key access records, so that everyone's behavior can be traced. 2) Enhanced accountability traceability The software is a good key management system that can generate reports on key usage, user access requests, access exceptions, and loss. In addition, you can track and audit key usage in real-time. Combined with a comprehensive key control strategy, you will implement better accountability for key use to meet any industry or risk management compliance standards. 3) Reduce costs and prevent losses When an employee loses a key, you will incur direct costs for a replacement key or relocking it when it is lost When an employee loses a key, you will incur direct costs, including purchasing a replacement key or relocking it when it is lost. However, the indirect cost of key loss is usually more significant. This is because employees first spend time looking for the lost key and then process the replacement request, all of which time is not spent on production work. 4) Improve workflow As we discussed, keys are often used in important workflows. The key management system allows you to better control these workflows. A passive electronic lock system, also known as a key-centric access control system, has outstanding advantages in key management. Compared with the electronic access control system, the passive electronic lock system's "passive" characteristics have reduced the update cost for many enterprises.

The automated future of retail and how to secure it
The automated future of retail and how to secure it

While the foundation of autonomous retail has been built up over the past few years, it is only now that retailers are beginning to fully experiment with the technology. There were an estimated 350 stores globally in 2018 offering a fully autonomous checkout process, yet this number is forecast to increase dramatically with 10,000 stores anticipated by 2024. This acceleration in the growth of unmanned retail stores has, in part, been boosted by the COVID-19 pandemic and a demand for a more contactless, socially distanced shopping experience. Physical security technologies Innovative physical security technologies can play a significant role in protecting a site while supporting its operation Many retailers are now exploring such solutions as a way to streamline their services and simplify store operations while reducing overheads. Of course, the security of unmanned sites is a concern, with many eager to embrace such a design, but wary about the prospect of leaving a store unguarded. This is where innovative physical security technologies can play a significant role in protecting a site while supporting its operation and also helping to improve customer experience. Comprehensive integrated solution To make the autonomous retail vision a reality, a comprehensive solution is needed that integrates network cameras, IP audio speakers, and access control devices. The cameras can be employed to monitor entrance points and sales areas, including checkout terminals, and can be monitored and operated remotely from a central control room. This offers management full visibility of operations, regardless of the number of stores. Recorded video material can be processed, packaged, and passed to authorities, when necessary, by applicable laws. Optimising operations As autonomous stores do not require staff to be present and run largely independently, managers can be notified automatically via mobile device if an event occurs that requires their attention. This could range from a simple need to restock popular items or clean the premises after a spillage, to a criminal break-in or attack. Again, network video surveillance cameras installed inside and outside of the premises provide high-quality video of any incident as it occurs, enabling immediate action to be taken. Improving customer experience Access control mechanisms at the entrance and exit points enable smooth, touch-free access to customers Access control mechanisms at the entrance and exit points enable smooth, touch-free access to customers, while IP audio speakers allow ambient music to be played, creating a relaxed in-store atmosphere and also offering the ability to play alerts or voice messages as required. Due to the automated nature of such audio broadcasting, consistency of brand can be created across multiple locations where playlists and pre-recorded voice messages are matched in terms of style and tone from store to store. Boosting profits The accessibility of premises 24/7 can ultimately lead to an increase in sales by simply allowing customers to enter the store and make a purchase at any time, rather than being restricted by designated retail hours. This also serves to improve customer loyalty through retail convenience. Utilising data from the access control system, managers can configure lights to turn on/off and ambient music to power down when the last person leaves the shop, to be reactivated the next time someone enters the premises. This approach can also conserve energy, leading to cost savings. Designing a future proof solution The threat of vandalism is greatly limited if everyone entering the shop can be identified, which is something that is already happening in Scandinavia using QR codes linked to an electronic identification system called BankID. This process involves a user being identified by their bank details, and their credentials checked upon entering the store. This not only streamlines the transaction process but vastly improves security because only those who want to legitimately use the services will go through the identification process, helping to deter antisocial or criminal behaviour. Physical security technology should be reliable and of high quality, without compromising the service to customers VMS-based network solution Both inside and outside of the premises, physical security technology should be reliable and of high quality, without compromising the service to customers, or hampering their experience. Door controls, network cameras, and loudspeakers, together with a comprehensive video management system (VMS), enable retailers to control every element of their store and remove any uncertainty around its management or security. Such a system, network-enabled and fully scalable to meet ongoing business requirements, can be offered using open APIs; this allows configuration and customisation while ensuring that the retailer is not limited by the technology or tied into any particular set-up or vendor as their requirements evolve. Additional security benefits As more businesses launch their unmanned stores, the benefits of such technology to streamline and improve every aspect of their operations become ever clearer. A comprehensive solution from a trusted security provider can bring complete peace of mind while offering additional benefits to support the retail business as it seeks a secure future.

‘We want to become better known for access control’ - Q&A with Bosch Building Technologies’ Gregor Schlechtriem
‘We want to become better known for access control’ - Q&A with Bosch Building Technologies’ Gregor Schlechtriem

Gregor Schlechtriem has worked in the access control market for over 20 years and is now responsible for the Access & Intrusion Business Unit at Bosch Building Technologies. In this interview, the expert talks about key industry trends, the impact of the COVID-19 (Coronavirus) pandemic, technical innovations and his company’s strategy. Mr. Schlechtriem, you have many years of experience in the security technology market. What is your background and what are your responsibilities as Senior Vice President at Bosch Building Technologies? Gregor Schlechtriem: I am a trained engineer and electrical technician, and have been involved with access control in the broadest sense, since I started my career in the late 1980s. I started in the field of parking garage technology and then switched to security technology in 2001, as Managing Director of micos GmbH, which specialised in traditional access control. micos GmbH was known for its highly available and highly secure access control systems, for critical infrastructure and government applications. Many systems from that time are still in use today and continue to be supported and upgraded. Bosch is continuing micos’ business here? Gregor Schlechtriem: Exactly, micos was taken over in 2004 by Bosch Security Systems, now known as Bosch Building Technologies. Since then, we have continuously been developing the access control business. Being part of the Bosch Building Technologies division, we benefit a lot from international cooperation with colleagues Being part of the Bosch Building Technologies division, we benefit a lot from international cooperation with colleagues and from overlap with other product lines, such as intrusion detection technology and video security. This gives us the opportunity to implement outstanding project solutions for demanding customers in an international environment. In developing this business, I rely on my experience from other interesting roles at Bosch that I took on, after micos was bought in 2004. For a time, I worked in the European System Integrator Business, which I also had the privilege of managing for several years, as well as being directly responsible for business units. In Fairport, USA, I had the overall responsibility for intrusion detection technology for many years, as I later did in Eindhoven for video systems. Since 2018, the global access control and intrusion detection business has once again been my direct responsibility. At Bosch Building Technologies, we have in the meantime assigned sales to the respective business units, so that we can develop our product and solution portfolio, in close cooperation with sales and our regular customers. Our main task now is to make our access control portfolio accessible to a broader market. We want to make Bosch much better known, as an access control provider, in the international market. After all, with our own access product portfolio, the power of the Bosch Group and over 40 years of experience in this sector, we have a lot to offer. As an expert in access control, how do you see the industry developing? In which direction is it currently evolving? Gregor Schlechtriem: First of all, I see that security requirements are constantly increasing. Whereas there are currently still simple ‘key replacement systems’ that merely record card numbers, such an approach, to a large extent, no longer meets today’s security and user experience requirements.The core task of access control has not changed over the years In the beginning, access control was more or less a kind of key replacement. Later, there was the possibility of increasing security via a pin code, i.e., via verification through simple data inputs. The next step in this direction was biometrics, which is another key step up, because it allows verification by means of unmistakable characteristics. However, the core task of access control has not changed over all the years and has basically always remained the same: access control means determining who has an access request and checking whether this request can be fulfilled. What’s next on this path to greater security? Gregor Schlechtriem: Biometrics-based access control is becoming increasingly powerful and user-friendly through the use of artificial intelligence (AI). Here, data protection plays a major role, as wherever identities are established and movement data is recorded, it is necessary to reconcile the evolving technology with data protection.Biometrics-based access control is becoming increasingly powerful and user-friendly through the use of artificial intelligence The question of data protection is becoming even more significant, as systems increasingly migrate to the Cloud. Bosch puts particular emphasis on ensuring that, even in the cloud, the data generated in access control is always in line with data protection rules, regardless of where it is located. In my opinion, this trend towards the Cloud will continue, because companies are increasingly looking for complete service offerings, so that they can focus on their core business. Also, a system in the Cloud is easier to maintain and always up-to-date with the latest software, which makes cloud solutions even more attractive for providers and users. How can higher security be reconciled with a good user experience? Gregor Schlechtriem: Today, the card still plays a central role in the user experience, as the essential credential. Another current trend is ‘one card for everything’: with the increasing availability of secure multi-function smart cards, the possibility arises to use cards beyond the pure access function, for example, for payment in the canteen, at the catering and coffee machines, and in the parking garage, as well as simple access to other properties and so on.The security of cards has evolved significantly and kept pace with requirements The security of the cards, the reading and encryption processes, has evolved significantly and kept pace with requirements, although we are also facing an installed base that no longer meets these requirements, due to outdated systems. Today, it is standard for communications between reader and card to be encrypted. In some cases, the keys are also only held centrally to further increase security. The security systems industry was also affected by the COVID-19 (Coronavirus) pandemic. How do you think the industry has changed? What technical solutions have emerged during this time? Gregor Schlechtriem: First of all, there is a certain need for retrofitting in the industry due to changes in how buildings are used. For example, American retailers used to be open around the clock and always had staff on site. Now, due to COVID-19, stores are also closed, and this results in a whole new need for intrusion detection and access control systems to protect the buildings. For access control, an obvious task has arisen as a result of the COVID-19 pandemic, namely to track contacts, as far as this is compatible with data protection. We actually expected more to happen here, but in our observation, many companies did quite little, despite clear and simple steps that could have been implemented relatively quickly. The installed access control systems clearly lag behind the technical possibilities. Another topic that the COVID-19 pandemic has brought into focus is hygiene Another topic that the COVID-19 pandemic has brought into focus is hygiene. Companies should actually have invested in contactless systems here and retrofitted speed gates or motorised doors. But in many cases this was not put into practice. The door opener is still often used, which has to be operated manually and therefore, is touched multiple times. But, if everyone presses the same button, that doesn't help hygiene. Surprisingly, this is different in North America. Here, ‘request-to-exit’ proximity detectors are used almost everywhere, which avoids this problem completely and releases the door, when an authorised person approaches it. Mobile access and smartphone-based access control are also growing markets. What kind of developments do you see in these areas? Gregor Schlechtriem: I already mentioned that users increasingly want to be able to use one card for several applications. But, what we are seeing here is that even with the most modern cards, which have a lot of applications loaded on them, we are reaching performance limits and the user experience suffers. If you compare the card with the smartphone as a credential, you have a much more attractive integration platform there, which is significantly faster and delivers much better performance. For us, the mobile credential or the smartphone is the future, because it simply offers more possibilities that the card will not be able to provide in the long term. What is the specific direction Bosch is taking here? Gregor Schlechtriem: We are currently working on a broad implementation. A whole team is working on the user experience around the smartphone, because it’s understood that smartphone-based access has to work just as easily, as it currently does with a card.A whole team is working on the user experience around the smartphone In theory it does, but if you look at some of the actual implementations, this topic is still relatively complex. In terms of user experience and automation, we still have quite a way to go, and we are working hard on that at the moment. The user experience is one side of the coin, the other side concerns establishing security in the smartphone as a whole. In other words: How do I make the smartphone secure enough as a mobile credential, to meet my access control requirements? We are also working intensively on this. That's actually an IT task. Do you do this yourself at Bosch or do you work with external experts here? Gregor Schlechtriem: We have our own powerful Bosch IT, which also manages our company smartphones. If our company smartphones are lost, the data on them is automatically deleted. The devices use biometrics to identify users, before they can access the data. It is a sound security concept that a card cannot offer. Moreover, we are working with other partners in the IDunion project, to create the additional infrastructure around mobile credentials as well. What exactly is the IDunion and what role does Bosch play? Gregor Schlechtriem: Digital identities must be openly accessible, widely usable, interoperable, and secure. This applies not only to access control, but to the digitised economy in general. The IDunion project has set itself the task of creating the infrastructure for this, in the form of an independent wallet, i.e., secure identity storage on smart devices. The project is funded by the German Federal Ministry for Economic Affairs and Energy (BMWI), because digitisation is also a critical social issue. We are intensively involved in the ‘Physical access to the building’ work package in this consortium. Through this involvement, we want to ensure that our access control systems benefit from this infrastructure and are open to future digital business models. Does ‘digital identity management’, which includes biometrics and mobile access, also play a role for Bosch? Yes, it plays an important role for us, and I wouldn’t consider these topics separate Gregor Schlechtriem: Yes, it plays an important role for us, and I wouldn’t consider these topics separate. For me, a mobile device has the advantage that it has already ensured and verified my identity from the moment of interaction. That’s the fascinating thing about it. If I only allow the device to communicate with the access control system, if I have identified myself first, I have implemented biometrics and access control together in a widely accepted process. From my point of view, this is a very interesting perspective, in terms of security and user experience, because the biometrics procedures in smartphones are, I think, the best currently available. In my view, the smartphone has the potential to take over central functions in access control in the future. What are your goals for the access control business of Bosch Building Technologies in the near future? Gregor Schlechtriem: We will continue to focus on specific solutions for large customers. That is the continuation of our current strategy. In these projects, we will introduce new topics as I have just described, i.e., primarily new technology elements. I believe that, precisely because of the longevity of access control, a long-term migration capability is also of particular importance. We want to reach out to the broader market and make more widely available, what we have developed in terms of technology and innovation. We are currently in the process of setting up and optimising our sales organisation, so that it becomes much more widely known that we at Bosch have our own powerful access control portfolio, which can be used for all kinds of applications. In addition, we want to differentiate ourselves in the market with our systems, in line with the motto of our founder, Robert Bosch: ‘Technology for life’. The user experience with Mobile Access should be simple, straightforward, and secure: You hold your smartphone in front of the reader and the door opens.

Latest Software House, Tyco International news

Johnson Controls integrates open standard PLAI Adapter into Tyco Software House’s CCURE 9000 for physical access control compatibility
Johnson Controls integrates open standard PLAI Adapter into Tyco Software House’s CCURE 9000 for physical access control compatibility

Johnson Controls, the globally renowned company in smart, healthy and sustainable building solutions, has introduced the PLAI Adapter for the Tyco Software House’s CCURE 9000 security and event management system, which connects to the PLAI Agent, for physical access control system compatibility. PLAI Adapter This open standards approach enables enterprises to easily manage personnel identity and physical access, across disparate physical access control platforms and other identity-based systems, reducing complexity and cost in system administration, and improving the employee and user experience. The Physical-Logical Access Interoperability (PLAI) specification provides an open standard method of sharing and managing personnel, credential, card format and biometric details, across an enterprise. This enables customers to use their current badge technology and biometrics, without the need for duplicate enrollments in different systems and the need to issue multiple credentials. PLAI specification offers an open standard approach The PLAI specification employs an open standard approach to integrating these different platforms Created by the Physical Security Interoperability Alliance, the PLAI specification employs an open standard approach to integrating these different platforms, as opposed to relying on individual platform drivers, simplifying the integration process. The ability for centralised management of Personal Identifiable Information (PII), across multiple systems, with the CCURE 9000 PLAI adapter, can ease compliance with data privacy regulations, such as GDPR and reduce the risk of unauthorised access, caused by identity conflicts, in the operation of the access control system. This helps to reduce total cost of ownership, by easing the administration burdens of making changes to users, credentials, locations and roles. Interoperability for PLAI-conformant access control solutions Open standards can also extend the life of current systems and allow organisations to defer the cost of standardising on one physical access control platform. By supporting interoperability with other PLAI-conformant access control technologies and biometrics, systems can be extended to include security events and door control, as well as visitor management functions. PLAI Adapter for Tyco Software House’s CCURE 9000 is part of the Johnson Controls OpenBlue suite of connected solutions, which support healthy people, healthy places and a healthy planet.

LifeSafety Power to showcase their intelligent networked power supplies at the GSX 2021
LifeSafety Power to showcase their intelligent networked power supplies at the GSX 2021

LifeSafety Power will showcase its award-winning intelligent networked power supplies at booth 1463 during this year’s GSX show, September 27-29 in Orlando. Featured products include: FPO Generation 2 - Recently redesigned and re-engineered with updated features and capabilities, the FlexPower® FPO Generation 2 (Gen2) power supply line brings additional enhancements to both installers and users in the access control market. Network communications module FlexPower Gen2 includes the groundbreaking OutSmart™ visual voltage indication across all boards, visually showing the technician the output voltage of the power supply boards and each distributed output. Optional RS-485 capability on FPO and M8 devices allows larger managed systems on fewer network drops with the NLX NetLink™ network communications module. Refinements like built-in low battery disconnect and battery current sensor foster cleaner installations Added data points such as AC input voltage and main output current measurements on the FPO power supply and output cycle counts on the M8 yield a comprehensive view of overall system health. Refinements like built-in low battery disconnect and battery current sensor foster cleaner installations. Access control boards E12M and E12S Enclosures - One of the most spacious enclosures in the industry, the E12 is available in Unified Power or ProWire with dimensions of 48 (H) x 36 (W) x 8 (D). The E12 handles larger enterprise access control deployments–accommodating more access control boards, power supplies and managed outputs in a single enclosure for hardware and deployment savings. The E12 houses up to three FlexPower FPO power supply boards to allow up to 750 Watts of power to locking hardware, access control boards and auxiliary devices. It comes in two configurations: the E12M integrates with authentic Mercury Systems and handles 24 doors of access control; E12S integrates with Software House (SWH) controllers to handle up to 32 doors. Security management software NetLink lets users remotely monitor, control, program and report on system power Access Control Integrations - LifeSafety Power’s solutions integrate with several industry-preferred access control security management software platforms, including Genetec Security Center; OnGuard® for Lenel S2; and C•CURE 9000 from SWH. Security Center Integration for Genetec - Leveraging the Genetec integration between NetLink network communication device and Security Center, users can seamlessly add NetLink devices into the software platform, allowing real-time alerts to appear directly within the interface. From Security Center, users receive detailed data on the health and viability of power, connected locks and other devices. NetLink lets users remotely monitor, control, program and report on system power and connected devices and features patented battery management that includes health reporting, remote battery testing, email/SNMP alerts and other proactive notifications. Advanced power management OnGuard Integration for LenelS2 - The LenelS2 integration allows LifeSafety Power’s NetLink NL4 and NLX Network Communication Modules to interface with OnGuard access control software versions 8.0, in addition to 7.6, for advanced power management of enterprise access control systems. NetLink adds proactive monitoring and management capabilities to LifeSafety Power’s power systems, interfacing directly to the OnGuard platform, with all power system alerts indicated on the OnGuard software. NetLink adds proactive monitoring and management capabilities to LifeSafety Power’s power systems CCURE integration for SWH - The native integration with SWH C•CURE 9000 and LifeSafety Power’s intelligent network monitoring modules allows users to receive and centrally manage alerts and notifications through the software, for monitoring and control of PSX power and distribution modules sold and supported through SWH. Critical networking notifications are driven directly into C•CURE 9000, relaying real-time data and analytics on the health and viability of iSTAR door controller power, lock power and battery condition. Streamlining power installations ProWire Unified Power Systems/Helix - ProWire Unified Power Systems, the highest level of integration between a power system and an access control solution, are an installer’s blueprint for consistent, streamlined power installations. ProWire makes it simple to create a connected power campus, eliminating installation variability for repeatable and professional results. Network-connected ProWire systems can interface directly into Mercury Security or SWH C•Cure 9000 platforms, allowing users to receive, manage and control alerts and notifications. ProWire is compatible with Multi-Site Manager (MSM) Enterprise™, which yields advanced analytics so end-users can actively network, monitor and manage connected power solutions for greater uptime and dependability. Mission-critical applications Helix reduces the risk of system downtime or outage and features network management Helix AC/DC is the only solution for mission-critical applications in government, finance, medical and high-tech industry vertical markets. Designed for seamless failover protection with the automatic backup switchover of AC or DC power, Helix reduces the risk of system downtime or outage and features network management for predictive reporting that optimises and maintains the highest levels of performance. AC Helix monitors separate AC branch circuits, reporting trouble with a primary branch immediately and instantly transferring power to backup for uninterrupted system operations. DC Helix uses redundant power supplies to instantly transfer power to the backup supply on the failure of the primary supply. Helix is now available in standard, Unified Power and ProWire configurations to provide the ultimate protection to any access control power system.

Johnson Controls makes C-One2 mobile terminals from Coppernic available for the C•CURE Go Reader
Johnson Controls makes C-One2 mobile terminals from Coppernic available for the C•CURE Go Reader

Johnson Controls, the provider of smart, healthy, and sustainable buildings, and architect of the OpenBlue digital connected platforms announce the availability of the new C-One2 mobile terminals from Coppernic for the innovative Tyco Software House C•CURE Go Reader. C•CURE Go is an application that extends the capabilities of the C•CURE 9000 security and event management system with portable, secure access control functionality, even in remote or disconnected areas. Ideal mobile solution The Coppernic C-One2 handheld Android device, featuring a multi-technology HID read head, is the ideal mobile solution for controlling an individual’s access rights at any time and from anywhere. The C•CURE Go Reader application validates credentials, performs roll calls, and can even enforce anti-passback on a per-device level and also in an online mode in conjunction with iSTAR controller areas. C•CURE Go Reader can operate in offline mode, caching personnel records and clearance data C•CURE Go Reader can operate in offline mode, caching personnel records and clearance data, as well as buffering offline transactions and synchronising instantly with C•CURE 9000 when back online, making this ideal for construction sites, temporary entrances, offsite events, or roaming security checkpoints for spontaneous badge checks. Associated portrait image For emergency situations, the C•CURE Go Reader features a roll call system administrator to produce a list of all users currently within a specified area, a crucial function for any emergency or evacuation plan. Cardholders simply present their QR code, iCLASS, MIFARE/ DESFire EV2, or proximity card to the Handheld reader. Once presented, C•CURE Go Reader shows the associated portrait image, cardholder status, clearance information, and whether the individual can be admitted or rejected. For quick tracking, the C•CURE Go Reader can easily create check points and track IN and OUT status for personnel, as well as capture the GIS location of each card ship and show locations on C•CURE 9000 workstations.

Related white papers

10 top insights in access, cloud and more

Protecting dormitory residents and assets

Top 5 ways to ensure visitor safety and security