Understanding the WSS Solution for Secure Mobile Access Control



The topic of smartphones in access control systems is the buzz among customers — that’s because practically anyone using an access control system already carries a smartphone, and many say it’s easier using their phones as their credentials. But besides convenience, there are key aspects of WSS Integrated Technology’s solution that makes smartphones inherently secure for access control.

First, let’s review the basics of access control, which authenticates a person by following three things:

  • recognizes something the user has (RFID tag/card/key)
  • recognizes something the user knows (PIN)
  • recognizes something the user is (biometrics)

The mobile credential, by definition, is already a multi-factor solution — they remain protected behind a smartphone’s security parameters, such as biometrics and personal identification numbers (PINs). Once a biometric, PIN, or password is entered to access the phone, the user automatically has set up 2-factor access control verification.

Remember, you can’t have access to the credential without having access to the phone. If the phone doesn’t work, nor does the credential. The credential works just like any other app on the phone. The phone must be on and unlocked. These two factors – availability combined with built-in multi-factor verification – are why smartphones can be a great tool in access control.

WSS Mobile Access Solution
WSS offers the DMP CSR-35 Conekt Bluetooth Reader and CMC-2 Smartphone Mobile Access Credentials, both by Farpoin­te Data — the trusted global partner for premium radio-frequency identification (RFID) solutions. And, in addition to Wiegand, the DMP Bluetooth reader is fully tested and compatible with our OSDP-capable modules. For increased security, this Open Supervised Device Protocol (OSDP) supports high-end 128-bit AES encryption to more effectively prevent the interception of data between modules and readers.

How It Works
With WSS’ mobile access solution, the smartphone connects to the door reader using Bluetooth Low Energy (BLE) technology — as the most common type of short-range radio wave communication used in the security market, it’s also affordably priced and is very efficient; a single cell battery could operate for months on end.

As for the smartphone credentials, a Registration Key Certificate is provided for each one you order. This unique number is used as the electronic key to open a door with an electric lock.

To install their mobile credential, users need to first have the Conekt Wallet App installed on their supported smartphones. This is available on the Apple App or Google Play Stores. After launching the app, they would simply select the “+” button, indicating they would like to load a new credential, then enter the unique 16-character Key from the Certificate and tap “Submit.” Once successfully registered, the new mobile credential will appear in the Wallet App ready for use.

From that point on, the user simply presents their smartphone to the BLE-enabled reader, and the ID number is transferred from the door reader to the controller where it is compared to the list of users. If the ID number is accepted, it will unlock the door.

Forget having to enter a PIN or password to authenticate your identity — your smartphone is your identity. Once the phone is operational, so too is your credential!