Access Control Killer: Tailgating

Author: Brian Rhodes, Published on Jan 20, 2013

Despite costing thousands of dollars per door, access control systems are inherently vulnerable to an easy exploit called 'tailgating'. Unless this threat is recognized and addressed, even a friendly hand can compromise a huge security investment. In this note, we take a look at 'tailgating' and common steps in dealing with the risk it presents.

The Problem

'Tailgating', also called 'piggybacking' by some, describes the situation when a credentialed person opens a door allowing one or more individuals to immediately pass through while the door is open. The effect of this simple action can render an entire facility unsecure.

******* ******* ********* ** ******* *** ****, ****** ******* ******* are ********** ********** ** ** **** ******* ****** '**********'. ****** this ****** ** ********** *** *********, **** * ******** **** can ********** * **** ******** **********. ** **** ****, ** take * **** ** '**********' *** ****** ***** ** ******* with *** **** ** ********.

The *******

'**********', **** ****** '************' ** ****, ********* *** ********* **** a ************ ****** ***** * **** ******** *** ** **** individuals ** *********** **** ******* ***** *** **** ** ****. The ****** ** **** ****** ****** *** ****** ** ****** facility ********.

[***************]

**** *** ******** ***** (**** ******* * **** **** *** someone), ************ (**** ******* ** ******* ** ********* ****** ** through ** **** ****), ** ** * ********* *** (***** someone ** ************ ****** ** **** *** ******** ******).

The *****

***** *** * ******* ** **** ****** *** **********. ************* the '***' ** **** **** ********** ***** ** ********* *** best ******* ******* **. ***** ********* ***** ** ********* * significant ****, **** ********** ****** *** * ******* ** **** nefarious *******:

  • **********:** **** ********, ******* *** **** **** *** ****** ** a ****, **** **********. ********, ********** ******* ******** *** ****** ill **** ******* ********* ** **-*******. ***** **** ********** ******* may *** **** ******** *** **** *** *********** ** ****** control ****** **** ***** *** '**** *******'. **** ******** *** signage ** ***** ********* ** '*******' ********** ******* ** ****** use.
  • Bad *******: Especially in rainy and cold climates, holding the door open offers a welcome shortcut to those seeking the warm and dry environment of a facility. In these cases, sheltered entries, **********, ** ******* **** ******** *** ******** ** **** **** doors *** ** ************* *********.
  • Misaligned/Worn *****: Over the course of thousands of open/close cycles, even commercial grade doors, hinges, frames and closers sag or become worn over time. If left unchecked, doors may not fully close when opened or may take a long time to close, therefore allowing many people entrance from a single card read. A regular and discipline door maintenance schedule for access controlled openings is critical to prevent the issue.
  • *************/********:***** *** * ******* ** ****** **** ** **** * door **** ******** ***** ** *** **** ******. *********, *****, bunched-up ****, *** ******** ********* *** *** ******** ******** ** eliminate *** **** ** ********** * ********** *** ******, ***** seen ** ******* ** *********. *** **** ******, ******** ************ 'smoking ****' ***** ** ******** ********* **** ******* *** ******** systems ** ******** ********* *** ******* ***** ************** ***** *** outside ******.

The ********

*** **** ** ********** ** ********** *** ****** ***** ****** controlled ******** ** **********. ***********, * **** ** *********** ******** are ********* ** ****** *** *******. ** *** ******* ***** we **** * **** ** *** ***** *****:

  • '**** ****' ******
  • **********/********* *****
  • ********/********
  • ************ *********/*********

'**** ****' ******: **** ****** ******* ******* **** *** ******* ** ******* door ******** - ****** ******** **** ***** ******* * **** is ****** ** *** - *** *** ** *** ** alarm ** * **** ** **** **** *** *** ****.  Alarming ****** ** ***** **** ****** **** * *** *******, thereby ********** **** ******** ****** *** ******* ******* * '**** open' ****. *******, ***** **** ** * ***-**** ** **** measure *** ********** **********, ** **** ** *** ******* ****** of ******** ******** **** ***********. ****** * ******** ******** ******** its ****** ******* ******, **** ******** ** ****** ** ** (promptly) ********* ** ********** *** ***********.

**********/********* *****:** ****** *****, ********** **** ***** **** *******, ***** ********** devices ** *******, *****, *************** ****** ****** ******* ******. **** type ** ********* ********* ***** ** * ****** ****** ** a ****, *** ********** *** ******* ** **** * **** open *** ************ ******. *** *********** ***** ***** ******** ** example ** ** '****** *********' ******** ** ******** ****** **** an ******** *****, *** ******** '**********' *********:

 ********/********:***** ************* *** ********* **** ******* *** **** ** ********** doors. ******* ***** **** ***** ****** *** *** ********, *** doors *** ********** ** **** *** *** ** * ****. This ***** *** ******** *** ****** ** ****** ***** *** exterior *** *** **** ****** *** ** ******. ******* *** physical ***** ****** * ******* ** *****, **** *** ****** per **** **** ** ********* ******* *** *****. ******** *** be ********** *** ********** ******, ** ***** ** *** ******* below, ***** ** ********** **** ** ******** **** **** * wheelchair-credentialed **** ***** ** ** * ****:

***** ************* **** * ******* ** ********* **** ****** ********; in **** ***** *** ******** ** ******** ** ********* '***** room' ************ **** ******* *************, ** **** *** **** ** inspection *********** *** **********. ***** ************* *** ***********, *** ******* they *** ******** **** ** ***** *** **** ***** ******** footprints, **** *** ***** *** **** ****** ****-********** ********.

************ *********/*********:***** ******, ******* ***** ** ******* *** **** ** *** frame ** * ****, ** ****** ********-****** ************ *******, *** configured ** ****** ********** ******** ******* ** *******. *** ******** profile ** * ****** ********** ** ******** ******* *** ****** movement ******** ** ** *********** **** ** *******. ***** ** movement ********* (**: *** ******* ** ******** ** '******'), *** unit ** ****** **** *****. ********* *** **** ****** ** built ** ********** *** *****, ** ** *** **** ** the ****-***** ********* ******** **** ** *** ***** ***** *****:

**********

***** ********* ******, *** '****' ****** ** ** ************ ****** to *******. **** ******** ******** ***** **** ********** ****** **** on ******** ************ *** ******* ** ****** ********** ******* ***** the *****. ******* *** ******* ** ************** **** ** ********* the *****, *** ************ (*** ********** *****) ** ********** ******.

 

** ***** ***** ***** ********** **** ** *********, *** *** of ********** *** ******* ** ******. *******, *** ** *** cost ** ***** *********, **** *** ***** **** **** *** expensive *** ******* *** *** **** ****** (*** ****-*********) ******* like ********* ********* ** ***** *********.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Biometrics Pros and Cons For Electronic Access Control on Jun 26, 2017
Biometrics has been long sought as an alternative to the security risks of cards, pins and passwords. While biometrics has improved somewhat over...
Access Control Course Winter 2018 on Jun 11, 2017
The Winter 2018 IPVM Access Control Course is now open; save $50 on early registration. IPVM offers the most comprehensive access control course...
RMR Integrator Importance Statistics on Jun 08, 2017
How do integrators feel about offering RMR / recurring revenue services? For many, their business revolves around RMR, while others see no...
HID Edge EVO Tested on Jun 07, 2017
HID Edge controllers have been one of most common offerings in IP door controllers for years. The new generation is called Edge EVO. We tested...
Access Control AHJ Nightmares on Jun 01, 2017
For access control jobs, a single person can be the difference between finishing a job, costing thousands in extra dollars, and being profitable...
US States Security Licensing Guide on May 30, 2017
In the US, many states require integrators to be licensed to install burglar alarms, CCTV, electronic access control, or all three, and...
Anti-Hack Access Card Shields Tested on May 26, 2017
Keeping your access control card information secure is becoming a big priority, especially since cheaper copiers can hack details easily. Multiple...
Hackable 125kHz Access Control Migration Guide on May 19, 2017
Despite being one of the most popular credentials, 125 kHz credentials are easily copied and insecure as we showed in our test results, video...
Selling and Valuing Security Integrators on May 12, 2017
This ia a tutorial in how to (1) determine your security integrator's value and (2) to sell your security integrator. If you own an integrator,...
Smartphone Controlled Kevo Lock Tested on May 04, 2017
Smartlocks are a growing market, with millions sold. Kwikset's Kevo is one of the most common choices, using the Unikey smart phone access control...

Most Recent Industry Reports

Startup Replacing Passwords With Patterns (Shayype) on Jun 28, 2017
This startup, Shayype, aims to eliminate passwords, replacing them with patterns. Problems with passwords are clear, as simple passwords, re-used...
NRF 2017 Exhibits Traffic Weak on Jun 28, 2017
The 'retail apocalypse' is not sparing the security industry. The National Retail Federation's Protect 2017's exhibit traffic is weak, notably...
Top 5 Improvements For Manufacturer Sales People on Jun 28, 2017
Manufacturer sales people are very important to integrators, but it takes more than just punching a clock to be successful and truly valuable to...
Avigilon VP Communications Exits on Jun 27, 2017
In 2016, Avigilon hired an executive, Darren Seed to: build and maintain strategic relationships with the investment community and to...
Hikvision H.265+ Tested on Jun 27, 2017
Hikvision, which in the past few years released H.264+ (see test results) has now released H.265+, that claims even greater bandwidth savings. We...
Milestone / Canon Launch Cloud Startup Arcus Global on Jun 27, 2017
Milestone has spun off a business, Arcus Global, funded by their parent company Canon. The new company aims to transform the VSaaS market with an...
Biometrics Pros and Cons For Electronic Access Control on Jun 26, 2017
Biometrics has been long sought as an alternative to the security risks of cards, pins and passwords. While biometrics has improved somewhat over...
Manufacturer Sales People Are Very Important - Statistics on Jun 26, 2017
IPVM's new integrator statistics show what sales people say regularly: Sales people are very important. From 150 integrator...
No Personal Opinions About Work on Jun 26, 2017
One rising trend is the tendency for people to disclaim their statements on work related topics as their own 'opinions' or 'personal...
Importance of Sales To Integrators - Statistics on Jun 23, 2017
One of the top trends in the industry over the past few years has been the rise of across-the-board sales (e.g.: Hikvision Sales, Dahua Sale,...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact