Which manufacturers of access control have the best data encryption in there communications streaming - we have some healthcare and defense contractors requesting more sophisticated cybersecurity measures......
Please advise
Don Volino - Shanix Technology
Hello Don:
Encryption in which segment? Reader to controller? Controller to server?
Some products, like standalone wireless locksets, the normal network traffic is internalized and isn't networked at all, so factors like that come in to play with questions like this too.
In general, 'Secure Channel' OSDP encrypts everything between reader and controller when implemented, so that is one spec to check for.
Hi Don-
Building upon Brian's comment pertaining to the credential-to-reader connection, more sophisticated cyber security can be had with contactless smartcard credentials built around NXP's Mifare Desfire EV2 chip. This is not the Mifare Classic chip, which is compromised. As such if encryption is a must, then suggest considering credentials making use of EV2. Here's a link to the EV2 datasheet: https://www.mifare.net/wp-content/uploads/2018/05/MIFARE-DESFire-EV2_Product-Flyer_0518_Web.pdf.
Alternatively, many of today's smartphone-based mobile access credentials offer even higher levels of encryption when compared to traditional contactless smartcard credentials. If sophisticated cyber security is a requirement, then this is an area that you may wish to investigate further.
I'm getting requests for the same data for medication control areas in healthcare usually in with reporting and interconnection of the system with the drug dispenser security system.
Ask questions and get answers to your physical security questions from IPVM team members and fellow subscribers.
