Mobile Access Control Shootout - Farpointe, HID, Openpath, Nortek, Proxy

By Brian Rhodes, Published Jul 29, 2019, 01:33pm EDT

One of the biggest rising trends in access control is using phones as credentials but which offering is best?

IPVM Image

IPVM has tested five of the leading platforms here:

Inside we rank Farpointe, HID, Nortek, Openpath, and Proxy to see who performs the best.

Our rankings are based on:

  • Overall performance
  • 3 application rankings across (1) New Small/Medium Commercial Access, (2) Retrofit Small/Medium Commercial Access and (3) High-Security Access
  • 10 technical and operational criteria including app performance, read ranges, credential issuance process, 3rd party integration, form factor support and more

Overall ********

** ***** ** ******* performance, *** **** ****** products ****** **** **** this:

IPVM Image

** *** '****' ***** are**************. **** ******** ***** different *********, **** *** offering ******** ****** ****** and ******* **** ******* on ****** ****** *** available ** ***** ********. Compatibility **** **** ******** credential *******, ********* **** support ** ***'* *** iClass **** *******, *** both **** ****** *******/ Wiegand ******* **** *** readers **** **** *** majority ** *******.

*******, *** ** ***'* biggest ******** ** * cumbersome *** ******* ************ process ** ********* '******', and ****** ******* ***** quantities ** *** *********** that *** ** *** cost-prohibitive *** ******* *******.

******, **** ******* ******** has ******* ********* ** the **** ** ***'* weaknesses, ********* *** ****** of ***** * ******** access ******* ****** (** none ******), ** ***** a ********-****** ****** **** integrates **** ******** *******. Hardware ******* *** ******* to *** ******** ****** models ********** ****** ******** like '*****' *** *** credentials, *** *********** ** both **** *** ******** tested ******** *** ******* error.

*****, ******* *******, ***** lower ** '****'. ***** performance *** ********, *** product ***** **** ** basic ******** **** ************ App *******, ***** **** support ****, *** ** experienced ********/******* ******** ** our ***** ******.

********* ****'* *********** '**********'. ***** ******* product *** *** ****** are **** ******* *** reliable, *** *********** ** limited *** ******** **** no ****** ****** *******, no ****** '*****' ********, and ** ******** *** features **** **** ******* from *** ******.

** **** *****,******'* **** ********* '********', ** ** lacks ****** ******** ********** format *******, ** ******* to *******, *** *** a ***** *** **** of *** ******* ** manual ********, ***** *** a **** *** *** many ********** *******, ** may ******* * *****, simple ******** *** ***** and ***** ******** ****** systems.

Specific ****** *********** ********

********* *** ******* ** specific ****** ************, ** take *** ******** ********* and ********** *** ********* them **** ***** ******** but ****** ****** ************ below:

  • *** *****/****** ********** ******
  • ******** *****/****** ********** ******
  • **** ******** ******

New *****/****** ********** ******

IPVM Image

** **** ********, *** application ******** ** ******** access ****** *** ***** include * ********** ******** as **** ** *** installation.

******** ***** ****** **** because *** ****** *** be ******** ** *** own ****** ********** *** credentialing ******, ****** **** only **** ** *********** with ******* *** ***** access ******.

***** ****** **** ******* HID ****** *** *****, based ** * *********** of *** *********** ****** pricing, **** *********** **** other (***) ****** ******* via **** *** *******, and **** ******* *** performance *** ********* ***** on ******.

******* ************* **** *** make * ********** ** hands-free '*****' ******** **** all ***** ******** *******, but ******** *** ***** provide ** **** ** additional ******** ** ******* configuration.

*******, ***** ********* ****'* reader ** * **** functionality ***, ** ***** more **** ***** *******, and ****** ******** ******** like **** ******* ***** device *******.

******'* **** **** ** not * **** ***, due ** * *********** of **** ******** *********** (No **** *** *** kHz ******* ****), *** using **, ** ****, limits *** ************* ** companion ****** ********** ****** chosen ** **** **** it.

Retrofit *****/****** ********** ******

IPVM Image

*** **** ********, ************ would ** * '****-**' or **** ** ****** enabled ****** *** ** existing **** ****** ******.

*** ** ********* ****, given *** **** ********* of '****** *****' ******* available ** *** ******/********** SE ****, *** ****** implementation ** **** ** Wiegand ** ******* *** readers.

****, ************* **** ******** physical *********** ** * big ****** ** **** category, *** **** *** and ******** ******* ******** compatibility **** **** *******, both ** *** *** or **.** *** *****.

** * ****** ******, Farpointe *** ***** **** more ******* *** ****** support, *** **** ******* form ****** *******, ****** requiring *** ** ******* mounting ******.

*****, ****** ******** ****** here, ********** ***** *** higher ****** ******* *** single ****** **** ****** compared ** ***** *******.

High-Security ******

IPVM Image

*** **** ********, ******** features **** **** ****** Channel *******, ******** ********* phone **** ****** *** features *** *********, *** both *** *** ********* Data ***** ***** ********.

** * ****** ******, Openpath *** ***** ****** offer ***** **** ** their *** *********** ********* formats **** *** *** meet ***** ****-******** ****** specifications.

****** ****** **** ******* and *** *** *******, essentially ********* ** **** high-security ********.

Criteria ********

**** ***** ********* ********** rankings:

IPVM Image

***** ** ******** ***:

  • *** ***********: *** ******** *** quickly *********** *******, *** which ************ ****** (*** or ***) ******* ***********.
  • ***********-******** **** ******: ** **** ******** credentials ****, ** ****-***** (ie: ******* ****, **********) and ***** ***** (**: door *******) ************ *** compatible
  • ****** *** ****** ********: *** *** *** unlock ***** *** * software ******? *** ******** logs *********?
  • '*****' ** ***** **** activation: *** ****** ****** in ******* *** *** reader ********* (*******) ** open *****?
  • **** ** ******* *******: *** ******/**** *********** supported? ***** **** *******, as **********.
  • ******** ********** ******* (*** kHz ** **.** ***, etc): *** ***, ******, DESFire, ****, ** ******* formats **** ** *** reader?
  • ****** **** ******: ***** ******** ***** of ****** *** *********, and *** **** **** impacts **** ***********.
  • *********** **** *** ***** Access ******** ********** ******: ** **** ****** does *** ****** ****** platform ********* *** **** of ********** **** ******** access *******?
  • **** *** ****** ********** Pricing: ******** **********, ********* minimum ********* ** ****** systems.
  • ********** ******** *******: *** *** *********** assigned ** **** *******? Is ***** ****** ********? How *** *********** *******/*******?

Overall *** ***********

***** *** ** *** apps ** ****** *** available ** ******* ** iOS ********, *** ******* performance *** **** **** Openpath *** *****'* *** with ** ****** '*****' in **** *** ******* attempts. ** ********, ***** two **** **** *** alternative ** *** **** to ****** ***** ******* needing ** ** ****** BLE ** *** *****.

*** ***** ***** ** a ****-**-**** ********** ** all ****, ******* *** layout *** ******** **** between *********:

IPVM Image

***** *** ********** ******, the ******** ** ******* to ******** *********** **** all **** ********** *********** by ****** ****** **** readers.

*******, * *** ******** in ******** *********** ** which ******** ************* ****** the *** ****. *** chart ***** ***** *** overall ****-********** **** *** the ******** ******* **** support:

IPVM Image

** ****, ***'* ********* is ***** ********* ** which ******** ****** ** used. ** *******, ** experienced ****** ******* *** to ******* ***** ****, but ***** *** ******** in ** ******.

*******, ***** *** ** only ** ****** *** Android *******, *** **** not **** ***** **** iPhones, ********* ** * downgraded ***** *** *** versus ******** *** *****.

Read *****

*** ******* ** ******** a ****** **** ******** distances ** * *** factor ** ************ **** vehicle *****, ******* ******* or ****** ****** ******* entries.

** **** ****, *** 'WiFi *******' ********, ******** and *****, ***** ********** even ** *** ****** BLE/NFC ***** ** *** reader *** *** ******* in *** *** *** may ********** ******** ****** of ***** ****** ***********.

*******, **** *** *** Openpath ***** **** ***** reach ******* ** **** access ************ *** *** be ********** *** ** 3' - *' **** no ******* ********* ** configuration ******. ************, ******* sensitivity ********* *** ** configured ** *** ***.

********* **** **** ******* good ********* *** ****** up ** **' **** no *****. *******, *** reader ** ****** ***** 'long *****' ** ** extra-cost ******, *** *** basic ***** ** *** sensitive ** ********* ****** 1.5 **** *** ****** and *.* ****** *** physical ***********.

***** ****** ******* * similar '***********' *******, *** ranges ********* *** ***** close, ****** * ******, and ** *** ******* distances ****** *** **** range ************.

App ****** ********

* ************** *** ***** and ******** *** ******* within ***** **** **** permit ***** ** ****** doors **** ** ******* the ***** ** *** or ***.

**** ** ****** *** 'buzzing **' ******** **** remote ***** ** ***-******** distances **** ******* *** gates.

IPVM Image

***** *** *** **** we ****** ******** *** ability ** ****** ***** with ****** ******* ** physical *****, **** ***** two ********* **** *********.

*****/*********

***** *********** **** ******* require *********** ** ** close *** ********, ********, Proxy, *** ****** ****** users ** **** ***** phones ** ***** ******* and ****** '*****' ******* to ****** * ****.

*******, ******* *** *** Farpointe **** ***** **** and ******* ***** ** physical ******* ***** ****** to *** ******.

*******, *** *** '*********' option, *** ****** ** not ******* ** **** platforms *** ** *** security **** ** ************* unlocking ***** **** ***** pass ******, *********** ******** unauthorized *********** ******.

OSDP *******

*** ******* ********* *** latest ******* ** **** in *** ****, ********* Data's ****** *** *** iClass **. *******, *** supports *** ******** ** a ******* ******, ***** Farpointe ******** ** **** on ********, ****** ****** Conket ****** ******.

*** ****** ****** ******* support *******, *********** ****** ***** **** remains *** **** ****** method** ********** ******* ** controllers.

IPVM Image

** ****, *** **** shows *****'* **** ****** are ******* *** *** most ****** '****** *******' profile ** *** *********, which ** *** *********.

Credential ****** *******

** ***** ** ******** credential *******, *** ****** may ******* ********** ************* when ********. **** ******* must ** ******* ** support ****** *** *** or **.** *** *******, with *** ********* *** option *** **** ********* in * '**********' ** reader.

** **** *****, *** iClass (**.** ***) ******* is ******* ** ******* card ***/****** ******* ****, and ** ****** **** elements *** ****, ***-*** readers ****** ** ****.

IPVM Image

**** **.** *** ******* support (** *** ** ordered ** *** **** price) ** ******* ****** DESFire *** ***********, ****** Nortek ***** ** ******* to *** *** ******* only.

3rd ***** *********** & ********** ********

** *** ********* ** tested, *** ****** *** the ****, ** ******* access ******* **** ***** a ****** ************** **** the ********. ** ********** ***** *******, *** ***** ****** platforms ********* *******,*******, ****-********* ******* ****** ******* integrations ** *** ***********.

** *** **** ** Openpath, *** *****-***** *** portal *** ******** *********** can **** ** *** application *** ******** *** entire ****** ****** ** used ** *** ******* access ********** ******. ** used ** **** ***, the ********'* *********** *** credential ******** ******* ** a ****** ***.

*******, ******** *********** ** not ******* ** *** 3rd ***** ******** ** tested, *** ***** **** all ***** * ********* to ******** ****** * database ** ***** *** .csv ****, **** *** require ****** ******** **** records ** * ******** platform *** ****** ******.

** *** *****, * web-based ****** ***** *** database *** ** ****** accessible, *** ********** ******** and ********** **** **** place ******** ** *** access ******.

Form *******

****** **** ******* **** manufacturers ****** *** ** follows:

  • ***: * ********* ***** and ******* ** ******* keypads ** ******* ******.
  • ********: * - ******* and **** *****
  • *****: * - *******
  • ********* ****: * - mullion **** * **** mount *******
  • ******: * - **** mount

***** ** * ******** comparison ** *** ******* we ******:

IPVM Image

*******, ******'* **** **** is ****** **** ****** and ** * ***-******** size **** *** ** aesthetically ******* ** ****** applications.

System *******

****** *** ********** ******* break **** ** ***** in *** ***** *****:

IPVM Image

** ******* ******* *** readers ****** **** ~$*** for *** ** ~$*** for ******'* **** ****, although *** ******** *** provide ****** *** ******* discounts.

********** ******* ****** **** ~$6.50 *** **** **** HID *** *****, ** 'one ****' ***** ** $8-$10 *** ****** **** Farpointe ****.

** ********, ******** ***** and ******** ** *** charge *** ****, *** a ******* ************ *** per ****** **** ******* in * ***** ******* credential ***** **** ************* 'per ****' *****.

**** * ********** ***********, Openpath *** ** ******** as ** ***-**-*** ****** system ****** **** ********* a ******** ** '***-*****' reader ***** ** ***** systems. ******* ***** ** marketed ** * ******** product, *** * ***** replacement ****** ******.

***** ******* ********* ****'* readers **** ~$***, ****** OSDP **** ~$*** ****** comparable *** ****** ~$***. However, *** ***** ******** systems, ********** ***** *** favor *********, ** ****** is *** ************ ***** or ********* ******* ****. With *********, ***** **** pay ******* ~$* - $10 *** * ****** access ********** *** ** a ***-**** *******.

BLE/NFC *** *** **********

*** ****** ** *********** we *** *** **** is ** ***/*** ************ was *********, ** ** asked *** ******* ** clarify *** **** ** secured.

***, ********, *** ***** all ******** **** ** sensitive **** ** **** 'in *** *****'.

*** ********* ** **** their '****** ******' **** use ******* ********** **** and **** *** ******* by *********** **** *****:

**** *** **** ******* years, *** ****** ****** has **** ******** ******* rigorous ******** **** ******* amongst *** ************* *** security *******, *********** ***** by ******** ******** ******** firms, *** ******** ******* by *** *********** ******** teams ** **** ** the *****’* ******* ***********.

*** ****** ****** **** not **** ** ********* or *** ******** ****** of ************* *** ********. Rather, **** ********** **********, designed *** *** ****** access *** ****, ** used ** ******* ******* and **** ******** ***** the ********** ** ** rest (** *** ****** device) *** ** ****** (from ****** ** ****** and **** ****** ** reader). **** **** ************* standards *** ******* ******** used ** ******* ************** and ********* ******** ***********.

******** **** ********* **** no ******* *** *********** unencrypted *** **** ***:

** *********** *** **** transmitted ** *** *****, using * ******/******* *** pair. ** *** ***-**-*** encrypted *** ** ******** authenticate **** ***** ** the ************, *** ***** to *** ****** ******* system. ...**** ** ** attack ** ******** ** intercepting *************, **** ***'* decrypt ********.

*** ****** ****** ****** no *********** ** ******* and ******* **** ** a ***** ******* *** mobile ****** *** ****** control ******. ** *** mobile ****** ******, ** use *** ********* ******** (eg *** ** ****** Enclave) **** ******** ** store *** ******* ***.

***** **** *********:

***** **** *** ******** credentials ** *** *****, and **** *** ***** them ** *** ***** on *** ****** *****. We **** ***** *********** into * *****-***** ****** use ***** **** ** individually ********* *** **** user *** ******, **** a *** ****'* ****** per ******. ***** ****** are ****** *********** ** the ****'* *****, *** are ******* **** **** expire, ****** ** ******** to *** **** (** different) ******, *** ****** be ********* ** ******* the **********. *** ***** itself **** *** **** the **** ****** - we ***** *** ****'* phone ** ** ********* device.

** **** ****** **** comments ** *** **** Farpointe *** ****** *******.

Device ******* & ******** ****

*** ********* ******** ******** were **** ** **** test:

  • ****** * **** ******* iOS **.*.*
  • ** ** ******* ******* 8.0.0 '****' ******** ******* H83030C
  • ****** ******** ********: *.*.**
  • *** ****** ** *** (model: **************) ********: **.*.*.*
  • *** ** ***** ******, MDP-00870 ***. *
  • ********* ****, ******* *.*.*
  • *****, *** ******* *.**.*, Build ****
  • ******** ******** ******* *.*.*, Software ******* *.*.*

Comments (34)

Brian, nice work on this! This is IPVM's biggest ever access control test and, by extension, the industry's.

As we expand, Brian has moved to focus 100% on access control so if you want us to do more, please show your support and feedback on what else we can do to better research the access control market.

Agree: 15
Disagree
Informative: 3
Unhelpful
Funny

Great article. Well researched, well written.

As an end-user with final say on purchasing for a mid-sized entity, articles like this play a key role when looking at equipment for deployment or life cycling. Your research is put to good use.

Would love to buy the team a beer at GSX if they're making it into Chicago.

Agree: 1
Disagree
Informative
Unhelpful
Funny

Thanks Brian, good to see the device version and firmware used in the tests. Looks like you are the dedicated access control guy now.

Here is an idea IPVM may or may not have covered. A comparison of different access control manufacture's hardware real estate footprint for start up systems, scaling systems and overall IDF/Data closet space needed.

Example Lenel/Mercury 16 reader layout using CTX-6 enclosures versus Life Safety Power, Trove along with gutter boxes, power supply real estate all relative to a 4' x 8' back board plus how many card readers can fit that surface area - headend.

Example 2: Software House/Lenel/S2/Identiv/Amag/Vertx comparisons and scalability, how much head end space can you get into one location etc. Which system has the most bang for the buck?

Example: Rackmount + IP edge systems vs. Wall mount systems, power, battery backup.

Agree: 1
Disagree
Informative
Unhelpful
Funny

Hopefully you can test STiD mobile readers in the next tests. They have a pretty strong offering, and the ability to open doors remotely through app + several gestures using your phone and tapping the reader to unlock doors. 

 

Agree
Disagree
Informative
Unhelpful
Funny

Thanks for the recommendation.  STiD is a low- recognition brand, but there has been interest among Genetec dealers.  Their offerings are often mentioned as good fits for high-security systems, which is interesting.

We will reach out to STiD and queue up a profile post later this summer/ early fall.

Agree
Disagree
Informative
Unhelpful
Funny

Hi Brian, when you are ready to test STid Mobile ID please let me know. I will be more than happy to provide you with Sample Units & access to the Free portal where virtual credentials are managed and designed. STid North America out Dallas Texas will be more than happy to assist.

Agree
Disagree
Informative
Unhelpful
Funny

Hello Frederick,

Thanks for connecting on LinkedIn. As mentioned, the best way to start is with a company profile post on STid. I'll send you some questions and begin things there.

Best regards,

Agree
Disagree
Informative
Unhelpful
Funny

STid has 6 modes of identification through their STid Mobile ID App. Contact mode, Tap-tap mode (taping your phone), Remote mode, hands-free mode, slide mode (gliding your hand over the reader) and most recently Voice mode (using iPhone SIRI by saying, "Hey SIRI Open Door").

Agree
Disagree
Informative
Unhelpful
Funny

These will be perfect when you can add a card into Apple Wallet or Google Wallet, just tap and enter without crap third party apps.

Agree: 2
Disagree
Informative
Unhelpful
Funny

Great report as usual Brian and congrats on the official access control writer/tester. 

Agree
Disagree
Informative
Unhelpful
Funny

Great report! 

I would love to see how Keyscan K-Smart 3 readers fit into this comparison.  

Agree
Disagree
Informative
Unhelpful
Funny

I'm genuinely curious why you didn't include LenelS2's BlueDiamond credential.   They seem to be ramping that up fast to be a direct competitor to HID whether you use the Lenel platform or not.

Agree
Disagree
Informative
Unhelpful
Funny

Just to clarify why Blue Diamond (our pre-S2 buy post) was not included:

  • Overall the line has low brand recognition and has not been mentioned often, although this could change as time progresses.
  • One must be a Lenel or S2 dealer to resell and support them, limiting interest.

Should those factors change in the future, IPVM would not avoid testing them.

 

Agree
Disagree
Informative: 1
Unhelpful
Funny

Nice article, but a bit confused about the credential pricing.

According to your table,
$6.50 a year per credential = bad.
$20 a month per reader = good.

Surely this depends on the ratio of readers/credentials. 
3 readers for a year = $720, so that is the same as 110 users.

What ratio of users/readers do people expect?

Agree: 1
Disagree
Informative: 1
Unhelpful
Funny

Thanks for the question.

The 'bad' rating relates to the minimum required purchase. 

HID enforces a 100 credential minimum on orders, so for that 3 reader a year system, if the user only has 25 'cardholders'/app users the cost is still ~$650 - $700. (It would be <$250 for physical credentials, or even other 'mobile' products described in the report, for the same number of users.) 

The 'per reader' offerings scale per reader, with no minimums.  However, once HID systems scale to 101 users, the HID cost doubles, but remains the same with 'per reader' systems. 

HID specifically mentioned they target their mobile platform toward larger deployments at this point, which is fair. We asked HID if they plan to lower the minimum quantities for smaller systems. They told us:

Lowering the minimum order quantity is something we’ve considered but it will stay at 100 user licenses for now.  Delivering a great overall onboarding, administrative, and user experience is very important to HID.  With the MOQ at 100, we already have over 3000 organizations using the service.  As you can probably imagine, it takes almost as much effort to stand up the service for a 10-user population as it does a 1000-user population.  Before we consider offering a lower minimum license requirement for very small businesses, we want to ensure that our services, processes, internal support, and channel partners can scale accordingly. 

However, considering the majority of access systems are not 'big', (only ~26% of systems have more than 33 doors, and most less than 16), HID's solution can be a tough fit, especially if only a few users are issued mobile credentials.

If fundamental 'mobile' pricing changes, we will update this report and findings as appropriate.

Agree
Disagree
Informative: 2
Unhelpful
Funny

Thanks for the reply,
Just looking for more clarification here.
Taking you 3 readers, 25 cardholders numbers, I calculate the following:

Openpath and proxy would be $20*12*3=$720 per year.
HID would require the minimum 100 credentials so would be $6.50*100 =$650 per year
Farpointe Data would be $8-$10 * 25? = $200-$250? perpetual?

Agree: 1
Disagree
Informative
Unhelpful
Funny

Surprised you didn't include VIZpin (ECKey) and Latch in this review.

Agree
Disagree
Informative
Unhelpful
Funny

Why wasn't Brivo included in the analysis...to my knowledge they are one of the first to offer mobile credentials for their cloud-based ACS.

Agree
Disagree
Informative
Unhelpful
Funny

Each of the 5 products we included offer retrofit ability with other access systems. 

Brivo's product only works when Brivo is the primary access system and is only sold/serviced by Brivo dealers, limiting interest.

Agree
Disagree
Informative
Unhelpful
Funny

Still, the Brivo Mobile Pass app with their "Magic Button"  connected to a Brivo (WaveLynx) reader sure makes deploying mobile credentials and training the end user simple. My limited experience with mobile credentials has taught me that the system they are connected to/integrated with, and the apps on the mobile devices themselves, can make for a fairly complex process for the end user. My experience with HID (tap and go/twist and go) made me wonder who would ever go through so many steps to issue a credential. While I have heard the HID set up has been simplified, my first experience was enough to make me look for a different solution. I would be interested in seeing a report on who has the best overall solution for issuance and use of mobile credentials as part of a complete solution. Thanks again for these types of reports.

Agree: 1
Disagree
Informative
Unhelpful
Funny

Great test, and very thorough! 

We primary leverage HID's mobile SDK and API for our customers but have expanded to include Proxy's readers. The Proxy reader is very responsive and we've been impressed with them thus far. Looking forward to seeing how customers react to these competing mobile/reader technologies. 

Agree: 2
Disagree
Informative: 1
Unhelpful
Funny

Brian, report looks good and makes the mobile compatible reader ecosystem very understandable. What would be helpful for systems like ours (Kisi) is an overview of traditional systems that allow connecting a reader via API instead of Wiegand/OSDP. Quite a few folks ask for this and I believe Lenel, Genetec, S2 & others have that ability.

Agree
Disagree
Informative
Unhelpful
Funny

Quite a few folks ask for this and I believe Lenel, Genetec, S2 & others have that ability.

Thanks for the comment. Are API connected readers in demand?  Or am I reading that wrong?

OSDP is one of the more common connection schemes (does not need/use field configured API, but factory configured ports for the protocol), yet even then ~70% of installers do not use it.

Despite Wiegand being downright trashed for being insecure and antiquated in the new age of reader tech, it is the predominant connection method. OSDP is barely used, for all the advantages and ease of configuration.

Provided using APIs require additional install effort, which reader features typically need API?  

Agree
Disagree
Informative
Unhelpful
Funny: 1

Yep, API connected readers are in demand :) 

Agree
Disagree: 2
Informative
Unhelpful
Funny

What is the definition of

"API connected readers"?

Agree: 1
Disagree
Informative
Unhelpful
Funny

API connected readers means connecting with readers like any other IT software via API calls.

Agree
Disagree
Informative
Unhelpful
Funny

You probably meant to say API calls to your "cloud"?

Am I right?

Also, where is user database being store?

Cloud and controller

or cloud-only?

Thanks

 

 

 

Agree
Disagree
Informative
Unhelpful
Funny

API based systems can work to a backend that is either local or remote. Typically they would need a HTTPS connection back to the backend.

One reason why these are often used with the cloud is that this minimizes the configuration required. The reader can be pre-configured with a certificate identifying itself, and with the URI of the API to talk to. It can then just be plugged in and used.

If using these with a local backend, then many of those things need to be configured, and this done per reader.

Agree
Disagree
Informative
Unhelpful
Funny

Bernhard:

One aspect of this that might be confusing to some (me specifically) is the use of the term 'reader'.

In general, when IPVM and others use the term 'readers', it describes an input peripheral to access systems.  Readers are to access controllers as keyboards are to PCs.

However, some call controller/reader combination units just as 'readers', especially edge architecture systems. It is rare for readers to have ethernet connections or integrated web servers, but it is common for controllers.

So in this case, are combination controllers/readers the ones connected via API calls?  Or are you specifically talking about (peripheral) readers only?

 

Agree
Disagree
Informative
Unhelpful
Funny

Awesome report! Thanks for putting all the effort into it. Curious why Lenel’s BlueDiamond Mobile credentialing Solution wasn’t considered for this report?

Agree
Disagree
Informative
Unhelpful
Funny

Thanks for the report.  So all of these are physical access control credentials on a phone.  What is more of interest, at least here, is the use of truly mobile and logical credentials such as FIDO.  There are examples of this, though they only work with the particular manufacturer's readers and controllers.  In this way you have a common credential across use cases.  You could log into web sites and go through doors with the same FIDO key pair.  You can use the same key management (something the physical security industry has barely touched except for proprietary ones in SAMs by vendors). Also use of asymmetric keys has a lot of benefits, and none are in use here.  To me this means there is plenty of opportunity to raise the bar here.

Agree
Disagree
Informative
Unhelpful: 1
Funny

Also appreciate calling out the support (or not) of OSDP

Agree
Disagree
Informative
Unhelpful
Funny

Video below of HID showing a prototype for upcoming UWB card reader:

The benefit would be to know exactly where the phone / mobile credential such that the door is only unlocked when an authorized user is walking right toward, in front of, the door.

Agree
Disagree
Informative
Unhelpful
Funny

I noticed that many of your articles on comparing readers with Bluetooth capability do not include STid. Will IPVM ever have comparisons on STid Mobile ID. They have one of the best Bluetooth Reader Solutions with flexibility to ensure the customer gets what they need.

Agree
Disagree
Informative
Unhelpful
Funny
Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by subscriber's payments enabling us to offer the most independent, accurate and in-depth information.
Loading Related Reports