home news blogs forums events research newsletter whitepapers careers


Network Computing Network Computing Powered by InformationWeek Business Technology Network
InformationWeek 500 Conference -- September 14-16, 2008 Registed Today!

IMMERSE YOURSELF:

SOA

  |

Data Center

  |

802.11n

  |

Data Privacy

  |		 APO  |

Virtualization

  |

NAC

  |

Security

  |

Network Mgmt

  |

Enterprise Apps

  |

Storage & Servers


Security
B U Y E R ' S   G U I D E  
Intruder Alert

  September 4, 2003
  By Mike DeMaria


>> continued from previous page

Locked-Door Policy
TOC Issue TOC
Printer Print full article
Printer Print this page
Printer Download as PDF
E-Mail E-Mail this URL
Discuss Discuss this article
flame author Flame the author
 
  In this article
arrow
 Introduction
arrow
 Locked-Door Policy
arrow
 Camera Checklist | Weblinks
arrow
 Interactive Buyer's Guides

When it comes to purchasing door locks, the options are limitless. Some advanced locks require a form of power to operate. For nonmechanical combination locks, the power source might be a small built-in battery, while magnetically sealed locks need a constant power feed. If you go this route, find out what happens when, inevitably, the power goes out or the battery dies.

For locks that require power, there are two common modes when the power fails: fail-secure and fail-safe. If a lock's power-off state is fail-secure, it will remain locked; if it's fail-safe, the lock opens when the power goes out. Thus, fail-safe locks are vulnerable: Cut the power source, and the door opens.

So fail-secure is better, right? But what if there's an emergency, such as a fire? Will people be able to get out of the room easily if the door stays locked? Can firefighters get in? You'd never let security trump employee safety.

As a work-around, some fail-secure locks can be set to unlock automatically when the alarm system sounds. Other locks come with an option for fail-secure for entering but fail-safe for exiting (to see all options, check out the vendor survey responses in our online Interactive Buyer's Guide).

Every lock needs an authentication mechanism. Metal keys are familiar, easy to use and hard to break--but they can be easily copied, and if an employee loses one, you'll have to change all like keys. Magnetic stripes, smartcards and radio (RF) cards offer greater security: In addition to requiring specialized equipment to duplicate, each has a unique identifier that provides a log of entrances and exits and lets you revoke access if necessary.

To validate a user's key, reader devices are placed in front of doors. These door readers can be standalone units or networked together. Networked readers require new cabling, which can become quite expensive, but you won't have to go to every door to update enrollment. If you have high employee turnover or a large number of doors, the networked approach may be worth the money.

All token authentication has a common failure point--if it's stolen or borrowed, anybody can gain access. If the token is lost or left at home, the employee can't get in until it's replaced.

Combination locks overcome this problem. The longer the combination phrase, the harder it is to guess the combination. The best combination locks can detect repetitive failures and offer a cooling-off period or an alarm. Of course, it's still possible for someone to look over a user's shoulder and see the combination being punched in. The most effective locks are those that use both a token, such as a key, and a combination that only the user would know.

Biometrics let you authenticate identity based on physical traits like fingerprints, handprints, voiceprints and retinal scans. But this option poses problems, including difficulties with enrollment, lack of user acceptance and environmental interference (see our Buyer's Guide on biometrics). One way to ease into biometrics is to look for a setup that will integrate with existing authentication systems. For the smoothest transition possible, you must have user buy-in and follow the manufacturer's instructions.

Be sure the lock you choose fits the environment. If it's not waterproof, it shouldn't be installed outdoors. As for biometrics, some locations have a high concentration of airborne particles that may cause the sensitive equipment to fail and the locks to jam.

Finally, the strength of the lock should be equal to the value of the equipment you're protecting. At Network Computing's Real-World Labs® at Syracuse University, we've broken the magnetic hold on several cheaper locks.

Michael J. DeMaria is an associate technology editor based at Network Computing's Syracuse University's Real-World Labs®. Write to him at mdemaria@nwc.com.

Post a comment or question on this story.


start top  Introduction Camera Checklist | Weblinks 





Ready to take that job and shove it?

Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
10 Search Engines You Don't Know About
Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Yahoo Profits Fall 23%, Cuts 1,000 Jobs
Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.

More articles from our career center










InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Download Today
 
ROLLING RIGHT ALONG
Follow key Network Computing Reviews from conception to completion. This Week: Holistic APM.



Network Computing Reports Emerging Enterprise Podcast Series: Secrets to Success








TechSearch
Microsite of the Week


Powerful Information at Your Fingertips



InformationWeek Business Technology Network
InformationWeekInformationWeek 500InformationWeek 500 ConferenceInformationWeek AnalyticsInformationWeek CIO
InformationWeek EventsInformationWeek ReportsInformationWeek MagazinebMightyByte and SwitchDark Reading
Digital LibraryIntelligent EnterpriseInternet EvolutionNetwork ComputingNo Jitter
space
Techweb Events Network
InteropVoiceConWeb 2.0 ExpoWeb 2.0 SummitEnterprise 2.0 ConferenceMobile Business ExpoSoftware ConferenceCSI - Computer Security Institute
Black HatGTECEnergy CampMashup CampStartup Camp
space
Light Reading Communications Network
Light ReadingLight Reading EuropeUnstrungLight Reading's Cable Digital NewsConstantinopleInternet Evolution
Heavy ReadingLight Reading Live!Light Reading InsiderEthernet ExpoOptical ExpoTeleco TVTower Technology Summit
space
Financial Technology Network
Advanced TradingBank Systems & TechnologyInsurance & TechnologyWall Street & TechnologyAccelerating Wall StreetBank Systems & Technology Executive SummitBuyside Trading SummitInsurance & Technology Executive Summit
space
Microsoft Technology Network
MSDN MagazineTechNetThe Architecture Journal
space
App Infrastructure   |   Messaging & Collaboration   |   Network & Systems Mgmt   |   Network Infrastructure   |   Security  |   Storage & Servers   |   Wireless   |   Enterprise Apps
About Us  |  Contact Us  |  Site Map  |  Technology Marketing Solutions  |   Briefing Centers
Copyright © 2008  United Business Media LLC  |  Privacy Statement  |  Terms of Service  |  Your California Privacy Rights