FIPS-201 Improvements Reviewed

Author: Brian Rhodes, Published on Jul 19, 2012

A new version of FIPS-201 is being introduced, but does the update make it more relevant to the physical security industry? To a large extent, FIPS-201 has been responsible for issuing large numbers of new credential cards, but has failed to change physical access control systems. Does the update rectify this? In this note, we examine the draft update and analyze what it means for the physical security industry.

Key Changes

*** ** ****-***'* *********, *** ******** ********* ** ********* *** Technology(****), *** ****** ******* ******** *** ****** *********** *** ******* standard,***** ****-***-*. ** ****** *** ********* * ************ ** **** **** ******* *** ******** ******* **** ****** participants, *** ***** ** ****** ** ******* ** **** ******* were *********, ** ***** *** ****** **** ******** ** ******** security *****:

  • *********** *** ** ****** *** * *****, ******* ** *.
  • ********** *** ************ ********** (************) **** *** ***** *** *** included.
  • ********** *** *********** '*-**************' ** ********** ** ***** ******** ********** devices *** *** ********.
  • *** ******** **********-*** ********* ********** ******* ** * ******* ** ******* *** ** **** specifications

***** *** **** ****** ** ******** ******* ** ******** ********** process ** ***** *********, *** ***** ******* ** *** ******** any ********* ****** ***********.

******* ** ******: **** **** *** *** ********* ********** ** ****, *** focus *** ************* ** ************* ******* ****** *********** *****. ********** the *************** ** ******** ****** *********** **** ***** ****-*** *****, but *** ******** ** *** ****** *** ******* **** ******** focus. ** * ******, *** **********/************** ** ****-*** *** **** mixed ** *** ******** ****** ****, *** ** **** *** primarily ******* ** ******* *** '*** *********' ***********. **** ****** bridges **** ** *** **** ** *** ******** ****** **** by ********* ********** ** *** ** ******** ***** *** ************ biometric *** ********** ***********.

**********: **** ***** ******** ** ********** ************** ** ********** *** they *** **** ** '* ******' ************, ***** *** ******** describes **:

  • "********* *** ****": ******** ** ******
  • "********* *** ****": *********** ****** ** ********* ** ****** ***********
  • "********* *** ***": ********* ***********, **** *********** **** ***********

*** ***** ******** ******** ** ***** *** *********** ***** *** biometric ********. ***** *** ******** **** ******** * '****** *****', this ******* * ******* ***** *** *** **** ** ****** biometric *****. *** ********* *********** ** ** ** ********* ***** time * *** ********** ** ******, ***** ** * ******* of * *****.

*-**************:*** ******* ******** ***** *** **** *** ********* *** ***** PIV ***********. ***** *** ******** **** *** ************ ******** *** technology, * *** ******* ************'* '*-************** ********'******** ** ********. **** ******** ************** ******* ******* ********** *** issuing *-*********** **** '**** **** **********', ******* **** *** ******* level ** ********** *** ** ******** ** **** **********.

*********

**** ************* ***** ** ********:****** *** *******, * ******** ******** ****** ********** *** ********, claiming *** ********** ************* **** **** ********* **** *** ********* products. *** ****** ***** ***, *** *** ***** *********, **** the '******** ******* ****' *** **** *** ** ******* ** only * *** *******. ******* *** ************* ** ********* ** interpret *** **** *************, **** ****** ** ***** ********* ********* products. ********* **** ****** ****** ************** **** ** ** ********* in ***** *** **** ******** ******** ********* ** '***** *** game'.

Market ******

*** ****** **** ****** ** ****** ** ******* ************** ** FIPS-201, *** ******** ** *** ********** ********* ** ***********. ** does *******, ****** *** ******* ******** ** ******* ******** *********** technologies **** ***. ***** **** *** ******** *** *** ** be ******** ********, ** **** *** ****** ** ************* ****** physical ****** *******.

************* ****-*** ******* ******* *** ******** ****** ******* ******* * huge ********, ********** ** ** ********* ** ****** *******. ***** the *********** ********** ********** *** ********** *** *******, **** ***** does ******* ** ****** *** *** ******* ******* ****** *** physical ****** ******* *******. ** ****** **** ****** ** ** received ** * ***** ****** ** ******** ******** ******** *** executives.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports on Access Control

Smartcard Copier Tested (13.56MHz) on Jul 05, 2017
Copying 125kHz cards is certainly easy, as our test results showed, but how about 13.56MHz smart cards? Are they more secure? IPVM focused on the...
Biometrics Pros and Cons For Electronic Access Control on Jun 26, 2017
Biometrics has been long sought as an alternative to the security risks of cards, pins and passwords. While biometrics has improved somewhat over...
Access Control Course Winter 2018 on Jun 11, 2017
The Winter 2018 IPVM Access Control Course is now open; save $50 on early registration. IPVM offers the most comprehensive access control course...
RMR Integrator Importance Statistics on Jun 08, 2017
How do integrators feel about offering RMR / recurring revenue services? For many, their business revolves around RMR, while others see no...
HID Edge EVO Tested on Jun 07, 2017
HID Edge controllers have been one of most common offerings in IP door controllers for years. The new generation is called Edge EVO. We tested...
Access Control AHJ Nightmares on Jun 01, 2017
For access control jobs, a single person can be the difference between finishing a job, costing thousands in extra dollars, and being profitable...
US States Security Licensing Guide on May 30, 2017
In the US, many states require integrators to be licensed to install burglar alarms, CCTV, electronic access control, or all three, and...
Anti-Hack Access Card Shields Tested on May 26, 2017
Keeping your access control card information secure is becoming a big priority, especially since cheaper copiers can hack details easily. Multiple...
Hackable 125kHz Access Control Migration Guide on May 19, 2017
Despite being one of the most popular credentials, 125 kHz credentials are easily copied and insecure as we showed in our test results, video...
Smartphone Controlled Kevo Lock Tested on May 04, 2017
Smartlocks are a growing market, with millions sold. Kwikset's Kevo is one of the most common choices, using the Unikey smart phone access control...

Most Recent Industry Reports

Competing Against ADT on Jul 20, 2017
ADT is one of the biggest players in the security industry, with ~$4 billion revenue. In 2017, they were acquired / merged with Protection...
Hikvision Launching Deep Learning Recorders on Jul 20, 2017
Hikvision has become a common choice for super low cost NVRs. Now, Hikvision is aiming to move up market, with deep learning NVRs that claim far...
PR Campaign Exploiting Manufacturer Cybersecurity on Jul 20, 2017
Manufacturers increasingly have a bulls-eye on their back. As cyber security solutions providers grow, they realize a great way to get publicity...
Axis Door Station Tested (A8105-E) on Jul 19, 2017
Axis continues their push into niche markets, especially audio, with network speakers, an IP horn, and video door stations. We bought and tested...
Manufacturer Favorability Guide on Jul 19, 2017
This 120 page PDF guide may be downloaded inside by all IPVM members. It covers our 20 manufacturer favorability rankings and 20 manufacturer...
$8 Billion Utility Georgia Power Enters Surveillance Business Offering Avigilon And Genetec on Jul 19, 2017
Utilities are typically considered major customers of surveillance integrators but one utility, Georgia Power, with $8+ billion in annual revenue...
Knightscope Laughs off Robot Drowning on Jul 18, 2017
A day after a Knightscope robot drowned, Knightscope has issued an 'official statement' making fun of the issue: The implied message is that...
Microsoft Video AI Cloud Services Examined on Jul 18, 2017
Microsoft has released one of the most amazing video analytics marketing videos ever. In it, they detect oil spills, track individual people giving...
Hikvision USA Head of Cybersecurity Exits on Jul 18, 2017
Hikvision USA's Head of Cybersecurity has exited the company. In this note, we review the move, share Hikvision's feedback and examine the...
'Suicidal' Knightscope Robot Drowns on Jul 17, 2017
Knightscope continues its hyper growth, at least when it comes to controversy, this time with a 'suicidal' robot in Washington DC. And here is...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact