Universal validation module for access control systems
First Claim
1. A method for accessing control system, comprising:
- providing coupling to the access control system using modular communication interfaces that includes a first communication port that couples to at least one reader of the access control system and enables a validation device to receive cardholder data from the at least one reader and includes a second communication port that couples to an access decision component of the access control system and enables a validation device to send extracted ID information to the access decision component;
receiving cardholder data in connection with an access request at an access point controlled by the access control system;
validating the cardholder data using an Internet connection to access a remote revocation database that indicates if credentials corresponding to cardholder data have been revoked by authenticating the cardholder data according to an authentication mechanism;
after validation of the cardholder data, extracting ID information from the validated cardholder data; and
sending the extracted ID information to an access decision component of the access control system that determines whether access is granted for a cardholder corresponding to the extracted ID information.
2 Assignments
0 Petitions
Accused Products
Abstract
A validation module provides for the upgrading of a physical access control system (PACS) to full HSPD-12 compliance without requiring modification or replacement of the existing PACS. The validation module may contain all of the validation functionality required by federal specifications and technical requirements. The validation module may be installed between an existing PACS panel and a supported card/biometric reader. Readers may be selected based on assurance level requirements, e.g., contactless or contact readers for low and medium assurance level areas and full biometric readers for high assurance areas. The validation module may validate a card according to the assurance level setting, extract ID information from data on the card and then pass the ID information to the PACS panel for an access decision. Cardholder data captured by one validation module may be distributed to other validation modules of the PACS using a management station.
-
Citations
7 Claims
-
1. A method for accessing control system, comprising:
-
providing coupling to the access control system using modular communication interfaces that includes a first communication port that couples to at least one reader of the access control system and enables a validation device to receive cardholder data from the at least one reader and includes a second communication port that couples to an access decision component of the access control system and enables a validation device to send extracted ID information to the access decision component; receiving cardholder data in connection with an access request at an access point controlled by the access control system; validating the cardholder data using an Internet connection to access a remote revocation database that indicates if credentials corresponding to cardholder data have been revoked by authenticating the cardholder data according to an authentication mechanism; after validation of the cardholder data, extracting ID information from the validated cardholder data; and sending the extracted ID information to an access decision component of the access control system that determines whether access is granted for a cardholder corresponding to the extracted ID information. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification
-
- Resources
-
Current AssigneeAssa Abloy AB
-
Original AssigneeAssa Abloy AB
-
InventorsMcGeachie, John J.
-
Primary Examiner(s)GIRMA, FEKADESELASS
-
Application NumberUS14/746,890Publication NumberTime in Patent Office819 DaysField of Search726 2, 726 7, 726 27, 726 1, 726 3, 726 6, 726 9, 726 4, 726 5, 726 8, 726 19, 726 20, 726 26, 726 28, 726 29, 340 56, 340 581, 340665, 3405457, 3405731, 340 565, 340 57, 340 583, 340 586US Class CurrentCPC Class CodesG06F 21/32 using biometric data, e.g. ...G06F 21/33 using certificatesG06F 21/335 for accessing specific reso...G06F 21/34 involving the use of extern...G06F 21/83 input devices, e.g. keyboar...G06F 2221/2153 Using hardware token as a s...G07C 2209/02 Access control comprising m...G07C 9/257 electronically G07C9/26 tak...G07C 9/27 with central registrationH04L 63/0823 using certificates cryptogr...H04L 63/0861 using biometrical features,...
