|
 Application Overview
|
| |
 |
Access control includes authentication, authorization and audit. It also includes measures such as physical devices, including biometric scans and metal locks, hidden paths, digital signatures, encryption, social barriers, and monitoring by automated systems.
|
| |
In any access control model, the entities that can perform actions in the system are called subjects, and the entities representing resources to which access may need to be controlled are called objects. Subjects and objects both are considered as software entities and as human users. Systems equate subjects with user IDs, so that all processes started by a user by default have the same authority.
In some models, any software entity can potentially act as both a subject and object.
Access control models used by current systems tend to fall into one of two classes:
those based on capabilities and those based on access control lists (ACLs).
In a capability-based model, holding an unforgivable reference or capability to an object provides access to the object (roughly analogous to how possession of your house key grants you access to your house); access is conveyed to another party by transmitting such a capability over a secure channel.
In an ACL-based model, a subject's access to an object depends on whether its identity is on a list associated with the object (roughly analogous to how a bouncer at a private party would check your ID to see if your name is on the guest list); access is conveyed by editing the list. Both capability-based and ACL-based models have mechanisms to allow access rights to be granted to all members of a group of subjects (often the group is itself modeled as a subject).
Access control systems provide the essential services of identification and authentication (I&A), authorization, and accountability where:
- identification and authentication determine who can log on to a system, and the association of users with the software subjects that they are able to control as a result of logging in;
- authorization determines what a subject can do;
Accountability identifies what a subject (or all subjects associated with a user) did. |
|
 |
|
 Benefits
|
| |
 |
Electronic Keys are Difficult to Duplicate.
While physical keys can be copied very easily, duplicating electronic keys requires a much higher degree of sophistication. This makes your access system much more secure than it could ever be with physical keys.
|
 |
You NEVER Have to Change the Locks.
An electronic user database means that you never have to change locks at your sites. If a keycard is ever lost, it can be immediately removed from the database and a new one can be issued. If an employee leaves your company, his or her access rights can be deleted within seconds. This greatly lowers your overall exposure to risk.
|
 |
You Only Have to Remember One Key.
With electronic access, your single key or access code grants you access to every door you need to access, so there's no chance of forgetting the key for a particular door. If you get to a site where you need access and you are not recognized by the system, a network operator can add you or your supervisor to the list instantly.
|
 |
Electronic Keys Reduce Windshield and Repair Time.
If a tech needs additional access to handle an emergency in the field, his or her rights can be updated immediately. This way, the tech can travel straight to the emergency without returning to the office, reducing costly windshield time and accelerating repairs.
|
 |
Complete History Logging.
With an electronic access system, every entry to your sites is logged for later review. This can be an invaluable tool when investigating vandalism or theft, or for tracking response times or technical activities internally.
|
 |
Electronic Access Control is completely Customizable for Every User.
Electronic access control gives you the ability to set user-level access rights all the way down to individual doors and times. This minimizes your exposure to risk by granting no more site access than is necessary.
|
 |
Electronic Locks Permit Remote "Buzz In".
If a tech or outside contractor needs access to a locked site, you can open that door remotely from your central terminal. This gives you an extra degree of flexibility while making sure that you know about entries into your sites.
|
 |
You Won't Waste Time and Pocket Space with Electronic Access.
An electronic access is faster and betters that using locks and keys. You'll never have to look through a ring of keys to find the right one, and you won't waste space in your pocket or briefcase carrying bulky rings of keys.
|
|
|
 Market Use
|
| |
 |
The reasons for controlling access - to prevent unauthorized access of someone that may steal or damage property or harm people - is just the beginning of the rational that justifies the expense of an access control system. Improving productivity of employees and limiting exposure to liability are two additional reasons that these systems are commonly deployed. |
|
 Case Study
|
| |
|
|
|
|
