NFC For Access Control

Author: Brian Rhodes, Published on Mar 06, 2012

Led by door access gorilla, Assa Abloy / HID, NFC is getting a lot of unwarranted hype as the next big thing in access control. They envision mobile phones using Near Field Communication (NFC) technology replacing today's proximity and magstripe cards as the preferred choice of accessing facilities.

Despite the hype and parroting from the industry press, we have not seen any detailed, critical analysis of whether NFC makes sense for physical access control. As such, this report digs into the operational details to examine the drivers and barriers to NFC adoption.

Overview

Near Field Communications is derived from RFID technology, except that NFC chips can be changed and updated repeatedly. This flexibility means NFC can be programmed to behave like a 'digital wallet' one moment and a door access credential the next. Running the function on a device like a networked mobile phone means that you'll have access to the right credential when you need it. Your phone can become your access credential, allowing you to throw away your physical access card.

Key Questions

In our analysis, we see 4 main questions shaping the viability of NFC for physical access:

  • Is NFC Truly More Convenient? Clearly, convenience is the main driver for NFC proponents. However, what operational or logistical issues are created when using NFC enabled devices, like phones, as a physical access credential?
  • Is NFC Secure Enough for Access Control? Using a phone as a credential to access secure facilities raises new issues of how secure NFC is and the devices it runs on.
  • What infrastructure Changes Are Required? Physical security is a conservative industry with deep infrastructure already in place. What changes will need to be made? How much will they cost? How can it be justified?
  • Will Security Managers Accept NFC? Switching from cards to phones raises new operational concerns. Will security managers find this operationally easier or more difficult?

*** ** **** ****** *******, **** ***** / ***, *** is ******* * *** ** *********** **** ** *** **** big ***** ** ****** *******. **** ******** ****** ****** ***** Near ***** ************* (***) ********** ********* *****'* ********* *** ********* cards ** *** ********* ****** ** ********* **********.

******* *** **** *** ********* **** *** ******** *****, ** have *** **** *** ********, ******** ******** ** ******* *** makes ***** *** ******** ****** *******. ** ****, **** ****** digs **** *** *********** ******* ** ******* *** ******* *** barriers ** *** ********.

********

**** ***** **************** ******* **** **** **********, ****** **** *** ***** *** be ******* *** ******* **********. **** *********** ***** *** *** be ********** ** ****** **** * '******* ******' *** ****** and * **** ****** ********** *** ****. ******* *** ******** on * ****** **** * ********* ****** ***** ***** **** you'll **** ****** ** *** ***** ********** **** *** **** it. **** ***** *** ****** **** ****** **********, ******** *** to ***** **** **** ******** ****** ****.

Key *********

** *** ********, ** *** * **** ********* ******* *** viability ** *** *** ******** ******:

  • ** *** ***** **** **********?*******, *********** ** *** **** ****** *** *** **********. *******, what *********** ** ********** ****** *** ******* **** ***** *** enabled *******, **** ******, ** * ******** ****** **********?
  • ** *** ****** ****** *** ****** *******?***** * ***** ** * ********** ** ****** ****** ********** raises *** ****** ** *** ****** *** ** *** *** devices ** **** **.
  • **** ************** ******* *** ********?******** ******** ** * ************ ******** **** **** ************** ******* in *****. **** ******* **** **** ** ** ****? *** much **** **** ****? *** *** ** ** *********?
  • **** ******** ******** ****** ***?********* **** ***** ** ****** ****** *** *********** ********. **** security ******** **** **** ************* ****** ** **** *********?

[***************]

********* ********* ******* **** ****** ********. ***** *******:

  • *** ****** *** * ***** '****' ***** ** **** *.* inches - ************* ******* **** ********* **** *******
  • *** ******** *** ********** ********** ******* ** *** ****** *****
  • *** ******** *** ************ *********** **** **** ** ** *******
  • *** ***** **** ******* ******** ** *** ** ******** *** the *** ********
  • ******* *** **** ***** ** * *********** ** **** **********
  • *** ***** ******* ************ **** ***** ***** **** ********* **********

Is *** ***** **** **********?

*** **** ******* ******* ** *********** ***********. ****** ******, ******* by ****** ******** ***, *** ********* *** **** *** ******** a **** *** ******** ****** *******. **** ***** **** ****** find **** ** ** **** ********** ** ** ** *** less ****** ** ***** ******.

*******, **** ************* **** ***** ******* ***** *****. * ****** practice ** ***** *** ****** ********** **** ** * ******* ID ****. **** ** *** ******** ********* *****, **** **** still **** ** ***** ** *****. ** ********* *** ****** to ***** ** ****** ******, ***** **** **** ****** ***** a ********* *** ******?  **** ************ ***** ******* ********* *** benefit ** ****** ** ***.

******* ***** ** * *** ******** **** ***** *** ******* devices. ***** **** **** ** ******* ***** ****** ** * variety ** ******* **********, ********* **** *** ******* ****. **** people ** ******* ** ****** ** ********* ********** ** *** weather ********** ** **** ** * ***** ***** ** *******?

***** ** *** ****** *** ****** *** ******** ** **** cumbersome *** **** *********. ** *********** ***** ** ** ******* on *** ***** ** ***** *** *** *** **** ** work. **** ** * *** ********** ******** ** ******* * card **** * ****** *** ******* ***** ******. *** *********** of ******** * ***** *** **** **** *** ***** ******* down.

*** ******* ** ****** ********** ************ **** * ***** ******* dies ** * ****** *****. * ******* ** '**** ******' plans *****, ********* *** ******** ** ******* ** ******* *****. Other ********* *** ***** *********, **** ** ********* * '*** ******' **** *** ****** **** ****** ** ********* reserve ** ***** ******** * ****** ***** *********. *******, **** ** ****** *********** at **** *****.

* ******* ***** **** ** **** ******** ** '**** ******* if *** ***** **** *****'* *** ****?' ** *** ******* to * ***** ** ************, **** **** ******** *** ***** from ***** **** ** ** ****** **********. * ****** ** financial ************** **** ******* ******* *********** ************ **** *** ******* access ******** *** **********.

Is *** ****** ****** *** ****** *******?

***'* ******** ********** *** ********** ** ******** **** ******* ********* technologies. **** ******* ********* ****:

  • *** ******'* ***** '****' ***** ** **** *.* ******. **** hinders *** ******* ** ********* ** *** ************* ******* ******* as **** ** ******* ****** ******** ** ***** *** ********** since *** **** ****** ** ********* ****. 
  • *** *** **** ************ ******** ********** ** ***** ******** *********** using *** **.** *** ****, *** ******** **** ********* ********** than ******** ********* ***********. *** **** ****** ********** **** ******* confidence ** ********* **** ******* *** **** ******* ** ***. 
  • ** ****** ** ********** ** ******** ******* **** *** ****** back ** ** *** ******* ****** ******* ******. ******** *** technology ** *** ****** **** *** ****** *** ******** ******** condition ** *** ****** ******* ******.
  • ** * ***** ** *** ********** ****** ** ****, **** that ********** **** *** ** *********** *********** ** ******** ******. Local ********* ** *** ******* **** **** **** ** ********* role ** ******* ******* ******. ** * **** ***** ** picked **, ********** *** ** *********** ** ********* * ******** to ******** *** ******* **** *** ***.

What *** ************** ******* *** ********?

******** ************* **** **** ** **** ******** ******* ** ****** that ****** ***. **** **** ** ****** *** *** **** majority ** *****. ****** ******* *** ***** ****** ** *** compatible ******* ********** ****** ** $*** *** ****. **** ***** *** ******* ** ** $*** - $*** USD *** ****** **** ************ ***** ** ***** ** *** hardware ****. *** ** ******* ***** ****** ** ***** ** ten *****, **** **** **** ***** *** ******** ** ******* of $*,*** ** $*,*** ***.

****** *** *** ******* *** ***********, **** ******** **********-***** ****** control ******* *** ******** ** **** *** ******* ** *** NFC ********** **** ****** ************. *******, * *** ****** ** ******* NFC ***** *********** *** ** ** ***** ** *** ******. In **** ***** **** **** ** ************ *** ********** ********.

*** ** *** ***** **** ***** ** ***, **** ******** Proximity ************ **** *** ****** ******* *********** ********. *** *******, operating * **** **** * **** **** ****** ** ********** will *** **** ****** *** *.*" **** *****. **** **** of *********** ****** *** ****-***** ******** ** ********* *****.  ** is **** ******** **** ********* ***** ******* **** **** ** totally ******** ** *** *** ***** ***** ** *************. ** Proximity *********** **** ** ******* ******, **** ******* ********** *** value ** ** *** ******* ****** ******* ******.

*** ***********/ ************ ** *** ********** *** **** ****** **** require **** ********** ********. ** * ***** ******* **** ** the ***** ** ****** ** ****, *** ****** *** *** be **** ** ***** ** *** ****** **********. **** ************ will ******* ** ********* ****** ** *************, **** ****** * PIN *****. **** ** ******* ** ***** *** **** ***** systems (*.*.. **** ** * ****** ** ****?), *** ********** have ********* ** ******** ******* ** ******** ********. *** **** require * ******* ******* ** ****** ** ***** *** *** 'dead *******' ************.

Will ******** ******** ****** ***?

******** ******** **** ** ****** ** ****** *** ****** ** which **** ***** *** ****** ***********. ** **** *****, ********** settings **** **** ** ** '******' ** ******* ** * cell ***** ****** **** ******* ** * ****. **** **** mean **** ********* **** ** ******* ** *** ******** *******, and ******* ********** ******* ** ********** *********** **** ** *********. However, *** *** ****** ** ******** **** ** ******* ******, maintaining ******** ********** *********, *** *********** ******* ******* ** ********** holders **** ** **** ** **** ******** ******** ** ***** the ******.

** *** ***** ****, ****** ***** ********** **** ****** * security ******* *******. ******* ******** ******** **** ** ****** ** support ****** ******* ************* ** **********, **** **** ** ***** to ****** *******:

  1. ************* ****** ** ******** **********
  2. ********** * **** ******* ** ******* ** ********** **** ******

****** ******* **** ****** ** * *** ** ************ *** the ******** ******* ** ******. ***** ***** ***** ******* ***** on ******** ********** *** *** *** ******* ** ****** **** decision **** *** ****. *************, *** ******** ******* ***** * difficult **** ********** ****** ******* ********* ** * **** ********* of *** ******* ******. 

** *** ******** ****, ***** *** ******* ****** ******* ** proximity ***** ***** ****** *********** ***** *************. *** *******, ** an ************ *** *** *********** *** * ****** ********* **** cost $* - $* ** ***, ********, *****, *** **********, this **** ***** **** ~$*,*** ****** *** '**** ****' **** of ***** ****** *****. ****** ******* ***** ** ********** **** as **** ********* ***** *** ***** **** ** ** ******.

**********

***** *** *** * ****** ** **********, ******* ** ****** limited ****** **** *** **** * - ** *****. **** are *** *** ********** *** ****** ****** ** **********:

  • ******* ************: ***, ** ****, *** ****** ** ******* *** ********** systems ******** ********** *** ** ***. *******, ** ********** **** this **** **** ************* **** *** **** *** ***** ** manufacturers **** *** ** * ***** ****** ******. ** *** next *** *****, ***** **** **** **** ********** ******* *** using ***.
  • *********: ***** *** ** *** ********* ********** **** ******** *******, this **** ******* ***** ** **** *** ******* ********. ** believe **** **** ***** ******** *** ** *** *********** ******* and ******* ******* ************ ** ** *******.
  • ****** ******* ***: *** **** ****** *** *** *** ********** ******* ** be * ******** * ***** *** *************** ***** *********** *********.  University ********, *** *******, ***** *********** **** ***** ********* *** usage ******, *** ******** ** ** * **** *** *** *** technology.  ** *** ***** ****, **** *****/****** ********** *** ********** or ********* ******** ****** *** ** ******** ** ***** ***** on ***-********* ************* ********.
  • ** ****** ***********: *******, *** ******* ********* *** ** *** **** ** a '******' ****** *** ******** ****** ******* ******* ** **** to ***. *********** ***** *** ****** ** ****** *** ***** to ****** ********** *** **** '**** ** ****' ******** *** with ** **** ********** ** ******** *******, ** ****** ** not ******* ********** ******** ** *** **** ** **** *** ********* a ******** *********** **** ******* ************.
Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports on Access Control

Automatic Door Operators For Access Tutorial on Sep 20, 2017
Opening and closing doors might sound simple, but it takes a high-tech piece of door hardware to pull it off. Integrating automatic door operators...
HID Buys Mercury Security on Sep 19, 2017
One of the biggest access control deals in years. Mercury Security, the most widely used access hardware OEM, and partner to 20+ manufacturers,...
Cloud Guy Prints Book, Misses Irony on Sep 15, 2017
On-premise security systems are dead. But $75 print books are alive and well. Such are the lessons from Brivo's CEO new book "The Five...
Master Keying Tutorial on Sep 14, 2017
Mechanical keys are the most fundamental, albeit unsophisticated, form of access control. Like access control, Master Keying allows large scale use...
Fail Safe vs. Fail Secure Tutorial on Sep 13, 2017
Few terms carry greater importance in access control than 'fail safe' and 'fail secure'. Access control professionals must know how these concepts...
Axis: Use QR Codes Instead of Access Cards on Sep 12, 2017
Innovation in access may be hard to find, but Axis recently suggested an idea for credentials few have considered. Rather than using plastic cards,...
Dahua and Hikvision Entering Access Control on Sep 05, 2017
Until now, Chinese video giants Hikvision and Dahua have held back releasing access internationally. Both companies have now pulled the trigger,...
Vulnerability Directory For Access Control Cards on Aug 14, 2017
Knowing which access credentials are insecure can be unclear, especially because most look and feel the same. Even the most insecure 125 kHz types...
Competing Against G4S on Aug 09, 2017
G4S Secure Solutions is a global company, operating in multiple countries and offering a suite of products and services from guards to their AMAG...
ONVIF Releases Profile A for Access on Aug 08, 2017
ONVIF has struggled so far in access control. In 2014, ONVIF released Profile C for access control, but in the 3 years since, only 2 companies...

Most Recent Industry Reports

Avigilon 'Blue' Cloud Entry Examined on Sep 19, 2017
Avigilon is moving to the cloud. The company announced their Avigilon Blue platform, designed to be a web-managed surveillance system, utilizing...
HID Buys Mercury Security on Sep 19, 2017
One of the biggest access control deals in years. Mercury Security, the most widely used access hardware OEM, and partner to 20+ manufacturers,...
Hikvision Backdoor Exploit on Sep 18, 2017
Full disclosure to the Hikvision backdoor has been released, allowing easy exploit of vulnerable Hikvision IP cameras. As the researcher, Monte...
Avigilon Touting 'Made In America' on Sep 18, 2017
Canadian manufacturer Avigilon, who completed a US manufacturing facility in 2015, is now running a marketing campaign touting 'Made In America',...
Cloud Guy Prints Book, Misses Irony on Sep 15, 2017
On-premise security systems are dead. But $75 print books are alive and well. Such are the lessons from Brivo's CEO new book "The Five...
Forgotten Password Problem Importance on Sep 15, 2017
Forgotten passwords has become a major industry topic. For example, Hikvision has been emailing admin passwords in plain text until IPVM's...
September IP Networking Course on Sep 14, 2017
LAST Chance - Registration is ending. Register now. This is the only networking course designed specifically for video surveillance professionals...
Hikvision Launching Ezviz Pro on Sep 14, 2017
Hikvision is launching Ezviz Pro. In 2015, Hikvision expanded Ezviz, a direct to consumer offering, to North America. Now, Ezviz 'Pro' is...
Genetec Launches Community Connect Examined on Sep 14, 2017
Genetec has done best in large-scale, enterprise systems and relatively worse in smaller systems such as SMB. Now, Genetec is launching...
Master Keying Tutorial on Sep 14, 2017
Mechanical keys are the most fundamental, albeit unsophisticated, form of access control. Like access control, Master Keying allows large scale use...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact