Access Control Does Not Want ONVIF

By: Brian Rhodes, Published on Jul 27, 2016

ONVIF has become a major force in video surveillance. Despite its well deserved criticisms, ONVIF is widely embraced by video surveillance manufacturers and generally useful in production deployments.

However, ONVIF has been a resounding dud in Access Control, which has continued to be insular and proprietary. Moreover, that is not changing anytime soon, and the message is clear: Access does not need nor want ONVIF.

We look at the situation deeper in this note.

***** *** ****** * major ***** ** ***** surveillance. ******* *** **** deserved **********, ***** ** widely ******** ** ***** surveillance ************* *** ********* useful ** ********** ***********.

*******, ***** *** **** a ********** *** ** Access *******, ***** *** continued ** ** ******* and ***********. ********, **** ** not ******** ******* ****, and *** ******* ** clear: ****** **** *** need *** **** *****.

** **** ** *** situation ****** ** **** note.

[***************]

Single ***** ****** ********* ******

****** ***** ************ ***** product *** ********* ** camera ******* (**: ****, Sony) **** ***** ********** system ********* (**: *********, Exacq) ***** **, ********** access ******* *** ********* with * *** **********: everything ********* ***** *** brand.

******, ****** ******* ********* sells ******** (** *** form ** **** ***********) matched ** **** ********** software **** *** **** vendor.  **** **** ****** systems ********** ***** *******************, **** ********* ** so ******* ***** ***** disclosures ** ********, ******* simplifying ******* ** ***** proprietary **** ******* ** product ***** **** ***** any ******************.

Major ****** ********* *** "****"

********, *** ****** ******* in ****** **** ** motivation ** ****** ****.

**** *** **** ******* (******** *************** *******) *** ******** proprietary ** *** ******** they *******, ***** ***** majors ***************** *** ********* ** 3rd ***** ******** ******** and ******* ********* *******, warranty, *** ****** ***** products **** ***** ***** own ******.

Interoperability *********** *** *******

*** *** ***** ** that ******* ******** '********', these ********* ****** ************ marketed ********* **** **** of ********* ** ******* and * ********* ******* end **** ****** ********** it.

******, ****** ***** ************ where *************, **********, *** end-users ***** ******** *** interoperability, *** **** ******* simply **** *** ***** in ****** *******.

ONVIF * ** ******

** ***** ** **************** efforts, *** **** ** not **** ** ********. Using *** **** ******* as **** *** **** video, **** *** * handful ** ****** ********* Profile * ** *** key *** ********* '**************** between ******* *** ******* of ******** ****** ******* systems (****) *** *******-***** video *******'; ** ********* bridging *** ****** ******* hardware *********** *** ********** software.

*******, ******* *** ********* of *** ******, ***** nearly *** *** * **** years, '******** **********' ** the ******** ***** ****** just *** *******, ********* Axis **** ***** ****** door ********** *****.  ******, even ***** **** ****** partners *********** **** *** A1001, **** *** ***** C, ******* ***** ****** driver *******.

*** **** ********* ** not ****** ********, ** we ***** ** *** ****** ****************: ***** ******* ****, **** ********* ****** and ** ****** ********** to *** ********** ******* are ** *** *******.

ONVIF * ** ******

****, ***** ** *** ****** up ** ****** ***.

******, ***** *** *** formally ********, ***** *** another ****** ******* ** the *****.******* *, **** ** ******** release ***** **** ****, claims ** '********* ** interface *** ****** ******* clients *** ******* *** configuration ******* *** ***** conformant ****** ******* *******'. However, *** ****** ******* to **** *** ******* is ******* *********** *** more ********* ****** ******* C ** *********** *** essentially ******* ** *** market.

** ***** ********** ******* hardware *** ******** *** not ************, **** *****/********* exists ** ****** ************* of ********** *******? ***********, no *** ** ******** members ** *** ****** market *** ******** ***** A ** *********** ******** yet.  * *********, ********* futile ****** ******.

Access ***** ******** ***** ** ***** ********

** *** ******** ** 'Why ***'* ***** ********* for ******?'

*** ****** ** ********* the ************* ********** ***** for ***** **** ****** to ** ***** ** access *******. ******, ***** Sony, ****, *** ***** commanded ****** ********* **** agreeing ** *** **** of * ******** ***** API, ** **** '***********' for ****** ****** ****** ONVIF's ****** *****.

*** ******* *** ******** of '****** ****************' *** not ****** ** ********** as *** ***** ******, the **** ***** ** such ** ****** ** dubious ** ****. **** should ************* **** ********, agree **, *** ********** implement ***** ******** *** access, **** ** ****** gained?

** ***** ************ ****** to **** ******** *** business, *** *** ****** risk ****** ******** ******** as * ****** ** adoption.

Interoperability's ****** *******: ****

** *** **** ***** years, *** ******* '****************' success ***** *** ** OSDP. **** ************ ** '******* *.*', ***** ** **** features **** **********, ************* communication, *** *****-********** ********.

****** *****, ****'* ******** only ********* * ***** part ** *** ***** access ****** - ******** readers *** ***** ********* door ***********.  *** ***** focus, *******, ******** ** antiquated *** *********** ***** aspect ** ****** ****** systems. ******* ******* *** OSDP ***** ********, *** new ************ *** ******* member ***** ** * regular *** ********** *****.

Big ******: ******* ******* & ********

***** *** ******* ****** of ** ***** *** access *** ** ******* to ********** ******** *** integrators ** *** *****, the **** ****** *** new ****** ******* *** smaller ********* ****** ** grow ****** *** ******.

****** **** **** ** hardware *** ******** ******* to ************* ********* ********* or ********, *** ******* and **** ****** ********* of ********** ****** ******* upward ******** ** *** products ********** *****. *** hardware **** ******* ******* is ********* ******* **, and ********-****** *** ********* ****** product **** ***** ***** champions*** *** ******** ******* at ****.

Comments (12)

Amen

All that you posted is true. Here one additional item to think about. After we have sold all the hardware and all of the software. We get so sell the other thing, the "blades", i.e., the cards and the codes which is the long term ROI that the providers are working reach.

Besides why on earth would video centric group like ONVIF have in common with the access control market?

I'm with you on this one...

"Many considerOSDP as 'Weigand 2.0', since it adds features like encryption, bidirectional communication, and smart-credential bitrates."

I completely agree on the point that Interoperability has less interest for Access Control. OSDP is where access control meets interoperability. Not only the security, less/easier wiring, but also reduced total cost of the solution. Using Wiegand, you need to have one controller for every 2~4 readers. With OSDP you can have 8~30 slave access readers on each RS485 BUS. That is partially reducing the total cost of the solution ("partially" because in most of cases you still need extension boards with door relay/sensor).

more than 2 readers on an OSDP (or RS-485) wire is apparently rare. A small number of vendors seem to go up to 8 readers.

more than 2 readers on an OSDP (or RS-485) wire is apparently rare. A small number of vendors seem to go up to 8 readers.

That's completely true but I would give "more than 2x OSDP readers" a 25% share of installations. The advantage of OSDP is not only increasing security but also saving cost. I had a third one that is "convenience" because many installers do not wire the feedback from controller to the reader (often called Green/Red LED + Buzzer). So with OSDP you have to think of a 3 sides improvement: "Security/Cost/Convenience"

Our side we see more and more customer using 8x Suprema readers on a daisy chain, with a Master reader controlling the whole (storing the fingerprint templates and being installed in the secured part of the building = "no fingerprint data at the door")

http://kb.supremainc.com/knowledge/doku.php?id=en:tc_technology_rs-485_wiring_guidelines&s[]=daisy&s[]=chain

Because for some installations, TCP/IP or Wiegand cannot work:

- Either the TCP/IP number of lines is limited by the customer

- or the readers are distant from each others or from the controller (TCP-IP = 100m, RS485 = 1.2 km, Wiegand ~150m) <= average distance (this varies with cable type and other factors)

Indeed, unlike video surveillance where manufacturers, installers, and end-users alike clamored for interoperability, the same dynamic simply does not exist in access control.

What's your opinion on why it 'simply does not exist'?

Can it be tied to the megapixel/innovation race to some degree? Meaning that the pace of video technology was far accelerated from access control. People demanded interoperability because they invariably ended up with some new cool camera that only worked thru the web page it came with.

Also, you could tolerate the inevitable glitchyness of interoperability better, e.g. motion detection might not work. But a door can't be glitchy at all.

OSDP is not just for readers. You can use it for alarm points too. It's focus is "supervised" devices that would be used under the direction of an "panel".

That makes sense. How many alarm systems/sensors are currently using OSDP?

The core reason ONVIF faces such headwinds in access control is that the video analogy is wrong:  In the video comparison, access panels aren't the cameras, they are the VMS!  Readers are the cameras, and OSDP is doing fine there.

Most of the manufacturer's "value add" in access control is put in the panel, just as in video it's put in the VMS.  Yes, you often have ONVIF from the VMS down to the camera, but you never use ONVIF from the VMS up.  You use the VMS provider's SDK for that, because ONVIF won't have each manufacturer's VMS value-add properties.  Hence 3 years on, ONVIF C is largely just the open protocol to talk to the Axis A1001, and little else.

The other reality of the access industry is that it is more expensive to install a door than hang a camera on a wall, and nobody wants to pay for that directly.  So those costs are paid for by hardware markups.  This in turn requires stricter channel management.  Thus any attempt to commoditize access panels tends to be resisted by integrators because it is much harder to mark up, giving little no incentive to sell it.

We considered implementing ONVIF for an access control panel, and in reviewing the specification, it places very strong constraints on the implementation, to the point where it seems nearly impossible to retrofit a controller with support for this API. The only way to implement it would be to write controller firmware from scratch, with the primary goal of implementing this specification. And even this would be quite daunting, due to the complexity of the specification (and the complexity of a commercial control panel). I think the only chance of success this would have had as a standard would have been if they had provided an open-source reference implementation along with it.

The only way to implement it would be to write controller firmware from scratch, with the primary goal of implementing this specification.

like this?

Let’s look at “Why ONVIF?” and why not for access control.

ONVIF helped large and small camera manufacturers and recording devices (NVR/VMS) bring new camera products into existing recording products faster, cheaper, easier [in theory].

It didn’t address controller devices (unless you consider a multi-channel encoder/decoder) as much as edge devices.

While not perfect, the ACS industry generally accepted a 5 wire, weigand protocol. Yes, there were custom implementations, even HID readers could be configured with a programming card to output certain ways.

OMHO it’s just not necessary and will be about as beneficial as SIA was for alarm reporting formats.

That’s a whole different rant.

I agree with your points about weigand and SIA alarm formats, as they were very limited in scope. Weigand is less of a protocol and more of a physical TTL connection standard. SIA alarm formats are a better analogy, but elegantly limited in scope: They tell the Central Station/PSAP what account/partition/zone went into alarm, but not specifics on how they were wired.

Standards at the controller level face extreme headwinds. Not only have time schedules, access groupings, etc, been implemented in dozens of different ways across manufacturers, but these peculiarities manifest themselves in ways that affect how cardholder populations actually use doors. Recently I just discovered a panel that can have hundreds of intervals in a single local auto-unlock schedule (used in co-working spaces), and that obscure feature is super-important for their market. For that manufacturer to support ONVIF A and C, this feature would have to become part of the standard, or would have to be an exception to it, defeating the purpose.

Ultimately, ONVIF works well in video because it is a much bigger market with a lot more players, and the standards by which video systems exchange data are transparent to the subjects being monitored. In contrast, PACS systems actively control the flow of people, and the way those systems work is more acutely felt to those using them.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

HID Launches Origo To Fix Mobile Credential Problems on Feb 05, 2019
HID is releasing Origo, an overhaul of its mobile credential platform, this time drastically restructuring the way it is priced and packaged. HID's...
BluB0x Company Profile on Feb 20, 2019
BluB0x has doubled in revenue every year since its founding in 2013, according to CEO Patrick Barry [link no longer available]. We originally...
Genetec Declares "Lead With Synergis" Access Control on Mar 04, 2019
Genetec started with and is best known for its video management software. However, the company is now imploring its partners to lead with Synergis,...
Startup GateKeeper Aims For Unified Physical / Logical Access Token on Apr 04, 2019
This startup's product claims to 'Kill the Password' you use to keep your computers safe. They have already released their Gatekeeper Halberd...
Silicon Valley Access Startup Proxy Raises $13.6 Million on Mar 28, 2019
This mobile-credential based access startup just raised $13.6 million in funding.  Further, they claim that their technology can free businesses...
Poor OSDP Usage Statistics 2019 on Jul 09, 2019
OSDP certainly offers advantages over decades-old Wiegand (see our OSDP Access Control Guide) but new IPVM statistics show that usage of OSDP, even...
Mobile Access Usage Statistics 2019 on Jul 18, 2019
The ability to use mobile phones as access credentials is one of the biggest trends in a market that historically has been slow in adopting new...
Open Access Controller Guide (Axis, HID, Isonas, Mercury) on Sep 19, 2019
In the access control market, there are many software platforms, but only a few companies that make non-proprietary door controllers. Recently,...
Access Control Time & Attendance Guide on Sep 24, 2019
Access control systems can do more than lock doors. With little or no extra equipment, they can be used to track labor hours for employees...
Directory of Access Reader Manufacturers on Nov 27, 2019
Credential Readers are one of the most visible and noticeable parts of access systems, but installers often stick with only the brand they always...

Most Recent Industry Reports

"Hikvision Football Arena" Lithuania Causes Controversy on Jan 24, 2020
Controversy has arisen in Lithuania over Hikvision becoming a soccer team's top sponsor and gaining naming rights to their arena, with one local MP...
Axis and Genetec Drop IFSEC 2020 on Jan 23, 2020
Two of the best-known video surveillance manufacturers are dropping IFSEC International 2020, joining Milestone who dropped IFSEC in 2019. The...
Multipoint Door Lock Tutorial on Jan 23, 2020
Despite widespread use, locked doors are notoriously weak at stopping entry, and thousands can be misspent on locks that leave doors quite...
Avigilon Shifts Cloud Strategy - Merges Blue and ACC on Jan 23, 2020
Avigilon is shifting its cloud strategy, phasing out its Blue web-managed surveillance platform as a stand-alone brand and merging it with its ACC...
Verkada Paying $100 For Referrals Just To Demo on Jan 22, 2020
Some companies pay for referrals when the referral becomes a customer. Verkada is taking it to the next level - paying $100 referrals fees simply...
Camera Analytics Shootout 2020 - Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision, Uniview, Vivotek on Jan 22, 2020
Analytics are hot again, thanks to a slew of AI-powered cameras, but whose analytics really work? And how do these new smart cameras compare to top...
Intersec 2020 Final Show Report on Jan 21, 2020
IPVM spent all 3 days at the Intersec 2020 show interviewing various companies and finding key trends. We cover: Middle East Enterprise...
Vehicle & Long Range Access Reader Tutorial on Jan 21, 2020
One of the classic challenges for access control are parking lots and garages, where the user's credential is far from the reader. With modern...
Clearview AI Alarm - NY Times Report Says "Might End Privacy" on Jan 20, 2020
Over the weekend, the NY Times released a report titled "The Secretive Company That Might End Privacy as We Know It" about a company named...
Favorite Camera Manufacturers 2020 on Jan 20, 2020
The past 2 years of US bans and sanctions have shaken the video surveillance industry but what impact would this have on integrators' favorite...