Mobile Credentials (BLE / NFC / Apps) Guide

Author: Brian Rhodes, Published on Nov 14, 2017

One of the biggest trends in access for the last few years has been the marriage of mobile phones and access cards.

In this guide, we examine:

  • 4 key management problems
  • 2 practical problems for users
  • BLE vs NFC vs Apps Comparison

[Note: This tutorial was originally published in 2014 and substantially revised in 2017]

Mobile Credentials Are Slick

At a basic level, using mobile phones or tablets as credentials to open doors has a big cool factor. Take this simple demo of one setup below:

In simple terms, instead of ringing a card, fob, PIN, or fingerprint at a reader, a user flashes a phone and the door is unlocked.

Based on the rather personal value of phones, the idea that they accompany users like keys, wallets, or ID cards and they are protected (ie: not easily lost or misplaced) items make them good potential card replacements.

Management Problems

However, the transition is not a simple one, especially for commercial access control. A range of credential and access control management issues crop up not often issues with traditional credential methods. These include:

*** ** *** ******* ****** ** ****** *** *** **** few ***** *** **** *** ******** ** ****** ****** *** access *****.

** **** *****, ** *******:

  • * *** ********** ********
  • * ********* ******** *** *****
  • *** ** *** ** **** **********

[****: **** ******** *** ********** ********* ** **** *** ************* revised ** ****]

Mobile *********** *** *****

** * ***** *****, ***** ****** ****** ** ******* ** credentials ** **** ***** *** * *** **** ******. **** this ****** **** ** *** ***** *****:

** ****** *****, ******* ** ******* * ****, ***, ***, or *********** ** * ******, * **** ******* * ***** and *** **** ** ********.

***** ** *** ****** ******** ***** ** ******, *** **** that **** ********* ***** **** ****, *******, ** ** ***** and **** *** ********* (**: *** ****** **** ** *********) items **** **** **** ********* **** ************.

Management ********

*******, *** ********** ** *** * ****** ***, ********** *** commercial ****** *******. * ***** ** ********** *** ****** ******* management ****** **** ** *** ***** ****** **** *********** ********** methods. ***** *******:

[***************]

***** *** *****

****** ******, **** *********** ****, *** ******* *** - *** the **** ** * ****. *** *** **** ** *********** a ***** ** **** ******, ********* ******** ********* *** ******** updates ***** * **** ******* **** *********** *** *********** **** to ******** **** ******. ** * **** ****** ** ** lost, *** ******** ******** * $** ***** ** *******, ***** if * ***** ****** ** ** ****, ******* **** *** hundreds ** ******* ** ******* **.

**** ** *******

** **** *****, ********* **** *** ** ****** ******** ******. Therefore, '***** **** *** ******', ** *** **** ***** ******** their ******** ****** *** ********** **** ******** ******** ********, **** how ********** ******* ******** ** ********** ** ******* ** *** phone ****** *** ******* ** ****** ******** ************ *** ******* management ********* ** ******** *******.

******* ******* *******

******* *********** ***** ** **** ******* ** *** ***** **** is ******? ** ******* ************* ****** *** ************** ** *********, even ** **** ****** ***** **** ********* ** * ******? Or **** ********* ************ ******* *******? ****** ***, *** ******** leaves * *** ****** ** ** *********** *** ********* ****** if ****** *********** *** *** ****.

******** ********** ***********

****, ****** ******* *********** **** *** ** ****** ** *** physically *********** **** ********* ***** ** **** ****, ****** *********** must ** ******** *********** ** * ****** **** *** ****** unseen. ***** *** * *** ********* ****, *********** *** ****** for ****** ******** ******* ** *** * ****** ***** ********** is ***** *********** ** *** ***** ******** ** * **** that *** ****** ** *********** ** **** *********.

Practical ********

*** ** ******** ** '****' ********** ******, *********** ******* ******* cards ** **** *** ****** ******* ****** '****' ******** ****** as ****, *********:

******* ** ** ******* ***

****** ******** ***** **** *** ***** ******* **** *** ****'* picture, ****, *** ***** ***** ******** *******, ***** *** **** often ****** ** ******** ** ******. ***** * **** *** be **** ** ******* * ******* **** * *****'* ****** on *******, *** ****** ****** ** ********* ********** ** * glance **** * ******* ** **** *** ****.

********** ***********

*** *** ***** ** ********* ****** **** *** ** ***** with * ****** ***** ****** ** ****** *********. **** ******** as ***** ** ******* **** *** ****** **** ******, *** their ******* ** ******** *********** ******** ** ********* ********** **** or *****:

******, ******* *****, ********* *********, ******** ********, *** **** *****-******* demands *** ********* ****** **** *****. ***** ***** *** **** to *********** ********** ** ***** ********** ** ******* ***** **** with

Three ***** ****** *******

** ***** ** *******, ***** ****** ******* ** ****** *********** are **** ** ******:

  • *** (********* *** ******)
  • *** (**** ***** *************)
  • *** ***** ***********

**** *** * ****** ** ******** ******* ********* **** *****, frankly ********** *** **** **. **** ** **** ******:

BLE (********* *** ******)

***** * ******** ****-******* ** *** ****** *********** ******, *** is *** *** **** ****** ****** ****. *** ****** ** due ** *** ******** ********* ********* ** *** ** ****** phones, *** ********* * ****-******* ************* **** ***** ******* ********** of ***** **** ** ***********.

******* *** ******* ** **** *** ********* ***** *** **** or *** **** ******** ** ***, *** ************* ****** ****** money ** ******* *** ********* **** ********** ** ******* ****.

** ***** ** **********, *** ******** ****** ***** ** ********, so **** ***** ********* *** * *********** *** ******* ********* of ****** ********** *******.

*** *** ****** *** **** ****** ****** ** ****** *************, given ******** *********** ********* ********** *** ***/** *** ********* *****. Many ******** ***** ******** **********,****, *********, *** ***** ********** *** *** ** ******* ***********, including *******:

** ******* *** ******* ** ****** ** *** *** *** ****** ** ****** ***********.

NFC (**** ***** *************)

**** *** ****** ****** *******, *** *** *** ****** *********** giant *** ****** ******* ** ***** *** ** ***** **********/********** credential ****** ** ******. ***** ************ *******'* '***** *** **' ****** ********** *** ******* ** **** ***, *** *** *********** **** to **** *** **** ****** ** ***.

** ***** ** *********, *** *** *******, ********* ************ *** limitation ** ***** ***** ** *** * **********. **** ** NFC **** *** **** ******* ** ** ****** **********, ** can ** **** ** * ******* **** *** ***** ********* by *******.

*******, *** **** ** *** ** **** ** ***** **** manufacturer ********* ** *** *** ******. ***** *** *********** *********** adoption **.** *** ****** ******* **** **** ********* ****** ** demand/ *******, ** **** ******** **** ****** *** *** ***.

** ***** ** **** *** **** ******* *** *** **'* closest ********** ****** ***, *** ***** ***** ********* ***********:

*** ******* ********** ** *** *** ****** *** **** ******* as ******* *** *** ******* ***********. ******, ***'* *********** *** a ******* ******** ** *********** ****** ***'* *** ******.

App *****

** ******** ****** ** ***** ** *** ** ***** ** software ** ******* * **** ****** ******** ****** **** **** the ***** **** * **********. *** *** ****** ***** *** seen ** ******* ********-***** ********* *************, *** *** ***** **** ********** ********* ********,*****, ********, *** ******.

***** **** ******, ****** ****** ******* ** **** ******* **********, but ****** ******** ********* **** ********* **** ***********. **** ********* requires *********** *** *********** **** **** ** ***** ** ********, and **** ******** **** ******** ******** ****** ****** ****** ******* firewalls ** **** ***********. *** ***** *******, ** ** *** expect ** *** * ****** ****** ** ***-***** ****** ***********, but ** ******* * ************** ***** ***** *** ***** **.

Comments (12)

*** *** *** ************* ** *** ********** *****. ****** *** devices *** **** *** *** *** ** * ********** **** distribution **** ********* *********** ** *** *** ******** ** **** as *** ********** ** ***** ************* *** ******** ******** ******** those ******* ** ******** *** ***.

* **** ***** ** * **** ** ***, *** **** of *** ***** *** *** **** ***********. ** *** ********* by *** ************ **** *-*$ * ***** ***** ** ********* the **** ** * **** ************ *** ** **********. * believe ***** ****** ****** ** ** *** *$ ***** ** less *** **** **** **** ** ********* *********** *** *** market.

******* *** ************ ********* ** ******* *****. *** * *** people *** ****, *** **** *** ***** *********** **** ** 000s ** ********** *** ** *** ********* *** **** ********* with ******** ************ *******.

* ********** *** ****** ** ***** ****** ******* *********** ** this ****** *** ** ****** ***** ** *** ********** **** are *** *** *** ** **** ** ********** **** ***** solutions. *******, *****'* * **** ******** ****** ***** ********** *****. This ** ***** ** ***** *** ******** ** ****** *** it **** ******** * *****, *****, ***. ** ****** ** is *** ******** ** **** *** **** ******** ********* ** the ********* ************, *** **'* **** ******, ********, **** ** send ** *** ********** ****** *** **** ** **** ** a ******* *** ** * ***** ****** ** ****. *** initial **** ** ******** *** ** ******** ** *** *** is ********** ** *** ****** **** ** * ***** **** period ********. ** ** **** *** ********* **** ** ** used **** ******* ** *** ****** ***** ** **** ******* wioth ***** **** ********, ****** **** ********** ************ ** *** main ******* ** *** **** ******* *** ******** ****** ********.

**** ** ********* ** ***** *** ****** ******* ***********?

** *** ********* ** *** ******** *********** ** *** **** since * ** **** *** ** ****** **********. ******* ** certain ************ ** ** ****** ****** ***** ** ** **** to **** ** * ****** ****** *** **** ** **** of * ************ ****** ** ***** **** *******. **** ** being ******** *** ***** *** **** ** **** ****** ****** a ***** ***** **** ****** **** ** ********, **********, *********** operators ******* *** ******* ** **** **** * *****. ** course ** *** **** * ****** *** * ******** ******, you ***** **** **** *** **** ********, *** *** **** a ********* **** ****** ** ******. *******, ** *** **** is *** **** *** *** ***** *** *********, **'* **** flexible ** **** **** (** **** ** ********* ** **** with ******** *****) *** ** **** *** ***** *** ******** for *** ******* **** ****** (** **** *** ****** *******). Of ****** ** ¡** **** ***** ********* *********** ** ***** not ********* **** ** ***.

***'* ** ** ****** ******* ***** **** ******* ** ******** gates?

******, ** ** *** ******** ** ******* *** ** **** as * **** ****** ******* ****** ** *** *** ** all ********** ****** ******* *** ********, *** ******* ** *** title ** *** ****** ** **** **** "****** ***********"

***** *** **** ****** ********** **** ** ***** '*****' ** a *** *** ******* ********** *******, * ** ********* ** keeping ** ********* **** **** ****** **** ** ******* ********** more ******* ******-***** ****** ******* ***********.

*****, **** ** *** **** ** "****** **********"?

**** *********** *** ** ** ***** ***** *** ***** ** merge ****** ******* **** *** *******.

**** * **** **** ***** *'** **** **** ****....*** **** she's ** ********, *** ****** *** ******** **** *** **' memories.

******** *** ****... ***** *** ** *** ******** ***** *******...

**** *******, *** ** ** *** ***** **** ** ** the *** ** *** ******* **** ***'* ****** ****** ********* do *** ******* *** ** **** ** ***. ****** ** readers *** ** ******* ** ******* ******, ****, ** *******.

***** ******* :)

****** ***** *********** *** *** ** ************** **** **** ********* ** ************.

***

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Isonas Cofounders Split, Launch Partner/Competitor on Nov 16, 2017
Breaking up is hard to do, especially when door access security is at stake. But that is exactly what has happened at Isonas. Senior employees...
PoE UPS Tested (Energy Reconnect) on Nov 15, 2017
In security, backup power is important, but most often requires UPS systems or extra cabling to devices for low voltage power. Now, some have...
Long Range Access Control Readers Tutorial on Nov 10, 2017
One of the classic challenges for access control are parking lots and garages, where the user's credential is far from the reader. With modern...
Selecting Access Control Readers Tutorial on Nov 09, 2017
Given the variety of types available, specifying access control readers can be a daunting process. However, focusing on a few key elements will...
Assa August Smartlock Pro Tested on Nov 07, 2017
Failures and set backs in the smartlock business have been commonplace (e.g., Lockitron Admits Failure and issues from our 2017 Kevo test). But...
Avigilon Access Control 2017 Examined on Nov 01, 2017
For more than 4 years, Avigilon has been in the access control business, since their May 2013 acquisition of RedCloud. Since then, Avigilon has...
ONVIF Wire Free Camera Tested (Netgear FlexPower) on Oct 31, 2017
Totally wire-free cameras are a hot growth market. But they have had one major problem: Proprietary. IPVM has tested Netgear's Arlo and Arlo Go,...
Access Control Physical Security Tutorial on Oct 30, 2017
The physical security of access control components is critical to ensuring that a facility is truly secure. Otherwise, the entire system can be...
The Milestone Personal Demo Marketing Campaign on Oct 30, 2017
Waste of money or emarketing innovation? In a program being heavily promoted on their social media channels Milestone is offering to...

Most Recent Industry Reports

Nest Secure Alarm System Tested on Nov 16, 2017
Google's expansion continues, this time into home security with their Nest subsidiary's move into alarm systems. They paid more than a...
Dahua Forbes 'Next Web Crisis' Vulnerability Dispute on Nov 16, 2017
The buffer overflow vulnerability in Dahua products is not in dispute, in fact we covered it when it was first published. What is in dispute is...
Isonas Cofounders Split, Launch Partner/Competitor on Nov 16, 2017
Breaking up is hard to do, especially when door access security is at stake. But that is exactly what has happened at Isonas. Senior employees...
Hikvision China Criticizes The WSJ on Nov 15, 2017
Hikvision, through the Chinese government's authoritative news service, has criticized the WSJ investigation into Hikvision. In this...
PoE UPS Tested (Energy Reconnect) on Nov 15, 2017
In security, backup power is important, but most often requires UPS systems or extra cabling to devices for low voltage power. Now, some have...
Axis Commits To Long-Term Firmware Support on Nov 15, 2017
With the rise of cyber security awareness, and a general increase in hardware reliability, "software warranties" may prove more valuable than...
Hikvision NVR 4.0 Improvements Tested on Nov 14, 2017
Hikvision has released firmware version 4.0 for select NVRs, touting two years of research and development, and claiming "the new generation GUI...
Mobile Credentials (BLE / NFC / Apps) Guide on Nov 14, 2017
One of the biggest trends in access for the last few years has been the marriage of mobile phones and access cards. In this guide,...
Dahua Launches Electric Cars on Nov 13, 2017
Embattled mega video surveillance manufacturer Dahua is now electric car manufacturer Dahua. Let the jokes begin: But is the joke on Dahua's...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact