ZKAccess Control Tested

Avatar
Brian Rhodes
Published Dec 04, 2017 15:35 PM

***** ************ ****** / ******* *** been ********* ** *** ****, ******** a ***-**** ****** ******* ********.

*** *** **** ** **? *** how **** ** ******* ** *** emerging ****** ******* ********* ** ***** and *********?

** ****** ********* **-********* **** ********** ** **** ***.

** ****** ******** *** *** ********** application ** *** *** ** ****** up ******* *********** ** *** ******** space.

** **** ******, ** ***** ***** findings *** ****:

  • * *** ********* *** * *** weaknesses
  • ********** ** ********* *** ***** ******
  • * ****** ******* ******** ***** ******* of *** ********** *** ****** *******
  • * ******** **** ***** ******* *** inside ** *** **********
  • * ***** *********** ********** *** ********' management ****** *****
  • ******* ************* ******

******, ** ****** *** ******** ** how **** *** ****** ********, ***** it ** ****, *** *** ** compares ** ***** ****** *******.

[****: ** **** ********** *********** ************'******* ******* ******** ** ****, *** are *** ********* ** ******** ******** to ** **** ******.]

Key ****** *********

*** ***** ****** ********' *** *********:

  • *** *********** *** **********: ******** **** *** **** ******** for **********, *********, *** ************* ** the ******** ****** *********** ***** ***** break ********** *** **** ********** ************. Everything ** ******** ** * ******* downloaded, ******* ***** ****** *********** **** will **** **** ***** **** * few ******* ** *****.
  • **** *******: ***** **** '******' ****** ******** cut *** ******* **** ********* ******* interfaces, ******** ******** * ***** *** that ** ****** ** *** ** and **** ** ****** ** ***** systems.  *******, ****** ** ******* *********** may ******* **. *** ******* ***** explains **** ** ******.
  • ******* *******: ****** ***** *** *********, ******** support ********** ****** ******* *** *** able ** ******* ****.
  • ***** ******* ********: ******** ******** *** ***** ** ********* registered **** * ***** ****, ** it ** ******** ** ******** ******* credential ******* *** ****** *** **** using ****** ****** ** * ****** and *** ************ ***********. 
  • **** *********: ******** ****** *** ******* ** **** reporting, *** *** **** ********* *** be ******* **** ****** *******, *** exported ** * ****** ** ******** usable ********* *** ****** **** ***** systems.

Tested **********

*******, *** **** ******* *** ********** key ********* ** ******** ********:

  • ********* ******* **** ****** *****: **** ***** ******** *** ******* are *********** **** ******** ****** ***** that ***** *** ***************. **** **** popup, ****** ****** ****** ** ********* in ******** ** **** ********* *** not **** ***** ***** *********, ******* down ********* ** ***** *****.
  • ******* *****: **** *********** ******** **** *****, options *** ******* ** ******** ********* NVRs ** ****, ************* ******** *********** choices. *** ****** ****** ** ********* must ** ******** **********. *** **** applications, * *** ** ***** ********** application ** ****** *** **** ******, playback, ** ********* ********.  ***** *********** is **** *** ******** **** ****** what ** ******* *** ****** ****** systems.
  • ************* **********: ****** ** **** **** *** allows ******* *** ************ ******* ********.
  • **** ******* ** ***** *******: ** ********* ******** ***** ** readers, ********* ********' *** *** *** branded ******, *** *** *** *** or **.** *** ******. *** **** option *** ********** **** ** ***** units *** *****, **************, ************ ******* using *** **** ********** **-*** ******. Many ******* ******* *** ******* **** ** ** ****** ** ******** ******** of *** ****** ***, *** ******** does ***.
  • ** ***: *** **** ** *** ******* also ***** **** ********** ************** ***** to ** *** ** *** ****, a ****** *** ***** ********* ************* not ****** **** *** ***********.

ZKAccess **. ****** **. ***** ******

** * **** *****, ******** ** better *** **** ******** **** ***** ******, *** ***** *** ******** ****** and ********** ** ********* ******. *** ***** ********* *** ** the ***** *****-***** **** *** ****** control, *** *** ***** *** ********* best ****** ** *****, ***** ******* with * ********** ***** ****** ** locally ********* *****. 

******** ****** **-***** ********* *******, ***** we ****** ******* ***** ****** *** test.  ** ********** ** **** ********* and *****, *** ******* *** ******** of ******** *** **** ******, *** in *** ***** *** ***** ***** we ***** **** *** ******** **** the ***********, ***********, *** ***** ** our ********* *** ******** **** ****** of ** ******* ** *** ****.

Difference ******* ****** *** ******** ** ********

** ***** ** *** ******/******** ******* *******, ******** ** *** ***** ******** division ** *******-***** ******:

******** ** ******* ** **************/ '***** added' ************ ********, ** *** ******* still ********* *****, ***********, *** ******** ZKTeco ******** *** ********. **** ******* then ** ***** ** ****-******, *** cost ***** *************, *** *** * dedicated ****** **** ************ ********/ ************** and ******** ** *** ** *********.

******, ***** *** **** ******** ******** ZKAccess ********* *** *****, **** ** the ******** *** ***** ** *** equipment ********* '******' *******, ********* *** large ***** ********* ** *** **** enclosure:

ZKAccess ******* ********

****** ***** *** * ******** ** two-door ********** *** ********* **** ~$***, while * ***-**** ***** ****** *** a ****** **** ** ~$***, *** Hikvision's ******* **** ~$***.

**** **** ******** ******** **** **** Hikvision, *** **** ** **** **** Dahua. *******, ******* *** *** ***** offerings ** ********* ***** **** ********** western ************ ******** ** ******* ********, ***** ******* $*,*** ** **** *** a ***-**** **********.

*******, *** *** ****** ******* ***** do *** ******* ************ **** ***** security ******* ** ********** ********, ** rely ** ******* ************. *** **** pricing ******** ******* ********* ***-**** ****** kits, *** *** ***** *** ********* ******** ****** ******* ****.

Managed *** ******* ********* ***** ******

********' **** ********** ********, ************* ***** ********, ******** ****** ******* ********* ************* and ********** ** *** ***********. *** client **** * *** ******* *** requires ** ********* ****** ** **** the ********* **** ****** ********. ******* using ********, *** ****** ****** ** accessed ** ******* ** *******, *** the ****** **** ** ********* ** machines **** ** ****** *** ******.

*** ********** ***** ***** *** ******* interface ******, **** *** ******* ********* via **** ** *** ******:

********* ******* **** ************* **** **** workstations *** ** *********, *** * familiar ********** *********, *** *** **** are ****** ****-**** ******* *** ****** slowdowns *** ******* ** **** **** client ************.

** ***** ** ******* *******, ******** includes ***** **********, *******, ********** *****/****** event ***********, *** ****** **** '******' and '****' ******** ******* ** ***** small ****** *********. *******, **** ******** are *******, **** ** ** ** Badge ********, *** ** **** ********* or *****-******** **********.

****** ******* ** ***** ******* ***** workstation ********* *** ******* ******* *** panel.  ********* ******* **** **** ***** and ********* *** **** ** ************, but ********* *** ****** *** ****** on *** **********.

Access ********** ******** ********

** ***** ** ****** ************, *** video ***** *********** *** **** *** build ******* ** *** **********. *** controller *** ********* **** ******* * 'black ** *****' ***** ******, ***** can ********** ****** ** ***** *** locations. *******, ***** *****, ***** *** contact **** *** ******* ** **** access ** ********* ******. 

******** ** ***** ****** ***********, *** mainboard ******** ** ** **** **** for **** '*******' ******** *** ***** storage ** *** ******. 

*** ***** ***** ****** * *****-** look:

**** ************* ***** ***** ** *** same ********** *********** **** ** ******* the ********** ******, *********** *** ****** and **** **********/***** **** ** ** familiar ****:

C3 ********** ******** ****

****** *** **********'* *******, * ******** field *********** **-**** ***** *******, **** of ******, *** ******* ****** **** are *******:

*** ****** *** ******** ** ***** LEDs ****** ** ***** * **** range ** ******** ** ****** ****** when *** *** *** *** *********. For *******, ****** **** **** * generic '***** **' *** ****** ** most ********, ******** ******** **** ** each ***** **** ***** *** ********* or ***********, ** *************** *** ******* narrow **** ** * ******** ******** point. **** *** ****, *********** *** troubleshoot ***** ******** ****** ******* ********** a ****** ** *** ******.

Door ********** ****-**-**** **********

********' ********* ** ******** *******, *** is ******* **** ********* ******** ******** to ********* ******.  *** ********* ***** includes * ****-***** ******* ******** *****, while ******** ******** ********** ******* ******* directly ** *** ********** ***** ***** Phoenix ***** **********. ********' ******-****, ***-****, and ****-**** ****** ***** ******* ****** layouts, *** *** ************* *********, **** the ******-**** **** ***** ***** **% the **** ** *** *** **** model.

*** ******** ******* ******** *** ********* Access ** ***** ** **** *****:

***** *** ******** ** ********* *** separate ****-******* **** ***********, ***** ********* includes **** ****** *** *******. ******* panel *** *** *** *** **** have ****** *********.

ZKAccess User ********** *********

******* ***** ********* ********* ** ** comparable **** ***** ***** ****** *********, including ******** **** ****** ****** ******, manual ****** ********, *** **** ********** and **** ********** ******** ********. ** *** test, *** ******** ********** *********, ******** the ****** ********* ** ****** ***** often ********* '****-****' ****** **** ******* until ************. 

*** ***** ***** ***** *** *** basic ********* *** ******** ** ********' management *********:

Bad: ****-**** ******* ****** *****

* ***** ** *** ******* ********* is **** ****** ****** ***** **** to ** ************ ****** ****-**** ******* are *********. 

*** ********* ******* ***** '**' ** acknowledgment ** *****, **** ** **** activity ** *********. ** ******* ** shown ** *** ***** *****:

** *** *****, **** **** ***** updates *****, *** ** *** ** two ********** ******, *** ******** ********** with ********* *** ******* ** ***, like *** '****** ** **** *** request' ***** ***** *****:

*** ***** ****** ******* ********* *** retries ** *******, *** *** **** they ******** ** *** ** * problem.

Bad: ***-**** ****** **** **********

******* ********* ******* **** *** ********* is *** ******** ***** ******** ** activate ******* ********, ***** ** ****** is ******** ** ********* ****** ** other *******.

*** *******, *** ****** ****** **** control ** * ***-**** *******, *** just ******** '******' **** *** ******* the ****. * ****** ******, ** establish ****** ******** ** ****** ** be ******** ***. *** ********* ***** this:

***** *** * ************ ********, *** extra **** ***** '*** ****' ******* typically **** *** ********** *** **** down **** ****** ** ****** *********.

Good: ******* ********** ********

** ** ******** ****, ******** ******** a ******* ********** ****** ** *** basic **** ********. *** ***** ***** gives * ***** ******** ** *** feature:

*** *** ***** ** ** ********** module ** ************ **** ****** *** repeated ******** *** ******** **** ****** ****** logs.

*** ****** ****** ***** ****, ** when ******* ******** *** ********, **** delivery ******, **** *** **** ***** specific ******* ***** *** *** ****** event **** **** ** ********* *******.  Also, ********** ******** ****** *** ***** verification *** ** **** **** *** platform.

Good: ******** *******

*** **** ****** *** ********* *** builder ****** **** ** **** **** and ****** *** ***** ****** *******.  Manual ******** *** * ***** ***** to ********, *** ******* ***-** ** they *****. *** ***** ***** ***** more ******:

***** ********* ********** *** ********/******** ***** is ****, *** ********* ******* *** icons ** ***** **** *** *******, and *** **** ****** ** ******.  For ***** **********, *** ********* ***** will ** ****** ** **** ***** may ** *******.

*** ****** ****** ******* *** ******* to ***** *** *******. ******* ** display ** ***** ******* **** **** stations ** ***** ****** *** *** available ** *** *** ******.

3rd ***** ****** ************* ** *****

** *** ***** *****, ** **** at ******** ******* *** *** ******. We **** ****** *** ********** ****** using ******* *********** *** ***** *** controller ******* ********* ***** **** ***** units.

***** ******* ******* ** '****' ** many ***-***** *****, ******** **** *** support ****, ***** ** * ******, ********* method ** ******** ****** *************. 

Good: ******** *** ****** *********

*** ****** **** ****** ****: ******** reporting ** ****** ****** *** ****** queries, printing ****, *** ********* **** **** within *** *********** ** ******** *** flexible, *** ** ******* ***** ** utilities *** ******. ** ******** **** ** the ***** *****:

****** **** ******* *******.*** ** .*** files, *** .*** ******* *** ********* for ***** ******** *** ****** **** external ********. 

Telnet **** ****, ********* ************* *******

*** ********* **** ** ******* *** ZKAccess ******* **** ** **** - commonly **** *** ******, *** * common ****** ** ******** ********:

** *******, ** ***** ** ****** if **** **** *** ********** ******, as ****** ** *** ****** ** normal ********* *** ********* **** ****** for ***************.

***** *** ********** *** ** ********* and ******** * ****** *** ****** operation, *** ********** ******* ****** *** information ************ **** ****** **** **** controls *** * ****** **** **********. ****** sniffing ******* ******* ****** **** ** not ** '**** ****' *** ** obscured ******* ******* **** ********:

******, ************* **** ******* ********* *** ********* (*****, *****) ****** *******, *** ****** specific ********* ** **** ** ******** them, *** ******** ******** ** ******* or ******* ******* ****.

*** ****** ** *** ****'* ******** was introductory *** *** *** ******* ****** penetration ******* ** ************* *********** ** device ********, *** ***** *** *************** of ******** *******, ** ********** ** hardened ** ****** ****** ****** ** expected.

Premium '***' *** ************* *** ******

** ********* **** ********, *** ***** that ******* ******** *********** ** *** platform ** ****** *** ********* ** premium *********, *********'*** ***' ************ ****** *** (*** ******** ********), or *** ***-************-***** ************* ********** ************ ******** ***** *****.

************, ******** ***** ** *** **** version ** ****** ***** *** **** under '******' *********** *** * ****.

** **** *** ****** ***** ******* offerings, *** *** ***** ************* ************ where ******** ************* ** ******, ******** may ***** ********** **** ******* **** at ********** ****.

 

Comments (11)
UD
Undisclosed Distributor #1
Dec 04, 2017

You have only tested the entry level product, not the Pro series which supports lift control & very nice ZKBioSecurity 3.0 browser based software. This software supports multiple clients with no software install on the client PCs.

You have also totally ignored the InBio controllers which, in addition to wiegand / RS485 card readers, also support integrated biometrics, with the biometric template being storedin the controller, not in the edge (reader) device. These biometric readers can also be used for lift control.

The system is not limited to 26bit either, as you state. In fact it supports multiple wiegand formats & can even have differing bit streams for different users  eg 26 bit & 37 bit from the same reader.

You mention no support for PoE, there is an option to purchase the controllers in a bundle with PoE support. However PoE has limited usefulness in the access control world due to the current draw of many locking devices. Typically items like drop bolts have an inrush current of 1A (at 12VDC). This means a double doors could draw 24 Watts on initial lock.

(1)
Avatar
Brian Rhodes
Dec 04, 2017
IPVMU Certified
In reply to Undisclosed Distributor #1

Hello:

1) The product we tested also includes elevator control, and we tested it as the widest distribution of ZKAccess software. The company does not limit the platform we tested as 'entry level' or unsuitable for commercial installs.

2) We did not test biometric readers as part of this test. We have tested previous ZKTeco readers in The $100 Fingerprint Reader Tested, but that equipment is now quite old and will consider a new test in the future.

3) The ZKAccess branded credentials and reader we tested indeed is 26 bit. Users need to use other readers and credential combos, supported via Wiegand, if they want different.  I'll clarify this in the text as needed.

4) Debating the value of PoE support in access is tough, when it is widely used & available in from vendors like Mercury, HID, and Axis. The wattage limitation you mention is true, but also not common given lock power is supplied independently of controller field power like routinely done with maglocks or locks requiring heavy wattage.

Thanks for the feedback!

 

(2)
JH
Jay Hobdy
Dec 05, 2017
IPVMU Certified

We have installed a couple units and our clienst were very happy. Granted they were small applications, pools for HOAs.

 

We only install the client software on a server, then any other workstation locally or remotely can access it via a browser with no software installed. 

 

There is also a way to link it to Milestone via a 3rd party app but we never researched it fully.

(1)
Avatar
Brian Rhodes
Dec 06, 2017
IPVMU Certified

Note:

Larry Reed, ZKAccess CEO, responded to our report with this followup:

You reviewed our free software which has been "frozen" for a year. Our CURRENT enterprise software is called ZKBioSecurity and has a feature set comparable to the major PAC software companies.

We also have PoE and webserver functionality. Also support for many Hikvision and Dahua models, including all Onvif cameras. We also have visitor management, LPR gate control, VMS integration, support for up to 8,000 doors and the only access control panel in the world which stores & matches fingerprints (up to 20,000).

If you're going to report to your subscribers on ZKAccess . . . please base your report on currently available technology. Your report makes ZKAccess seem like a likely alternative to Hikvision and Dahua... But cherry picking an old product isn't fair to either ZKAccess or your subscribers. 

We purchased our product through distribution (current inventory) and discussed the platform with ZKAccess tech staff via phone.  At no point did they disclaim the platform tested was unsuitable or obsolete, only that it was free where ZKBioSecurity is licensed based on fees per door (Street: ~$40 per door). 

ZKAccess' 'no cost' version draws a relative comparison to the 'free' Hikvision and Dahua access softwares, which we focus on in this test.

In fairness to ZKAcess, however, some of the limitations described in our report may not be comprehensive limitations (ie: ONVIF video support), but only ones applicable to the free version of software.

I'll make this clear in the post above.

JG
Jason Gould
Dec 11, 2017

While Wiegand support is 'open' to many 3rd-party units, ZKAccess does not support OSDP, which is a serial, unencrypted method of handling reader communication.

I think this was meant to say "encrypted"...?

Avatar
Brian Rhodes
Dec 11, 2017
IPVMU Certified
In reply to Jason Gould

Yes, good catch. "Encrypted' is correct. Fixed. 

Thanks,

JH
Jay Hobdy
Mar 11, 2018
IPVMU Certified

Does anyone know if ZK will allow scheduled unlocking/locking of doors such as during shift change etc?

 

 

Avatar
Brian Rhodes
Mar 11, 2018
IPVMU Certified
In reply to Jay Hobdy

Yes, using ZK this is done in 'Time Zones', where specific doors are set to be unlocked during a certain time and relocked/ return to normal state after the time expires.

(1)
JH
Jay Hobdy
Mar 11, 2018
IPVMU Certified

Perfect thanks.

 

Do you know if that is in the free version of the software or the paid version?

 

 

Avatar
Brian Rhodes
Mar 11, 2018
IPVMU Certified
In reply to Jay Hobdy

That's a keen question.  In the case of 'Time Zones', they are a standard feature in both versions.

UD
Undisclosed Distributor #1
Mar 12, 2018

As a bonus the doors can be configured to unlock during passage mode (Time Zone) only when a valid card has been used during this time zone. This ensures staff are on site prior to doors unlocking

The function is called "First Person Normally Open"