Cornerstone Access Control

Transcription

1 Cornerstone Access Control

2 Improve site and information security with biometrically-enabled access control

3 Access Control improves identification and authorisation processes across a wide range of business and social environments Cornerstone Access Control With increasing security threats, many organisations see tighter access control as integral to ensuring safer environments. Using biometric technology, Cornerstone Access Control improves identification and authorisation processes across a wide range of business and social environments. Access Control allows you to define when, where and how people can gain access while keeping you informed of personnel whereabouts at all times. Access Control is commonly used to manage access to sensitive areas, such as server and computer rooms, or high risk areas. The system is often deployed by government agencies, where security of information is paramount. The system is designed to provide complete control and visibility of people s movements, to reduce the risks associated with unauthorised access and increase accountability for individuals actions.

4 Identification of staff, professional visitors and contractors is fast, accurate and simple How Access Control works Enrolment People are first enrolled via Cornerstone s enrolment engine, which captures a range of personal data. This can include a photograph, geolocation data and demographic data. Scanned documents such as a driver s licence or passport can be used to establish a person s credentials and these scans can be stored with the other enrolment data for future reference. Designed with busy people in mind, the user interface is highly visual and simple to use, removing the need for extensive and/or repetitive training. Enrolment is performed on an enrolment station computer that not only manages enrolments but also provides the user interface to the server and all functions of Cornerstone. A customisable enrolment wizard guides the user through the process so it s swift and easy to perform. People are usually enrolled with an iris camera or fingerprint reader, but alternative biometrics can be used if required. Once enrolled, identification of staff, professional visitors and contractors is fast, accurate and simple. Enrolment is only required once, which means that everyday users and regular site visitors no longer need to log their personal details each time they are on site. In the case of contractors this can deliver enormous savings in billable time. In one example a client experienced time savings of over 45 minutes per visit. In day to day usage, biometrics offers further time savings. From the point that the user presents their eye to the camera, to the moment that access is granted or denied, typically takes only 3 seconds. Bottlenecks associated with manual processing soon become a thing of the past. Tailored access rights to suit client needs Access Control combines groups of users to give detailed and flexible access rights, according to each client s needs. You determine when, where and how people gain access, using card control where required. Take control over: where people access e.g. server rooms, and how they gain access e.g. by biometric device or card reader depending on the security requirements for each area; and when people have access e.g. shift workers who access areas at different times The access groups not only offer complete control over who goes where and when, but they also alert security managers if individuals attempt to access unauthorised areas, or access authorised areas at unusual times. This ensures that untrustworthy personnel are quickly identified and dealt with. ID cards To support a combined biometric/card system, Access Control can operate in conjunction with other forms of ID, such as: Smart Cards, passports and visas. As standard, Cornerstone works with Proximity Card access systems such as HID iclass, Cassi Rusco, Cardax, Mifare and Pegasus 2000 and will easily integrate with other systems. If card systems aren t already in place, modular enhancements allow you to produce ID cards straight from the system so that additional hardware isn t required. For organisations that only require tighter security in certain areas, a combined biometric/card system helps to reduce the hardware costs associated with numerous biometric devices.

5 Better movement control with anti pass back To prevent pass back, Access Control can be customised to allow movement in a prescribed manner and direction. Once a person has been recognised at a certain point, the system initiates a logical lock out. That means they cannot progress or egress in any manner other than that prescribed by the enrolling administrator. If an attempt is made to gain access to an area not assigned to that person, or outside of the allocated times, a record of the attempt is kept and an alarm status may be applied. Anti pass back is currently in use at the head office of the Commonwealth Bank of Australia on its data rooms and at other locations around Australia. Increased visibility through powerful reporting tools and audit trails Access Control comes complete with a set of standard reports, such as enrolled persons by name, class, permissions, date & time, station, movement history and many more. All reports are available to authorised system operators at any time, giving them immediate access to people s whereabouts. This means people can be located promptly, for example in the case of fire or personal emergencies that require immediate contact. Security is enforced through audit reports that allow system users to track personnel movement over time. Repetitive attempts to breach security are therefore easy to prove and often provide critical evidence in disciplinary/dismissal matters. This audit capability brings transparency to an area of access management that has typically been difficult to control and in many cases is the most important aspect of security management. Application audit trail The application audit logs all actions against the database, which holds all data on users, access history etc. All addition, modification, deletion and viewing operations are audited so that security managers stay abreast of which changes have been made, when they were made and who made them. In addition, all search operations are logged, along with the result count and the parameters that were used in the search. Again giving the security manager complete visibility of how the system is being used identifying abuse, if and when it happens. To offer maximum flexibility, reports are easily customised and generated by the client. We also offer a report writing service to accommodate more complex requirements. This is enhanced by the system s facility to integrate with existing information systems so that where required, reports can draw on data across systems - allowing advanced statistical analysis. Access Control allows system users to track personnel movements throughout their facility accurately and immediately

6 Security audit trail The security audit logs all actions against the security database, which holds all data on operators, roles and tasks etc. As with the application audit, all addition, modification, deletion and viewing operations are audited. The security audit also records all log on operations by operators and a filter is provided for this purpose. Improved control with Cornerstone s modular solutions Access Control is easily integrated with any of the modules from the Cornerstone range, including Visitor Management, Asset Management and Time Capture. This ensures improved visibility and control across all functions where improved identification and security processes are required to create safer environments. The system also integrates with CornerSafe, Argus Global s powerful key safe management solution, to ensure that people cannot exit the site without first returning their keys. It will also notify security personnel if and when attempts are made. The True Identity Controller (TIC) The True Identity Controller, or TIC, is a purpose built computer that provides the interface between the Cornerstone server - which holds all the enrolment groups and defines who can have access and when - and an Entry Access Control System (EACS) to control the opening of connected doors. The TIC can also run on its own as the EACS interfacing between the Cornerstone server and door strikes directly. The TIC interfaces with the Cornerstone server. It uploads all current enrolled users and passes access information back to the server. It is therefore able to operate standalone at times when the server is offline, ensuring that the entry access system continues to operate. When the server comes back online the TIC will synchronise with the server to upload all data accumulated during the time the server was offline.

7 A typical Access Control configuration includes the following: Cornerstone server supplied with the Access Control module; Iris ID and/or Sagem Morpho; and True Identity Controller that interfaces with existing entry access control or control doors The TIC interface is able to operate standalone at times when the server is offline, ensuring that the entry access system continues to operate

8 Argus Global (EMEA) T: +44 (0) E: W: Registered in England as Biometric Technologies Ltd at: 5 Meadow Court Witney Oxon OX28 6ER Registered No: UK SWITZERLAND AUSTRALIA