Access Control: Combo Reader / Controllers Tutorial

By: Brian Rhodes, Published on Jul 22, 2013

Economical or foolhardy? Industry professionals are torn on combination door readers. These units typically integrate credential readers and door controllers into a single unit hung outside the door. Does the tampering risk also mean they are a security risk? We look at the units in this note, weigh the pros and cons, and address whether and where the risk is worth the benefit.

The Risk

********** *** ********** ** the ******* ** *** locked **** ***** ** can ** ******** ****, vandalized, ** ******** *******. When *** ****** *** controller *** ******** *******, this **** ** *********. The ********* **** ** isolated ** *** ****** or ****** ****, *** if *** ********** ********* is ********* ****** **** ******, it ****** ******* ********** to ***** *** ****.

*******, **** *** ****** and *** ********** *** the **** ******, ** attack ********** *** *************. If ******* **** * combo **** *** *** wall, **** *** ******** remain ******, ** **** it ****** *** *** security ******* **** * wide **** ****? ***** some ********* ******* *** potential **** ** *** great ** *** ***** *****, a ****** **** ******* the **** ** *** the **** *** *** doors *** ******* **********.

****** ****

**** ****** ********** ***** feature * '**********', ***** *********** **** ********, and * '******', ***** ** *** primary ********** *********. *************, these ********** **** **** ********, distinct ***** **** **** need ** ** ********* and *********.

*******, ******* ****** ************* offer '***********' ***** **** merge *********** *** ******* into * ****** ****. These ******** ***** '*************' compatible ******** ******* *** two **********, *** *** a ****** *** ** install **** ** ********** cables ** ***.

*** ** *** ****** known ******** ** * combo **** ** ****** **** *** ***********, ******** *** **** approach ** ***** ** many '********* *******' **** feature '***** *****' *********. Indeed, *** ****** **** includes * ****** ** output ******** *** *********** door ******** ** ********** to *** **** ****: door ********** *********.

 

Hardware *******

*** **** ** ******* hardware **** ********** *** type ** **** ********* presents. *** ***** **** require ********* *****, **** maglocks, ******** *** ********** can ********* ***** ** the ***** *** ***** them ** ** *********. However, ******** ******* *** generally *** ********** ** controller *******, *** ******* power *********.

********:**** **** ******** *** independently ******* *** *** 'passthru *******' **** *** controller, *** ********** **** as * ***** ** the ***** *******, *** removing *** ********** ****** the *******. *** ***** below ************* ******* **** weakness:

******** *******:******* ** *** **** or ****** *** **** locks, **** ****** ***** door ******** ** ****** secure ***** ********** *** door ** ****. ** most *****, *** ****** is ********* ***** *** access ****** ******* * door ** ****. ****, the ********** ****** ***** to *** ******, ******** the **** **** ** swing ****** ******* *** strike.

***** ******, **** ******* the **** ** ******** the ********** **** *************; if *** ********** ** gone, *** ****** ******* unpowered *** *** **** stays *****. ** ****, it ***** ******* ** additional ** ***** ****** and ********* ** ***** wires ***** *** ****** in ***** ** '******' the ****. ***** ***** a *************, **** ***** of ********* ******** **** familiarity **** **** ** not *******.

Tamper *************

********* ** ***** *********** typically ******* * '****** switch' **** ******* ******* removal ** *** ********** from *** ****, *** locks *** *** **** from ******* ********** ***** if *******. **** ****** switch *** **** ******* alarm ******** **** ***** authorities/operators **** *** ********** is ***** ********:

***** *** ********* ***** of ****** ******, **** are *** ********** **** shown *****, ****** *** an '******* ******' **** uses ** ** ******* to ****** ********. ** any ****, ***** **** input ****** * ******** **** in ********** *** ********** and ****, **** ****.

****

*** ******* ************* ** using ***** ***** ***** from ****** **** **** traditional *******. *** *******:

********: ** *** **** ***** ~$300, *** ****** * R10 ****** ** ~$** costs ****** $***.  *******, adding *** ******** ***** cost ** ******* *** device *** *** ~$** - ~$*** ** *** cost, *** * ***** between ** *** $****.

*****: * ****** **** HID ***** ***** ~$***. Eliminating *** ************ **** of ******* ********* ******* in $** - $*** savings *** ****.

External **********

** ******** ***** *** vulnerabilities ** * ***** unit *** ****, ********** the **** ****** ************ ******* ***************** ******* *** ****. These******** ************* ******** **** **** biometric ******* *** **** serve ** ************* ********** against ******** *** **** - ****** ******* ** optical *******.

***** ********** *** ** metal ** *******, *** a ********* ******** **** withstand ****** ***** ** prybar *******, *** ********* mount **** * ****** surface **** **** ********** wall ***** *********.

*******, ****** ********** *** expensive, ********** **** ***** and ***** **** ** access ***. ********** **** between ~$** - $*** each, ********* ********** *** savings ** ***** * 'combo' **** ** ***** with. 

***************

*********** ***** *****, ***** units ****** **** ** used ** *** ** ****** security ******** ***** **** do *** *** ********:

  • ******** *****:******* ***** ****** * building *** ****** ******* layers ** ******** *** are ****** ***** ********* to '*****' *********** **** video ************ *** ****** staff *** *** ***** to ****** ********.
  • ***** **** ********: *** **** ** ****** defeating ******** ** *** great ** ********* ***** them ** ******* ***** relying ** **** *** security.
  • ** **** ********:******* ***** *** ******* known ***** **** ***** readers, **** ****** ** avoided ** '**** ********' designs ****** ** ********** or ************* ****** *******. While *** **** ** minor, ***** ** ******** is *** **** ****** for ***** **********.

Brute *****: *** **** ****

***** ***** ***** ***** raise ************* **** *** seen **** ******** ***********, the ******* ****** ** controlled ***** ******* *************** brute ***** *******. ***** combo **** *** ********** to ******, **** ******* will *** **** *** time *** **** *** knowledge ** ******* ****, rather ******** ******* ** attack *** ******* ******. 

*** ********* ***** ***** combo ***** ****** ** raised ** **** ** a ****** ****** ** evaluating ******* '******** ********' of *** ****** *******. If ** ******** ****** gain ***** ******* ******** a ********** *** *** wall, *** ********* *** use ***** ***** ** knock **** *** ****, then *** ***** ** academic.

Comments (8)

The technical advantages of having a single, integrated, intelligent IP device at the door are manifold. But what will drive adoption is simply cost savings (which is potentially more attractive than modeled in this very good article). Security is a matter of degree, not absolute. I expect the inevitable additional functionality and lower cost will prevail over perceived security vulnerabilities which can be effectively mitigated.

We currently have our multi-door microcontrollers in close proximity to the BA/FA alarm control panel and recieve an input signal in the micro's when there is a fire alarm. The exterior doors then unlock to assist firefighters with access. How would this work with the controllers at the door?

Hi

There are ways to do this:

The Maglock can be controlled by an independent power supply. The Alarm/Fire system can activate that relay in case of fire to open the door...

The Fire Alarm dry contact signal can be translated into a digital signal to the server signaling it to open the door.. We don't like this idea but it is doable

If the door/controller powers the Maglock through PoE, then have the Fire Alarm relay cut power to the PoE switch thereby removing power fomr the controller, hence the Maglock...

As for tampering with the Reader/comtroller to removepower fromthe Maglock, we use ISONAS and they have adevice that effectively address the tampering isue...

I was looking at some all-in-one units for home use, from Samsung and Dahua. They typically look like this:

I believe in these that the reader, controller and strike are all in one unit. After reading the article, I am thinking that having the strike integrated may actually be a good thing, since it makes it harder to attack the leads which control the strike.

Is that right or are there new vulnerabilities that are introduced?

Units like you list above do not use an electric strike. The lock latch is retracted or the handle retracts the latch when the lever handle is turned.

Think of a 'hotel style' lock. That is essentially what your standalone unit examples are.

Ok, let me have the bad news, what sucks about them? :)

No need to reply, found this excellent article:

Hotel Access Control Explained

Nice article. Thank you for exploring the risk issues.

A point you didn't address is the case where there's now IP outside the door. If the thing is PoE powered or has a LAN connection, there's the added issue that the net could be the target. Yes, we still bring Bubba to use the prybar but now after that even the low end thieves have a kid on the team with a Rasperry Pi and a a 12 volt battery in their backpack, ready to do rude things over the network drop. There are reports of people accessing devices outside the building for net access, I don't think that's too far-fetched.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Directory of 55 Video Surveillance Startups on Jun 25, 2019
This directory provides a list of video surveillance startups to help you see and research what companies are new or not yet broadly known. 2019...
Hikvision Colorvu Camera Tested on Jun 24, 2019
Hikvision says their new ColorVu line captures "vivid chromatic images in darkness", with unconventional white light illuminations whereas most...
HID Mobile Tested on Jun 21, 2019
HID Global is one of the largest access brands, but their mobile access has had challenges. Indeed, the company has already restructured their...
Risk of Amazon Alexa Guard: No Battery Or Cell Backup on Jun 20, 2019
Amazon positions its Alexa Guard Service as a "smart home security system" and says it can help you "keep your home safe". However, the...
Genetec Synergis Cloud Link - Complex, Costly and Confusing on Jun 18, 2019
Genetec's Synergis Cloud Link is complex, costly and confusing compared to competitor access control architectures. Inside this note, we examine...
Biometrics Usage Statistics 2019 on Jun 17, 2019
While face and fingerprint recognition are used regularly for smartphones, it is not as common in physical security. In this note, we examine...
Farpointe Data Conekt Mobile Access Reader Tested on Jun 13, 2019
California based Farpointe Data has been a significant OEM supplier of conventional access readers for years to companies including DMP, RS2, DSX,...
Dumber Techs, Bad Box Movers, Says Australian Distributor on Jun 10, 2019
Techs today are "dumber" than they used to be, despite better education and training and that makes a typical day "frustrating" for one...
OSDP Access Control Guide on Jun 04, 2019
Access control readers and controllers need to communicate. While Wiegand has been the de facto standard for decades, OSDP aims to solve major...
China / US Trade War Impact Splits Industry on Jun 04, 2019
As the trade war continues to heat up, 170+ integrators told us "What impact will the US / PRC China conflict have on the industry?" Respondents...

Most Recent Industry Reports

Security Dealer 'Social Media Contractor' Program on Jun 25, 2019
A $20,000 video surveillance system can be yours for free if you are willing to post on social media about the security dealer. Good deal, bad...
Axis Live Privacy Shield Analytics Tested on Jun 25, 2019
Privacy is becoming a bigger factor in video surveillance, driven both by increased public awareness and by GDPR. Now, Axis has released Live...
Directory of 55 Video Surveillance Startups on Jun 25, 2019
This directory provides a list of video surveillance startups to help you see and research what companies are new or not yet broadly known. 2019...
Hikvision Colorvu Camera Tested on Jun 24, 2019
Hikvision says their new ColorVu line captures "vivid chromatic images in darkness", with unconventional white light illuminations whereas most...
China Subway Facial Recognition System Examined on Jun 24, 2019
A China city of 6+ million people has installed facial recognition-enabled gates in subways, allowing commuters to enter stations by simply showing...
HID Mobile Tested on Jun 21, 2019
HID Global is one of the largest access brands, but their mobile access has had challenges. Indeed, the company has already restructured their...
Genetec Beats Milestone For IHS #1 on Jun 21, 2019
For years, Milestone has touted that they are the #1 VMS. Now, Genetec has beaten them in IHS rankings. But what is this? Even other manufacturers...
Risk of Amazon Alexa Guard: No Battery Or Cell Backup on Jun 20, 2019
Amazon positions its Alexa Guard Service as a "smart home security system" and says it can help you "keep your home safe". However, the...
Exacq Remote Cloud Access Tested on Jun 20, 2019
Remote cloud access has been missing from most VMSes (including Exacq and Milestone). Now, Exacq, after releasing Cloud Drive Storage earlier in...
Briefcam Buys Frost Award* on Jun 20, 2019
Frost 'awards' are well-known and widely disrespected. Now Briefcam is touting their win. The way it has worked for many years is that Frost...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact