In recent news, it was announced that a 19 year old used his old ID badge from a program he took part in at AOL to gain access to the facility for two months after the program had ended! He lived in the building day and night, using his old access credential to gain access to different areas on the campus. It was nearly two months before a security guard caught him and kicked him out.
Stories like this beg the question, "How could something like this have happened?"
The reality is, this happens every single day! We just don't always hear about it because these stories don't always take place at high profile locations like AOL Headquarters and don't usually involve two-month-long squatters. But not deactivating security privileges in Card Access Control systems is a serious threat to an organization's security, and it gets overlooked all the time!
Think about your own access control system. How do you add and remove people from the system? If you are like most customers that I talk to on a regular basis, you probably print your ID badges in one location and then employees are asked to take those new credentials to a seperate location, like Security, to have their access control privileges activated in that system. It is typically a two-step process.
The same thing happens when a person leaves the company. The first database they are removed from is HR or Payroll. (You and I both know that person isn't getting a paycheck anymore!) Then, someone in HR sends an email to a person in security, notifying them to deactivate that person's access rights in the system. Again, we are back to that two-step process.
This works fine if your security personnel are always at work and constantly checking their emails. But what happens when they go on vacation for a week and miss all of those emails? Or when they are at lunch and overlook the email about the terminated employee when they return from their break? Circumstances like those are the ones we often forget to account for when implementing security systems like Access Control, yet they play a critical role in our organizations' security!
When choosing to implement a Door Access system, be sure to think about the way that credentials will be activated and deactivated in the system. Ask yourself a few simple questions:
- Is there an easy way to maintain the current database of active cardholders?
- Can you import new employees into the system easily?
- If you deactivate someone in HR, is there a way for their credential to be automatically deactivated?
No matter what the size of your organization, security is always a concern. The more automated the credentialing process is at your facility, the less likely you are to have issues like the recent security breach at AOL.
Read the full story about the AOL security breach here.
Lindsay
Cornell is the Director of Sales for BadgePass, Inc. BadgePass manufactures cutting edge ID
Badging, Visitor Management and Access Control software. Visit www.badgepass.com for more
information.
Tuesday, May 29, 2012
Tuesday, May 15, 2012
Tips for Printing Quality Photo IDs
When printing quality Photo IDs, it is important to know what information, and how much information, will be included on your Photo ID. The elements included on your Photo ID will help determine the features you should look for in your Photo ID System.
Basic Photo ID
Custom card design – Photo ID software will help you design a card from scratch using your own images, graphics and logos – creating a unique and custom card that best fits the needs of your organization.
Cardholder information – Easily add cardholder information to your ID cards! You can connect to your existing database information and/or choose to enroll users via Driver’s License Scanning.
Photo – Whether you are looking for high quality images or a simple webcam, adding a photo to your card design will ensure an extra level of security.
Barcode – Barcodes are a cost effective way to include data on your cards that can be scanned and used in other systems, such as time and attendance or cafeteria POS and vending.
Advanced Photo ID
Signature capture – A signature pad will allow you to electronically capture the signature of each cardholder for placement within the card design.
Smartcards – There are many types of technology cards, such as contactless smartcards, that can be store cardholder information for use in other systems, like Access Control.
Magnetic stripe – Magnetic strips are another way to include data on your cards that can be scanned and used in other systems.
Lamination – Laminating printers apply a thin film to the card with heat and pressure during printing to protect against wear.
The more secure you want your credentials to be, the more advanced your Photo ID software requirements will be. Take all of these things into consideration when choosing which system to implement in your own organization.
Lindsay Cornell is the Director of Sales for BadgePass, Inc. BadgePass manufactures cutting edge ID Badging, Visitor Management and Access Control software. Visit www.badgepass.com for more information.
Basic Photo ID
Custom card design – Photo ID software will help you design a card from scratch using your own images, graphics and logos – creating a unique and custom card that best fits the needs of your organization.
Cardholder information – Easily add cardholder information to your ID cards! You can connect to your existing database information and/or choose to enroll users via Driver’s License Scanning.
Photo – Whether you are looking for high quality images or a simple webcam, adding a photo to your card design will ensure an extra level of security.
Barcode – Barcodes are a cost effective way to include data on your cards that can be scanned and used in other systems, such as time and attendance or cafeteria POS and vending.
Advanced Photo ID
Signature capture – A signature pad will allow you to electronically capture the signature of each cardholder for placement within the card design.
Smartcards – There are many types of technology cards, such as contactless smartcards, that can be store cardholder information for use in other systems, like Access Control.
Magnetic stripe – Magnetic strips are another way to include data on your cards that can be scanned and used in other systems.
Lamination – Laminating printers apply a thin film to the card with heat and pressure during printing to protect against wear.
The more secure you want your credentials to be, the more advanced your Photo ID software requirements will be. Take all of these things into consideration when choosing which system to implement in your own organization.
Lindsay Cornell is the Director of Sales for BadgePass, Inc. BadgePass manufactures cutting edge ID Badging, Visitor Management and Access Control software. Visit www.badgepass.com for more information.
Tuesday, May 8, 2012
How Can I Streamline Enrollment into My Access Control System?
The biggest security risk in access control is dealing with a two-step process for the enrollment and/or removal of cards. In most systems, cards are printed in one place and then cardholders must take their credential to another location to have their access rights granted before they have access to any doors in the facility. The same two-step process occurs for deactivation of credentials. The cardholder is removed from one database, but then an email notification or alert is sent to someone who then must manually remove them from a separate system before their credential is turned off in access control. This two-step system is not only time consuming; it is putting thousands of organizations at risk for security breaches every day!
The best way to streamline the enrollment process is to start with badge issuance. By integrating the assignment of access control rights and privileges into your badge issuance interface, you can eliminate the need for a second enrollment step. Simply enroll a user’s information, capture a photo and print them a card. While the card is printing, the smart card number can be read directly off the card during the print process and saved back to the database, preventing the user from having to manually enter that information. Once the badge is printed, that credential, as well as the users’ access privileges, will be automatically activated in your access control system.
Deactivation of badges can be simplified as well. By tying your access control interface into your existing HR database, you can keep up to date with all of your currently active employees at any given time. That way, as soon as an employee's information changes or new users are added/removed from the system, they will automatically be updated in your access control system. This will keep you from manually having to go into your card access system to deactivate credentials whenever someone leaves or loses a badge.
Single-Step issuance. It's really that easy!
Lindsay Cornell is the Director of Sales for BadgePass, Inc. BadgePass manufactures cutting edge ID Badging, Visitor Management and Access Control software. Visit www.badgepass.com for more information.
The best way to streamline the enrollment process is to start with badge issuance. By integrating the assignment of access control rights and privileges into your badge issuance interface, you can eliminate the need for a second enrollment step. Simply enroll a user’s information, capture a photo and print them a card. While the card is printing, the smart card number can be read directly off the card during the print process and saved back to the database, preventing the user from having to manually enter that information. Once the badge is printed, that credential, as well as the users’ access privileges, will be automatically activated in your access control system.
Deactivation of badges can be simplified as well. By tying your access control interface into your existing HR database, you can keep up to date with all of your currently active employees at any given time. That way, as soon as an employee's information changes or new users are added/removed from the system, they will automatically be updated in your access control system. This will keep you from manually having to go into your card access system to deactivate credentials whenever someone leaves or loses a badge.
Single-Step issuance. It's really that easy!
Lindsay Cornell is the Director of Sales for BadgePass, Inc. BadgePass manufactures cutting edge ID Badging, Visitor Management and Access Control software. Visit www.badgepass.com for more information.
Subscribe to:
Posts (Atom)