Access Control Architecture 101
Access control can be designed and deployed in a number of ways. This 101 guide examines the most common options and architectures used in 2022.
Architectures are based on 10 fundamentals decisions:
- Credentials: What kind of credential key will users unlock the opening? RFID? Biometrics? Phones?
- Readers: What type of readers will you use and what credentials will they support?
- Connecting Readers and Controllers: Will you use Wiegand or OSDP?
- Locking: What kind of lock will you use to prevent unauthorized access? Will the door need to be fail safe or fail secure?
- Controllers: What type of controller will you use? Will it be part of a centralized system or located at the edge?
- Inputs: What inputs will connect to your controller?
- Outputs: What outputs will connect to your controller?
- Management Software: Where will your management software be hosted? Embedded? On-premise? In the cloud?
- Monitoring - What features will you need? Will you require mobile monitoring or will you have a dedicated workstation?
- Enrollment - Where and how will you perform enrollment?
Inside this report, we explain the tradeoffs of these 10 fundamental decisions, overview a number of the most common combinations, and examine which future trends are most promising.
*** ***** ***** ********* *** ******* for **** ****/********:
***********
***** ****** ******* ****** ******** **** form ** ********** **** ************* *** user *** ******. *********, ********* **** from ***** *****: ***********, **********, *** Phones. *********** **** ** ********** **** the ******.
*** ********* ** *** * ***** are:
- ***********: ******* ***** *** **** *** the **** ******** ****, *** ** their *** ****. *******, ******** ***** of ******* ** *********** **** *** a *******, ***** **** ********* ****** to ***** * ********** **** **** may **** ** ***** **** ******.
- **********: ***** ********** (**** ** ******, iris, ** ****** ***********) ********* ******** higher ******** **** *********** *********** ****** they ******* ********* *********** ******* **** significantly ******** *** **** ** *** system. ****** *********** ***********, ********** ****** be ****** ********* ** ****** **** unauthorized *****.
- ******: ***** ****** *** ******** ****** control ** ******* *******, ****** ** the ************ ********** *** ** ****** smartphones. *******, **** ********* ******** ********* newer ******* **** **** ************* ****** to **** ******** ****** **** ******** photos **** *** ******* ** ************ contactless ***********. ******* ************* ** **** mobile *** *********** ********* ***** ********* subscription ****.
******
****** ******* ******* ********* ******* * reader ******* **** ** ***** ******** to ******* **** **** ***********. *** characteristics ** *** ***** ******* ********* the **** ** ****** *** **** use.
*** *************** ** ***** ****** ************ available ****** ***** *** ******** *****:
- **** *****:******* **** *** ******* ** * broad, **** *******, ****-******* ******* *** relatively ***** ** ******* *** ******* more ******** ** ***** *** **** of *** ******.
- ******* *****:**** ***** (*******) ******* ******* *** commonly **** *** *** ******* ******* gaskets ** ******** ******* *** ******** on ******** ********. ***** ******* ******* a ****** ******** ** ***** ***** cabling ****** ** *** ******* *****.
- ******: ******* *** ** ***** **** some *******. **** ***** * ****** that **** * ******** ************** ****** (PIN) ** * **********. ** * result, **** ** *** ******* ** external ********** **** * ****, ********* a ***** ********* **** ******** ** contactless *******. *******, **** *** ** easily ****** *** *******.
************, ****** ***** ***** * **** in ********* * ******. ******* *** available ** ***** ***** **** ******: short (*-* ******), ****** (**-** ******), and **** (*-** ****). *******, ********* factors, **** ** ********** **** *** frequency ****** **** ***** ***.
Reader - ********** ************ *******
******* ************* ** *** ****** ** communication ******** ******* ******* *** ***********.
- *******: ***** ******* ********** **** **** readers. *******, *** ******* ******** ****** no **********, * ******* ********, *** tamper ********** ******** ***** ***** *** part ** *** ******* ********.
- ****: **** ******** ****** ******* *************, greater ********, *** ************* *************, *** handles ***** ******* ** ********** ****. However, **** ***** *** ********** ******* of *******, ***** ***** ****, *** lacks ***** ********** *** *********** ******.
Reader - ********** *******
******* ************ ******* ****** *** ********** are ********** ** *** ************* ******** used. *********, ******* ******** * ***** or '**********' ***** **** ******** *. Because ******** **/* ******* ******* *** eight ********** *** ** ********* ******** in ****** *** *****, ********** ********** use ******** *****/*.
*******, ***** ************* ******* **** ********* distances. ******* ******* **** **** *** feet **** **** * ********** *** be ******** ** *** * ****** gauge ***** ** ******* *********. ** many *****, ** ***** '*****' **** may ** *********. **** *********** ** included ** *** ****** ************'* **************.
*****
* **** ** * ****** **** secures *** ******* ** ******* ************ entry **** * ******* *****.
********, ********* **** ******* (***** ***), and ******** ******* *** ******** **** locks ** ****** ****** *****.
- ********: ******** *** ******** ***** ** form * ******, ******* ****. ******** are ********* **** *** ******** ***** or ** ***** ***** ***** ************ is *********.
- ********* **** *******: **** ****** ***** bars ** ***** ****, ***** ***** are ********* **** ** ********** ***** free ****** (****) ** *********, **** as ** *** ****** ** ***** leading ** *** *******.
- ******** *******: *** **** ****** **** of ****, ********** ****** ** ******** interiors.
***** *** *** ***** ** ******** locks ********* ** ********** ****** *******: fail **** *** **** ******. *** required ******** ** ********* ********** ** codes *** **** ******* *** **** of **** *** ***. ***** ********* are:
- **** ****: **** ***** ** *********** *** lock ** ********, ********* *** ****. This ****** **** ******** ** **** directions ******* *** ****.
- **** ******: *** ******** ** **** **** is ‘**** ******’. ** **** ****** configurations, *** **** ***** ******* **** power *****, ********** ***** ******* * door.
**********
**** ******** ****** **** *********** ** panels, *** ************ ‘**** *******’ ** ‘access *********,’ * ********** ***** ******** the ***** ********** ** *** ****** control ******, ******** ********** **** ** locks *** ******* ** ***********. *** two ******* ******* ** ********** ********* are *********** *** ** *** ****.
**** *** *** ********* ** ****.
- ***********:*** ** **** ****** ****** ******** or *******, ******** *** **** ** tamper. *******, **** ***** ********** ******** more ***** ** ***** *** **** of *** ****** **** **** ******* location. *********** *********** ***** ******* ******** doors. ****** ********** ** *********** *********** support *, *, **, ** **** doors **** * ****** *****. ** a ******, **** *** ********* **** in ******* **** **** **** ** doors. ******* *********** *********** ******* ******** door *********** **** *** ****, *** controller **** *** **** ** ***** reduced. *******, ******* *** ****** ** cable ******** *********, *** **** ** cabling ***** ********* ** ***** ***** and ****** ****** ** *** **** must ** ****** ** ******** *** centralized ********** ** *******.
- ** *** ****: ********* ** *** **** *** typically ******** **** *****, *** **** must ** ******* ** ******* *********. Edge *********** *** ********* **** ** support **** * ** * *****, so **** *** ********* **** ** systems **** ***** **** ** ********. Although **** ***** ** ******** ******* Input *** ****** ******* ** *** door *** ***** ** *** ********** installed **** *** ****, *** ****** cost *** **** *** ******** ******* more ********** ******** ** ******** *** system.
******
****** ***** ** *** ********** ** a ****** **** ********* **** *** connection ** *** **********. *** *********** will ****** *** ***** ***** *********** from *******, **** ******** ********, *******-**-**** (RTE), *** ****** *******.
*********** **** ******* ***** *********** (****** not ***** **** ****), *******, ** it ** ********* ***** ** ****** and ******** ** **** *** **** and **** ***** ** *********** *** planned.
*******
******* ***** ** *** ********** ** a ****** **** ****** ** * result ** ******. ****** ******** ******* locks, ******, *** ****** ******.
******* ** ******, ********** ***** ** controllers ** *******, ** *********** ** what ***** *** *** **** ******* are ****** ** *** ******** ***** is *******.
Management ********
********** ******** ******** *** ******** ** the ***** ********** ** ** ********** access ******* ******. ********** ******** ********* runs ** *** ** ***** ******* locations.
*** ********* ** *** ***** ******* locations ***:
********:********** ********* ** *** **********, ******** direct ********** *** ********** *** ******** or ****** ******. ******** *** ********* limited, *** ** ******** ****** ****** you ** ****** * **** **** expensive ********** ******. ** * ******, embedded ******* *** **** *********, ****** them ******* *** ******* *******. *******, for **** ******** *** ****** ****** systems, ******** ********** ** ********* *** a **** *** *** ** **** processing ***** *** ***** **** **** and ******* ******* *** ***********.
**-******* ******: ********** ****** ** ** **-**** server. ********* ****** *** **** ************* than ******** **********, *** **** ** impacted ** ****** ******* ** ***** on-site *************. ***** ** ** ******* cost *** *** ****** ********, *** no ********* ******* *** **** **** cloud **********.
*****:********** ****** ***-**** ** *** *****. Allows *** ************* ** * ****** without ********** ****** ******** ********, *** will ****** ***** * ********* *** for *******.
**********
********** ****** ** *** ******* ** an ******** ** *** *** ****** components ** ** ****** ******* ******. This *** ******* *** ********* ** doors *** ****** ** ****** ** real-time, *** ******* **** ** ***** who ******** *****, ** **** ********** video *********. ** **** ********* ******** lock/unlock ******** ** ***** ********* ** control *** ****** ** *** ***** remotely.
*** ********* ** *** * ******* locations ***:
- **/***********:*** **** ****** ****** *** ********** access *******, * ******** ** ***-***** application ****** *** **** ************* *** advanced *************. **** ******** ********* ******** an ******** ** ****** ** * fixed ******** ** ******* *** ****** because *** *********** ** *** ********.
- ***** ****:******** ***** ******** **** ***/************, **** phone ******* *** ******* ******* ** basic ************* ****. **** ********* **** integrated *****, ********** **** ******, *** advanced ************* ********. ***** **** *** simplified *** ***** ****** ** *** most ********** ****** ****** ********** ********.
**********
** ***** ** *** *** ******, every **** **** ** ********* ********, where *********** *** ********** **** ******** credentials. ***** **** ******* *** ******** enrollments **** * ****** ****** *** a ***********, **** *** ***** *****-********* for ********* **** **** **** ** five ***** ** * ****. ** that *****, ** ********* ** **** efficient ** *** * *** ********** reader *** ***** ********* ********.
***** **********, *** ********** ******** ************ with ********** *********** ** ********* ******* the **** ** ************* ** ***** the ****** ***** ** * ******** time.
Common ****** *************
*** ***** **** ****** ****** ************* are *** **-**** **********, *** ***** Management, *** **********.
***** *** ****** ********** (****) ********* have ***** ****** ****** **** ****** organizations *** *** **** *********** *** their *******. ** **-**** **********, ***** is * ******** ****** ******* *** access ********** ********. ********** *** ** done ** ****** * ***** ** a ********, *** ***** ** ********* no ***********-****** ********** ******* *** ** the **** ** ******** ********* ** monitor *** ******.
** *****-***** *******, *** ********** ** typically ***** ** *** ****, *** the ********** ******** ** ****** ** the *****. ********** ** ******** ** computers *** ****** *** ** ***** not ********* ******** **** ** * permanently ******* ****.
********** ******* ********* **** **** ****** points **** *****-**** *********** ******* ** a *********** ********. ****** ******** *********, controllers *** ** ********* ** **** all ** **** *** ** ******* centrally **** ********** *******. ******** *** redundancy ***** *** *** ************** *** can *** **********. *** ********** *******, active/manned ********** ** **** ******.
Test **** *********
**** ****** ******** ****** ******* ************ *** quiz***.
**** *** ** ********* ****** *** EAC.
***** ************.
*****, *****, **** ****! **** ** the ***** ** * *** ****** for ** ******** ****** ******* *** Book *** ******.
** **** ** **** ******** ** access ******* (**** ****** ******* ********* to *******) ** ** *** ******** this ************ ****** ** ******** *** more ******** ****** ******* ********.