At first sight elevators don't seem so different to each other. All get you up and down in larger buildings and it is annoying for everyone to wait for them. However at closer look, there are several main types of elevators.
You might know these elevators from smaller buildings. It's the one elevator you are waiting on and takes a long time coming down from the 5th floor.
Kisi's opinion: Mostly as a tenant in a building you can't change the elevator. Keep a close look at how that elevator is operated - does it lock after hours? Who gets keys and how many? What are operations processes during busy hours?
If you are located in a larger building, you likely have an elevator bank. That avoids you having to wait a too long time for the elevator since there are multiple.
Kisi's opinion: Pay close attention to how these elevators are called: Can they be called individually - that will create a lot of chaos. If you have a destination dispatch system, you'd type in the floor you are going to and the system calls the logistically fastest elevator for you. Those systems are typically very expensive though.
The elevator is public in the sense that anyone can get an elevator by pressing the call button. However once inside the car, passengers will need to do a card read, which will allow them access to particular floors. This setup will typically have a call button in the lobby as shown below. The elevator access control groups program which specific floors to unlock based on the presented credential, and also defineshow long the buttons can be pressed after the card has been presented, e.g. 10 seconds.
This is the opposite of the case above. Only a passenger with verified credentials will be able to call for the elevator. Once in the elevator, one will be able to select any floor to access. This setup has a reader in the lobby (as opposed to a call button) which allows cardholders to call a private elevator.
This is a combination of the two configurations and has added security. Not only will a passenger require a card read to call the elevator, he will also need to do a card read once in the elevator, and only has access to particular floors which his credentials has allowed for. In addition to having a reader in the lobby, the setup requires a reader in the car.
When a traditional DCS is used, the calls are given only from the Destination Operating Panel (DOP). For this reason, the card reader is integrated only with the DOP. Turnstile integration can be done to activate direct home oor call feature when a person passes through it.
Access control systems can take pre-determined actions, depending on trigger status from external systems, and send triggers to external systems like security, fire alarm, video, and emergency systems.
Elevator Access Control panels connect to 3 different main devices:
Typically these boards can only restrict access to a certain number of floors, e.g. 10 floors in this case but can be expanded with extension boards that can control another 16 floors each in this example:
For the elevator control buttons there are typically four wires connecting the button with the elevator system:
The card reader is typically connected via Wiegand input and the server is connected via TCP/IP or RS485.
Let's assume you have an existing elevator with a regular Honeywell access control panel. Adding Kisi would mean that we can easily connect the Kisi controller relays to the output of the Honeywell system since the elevator buttons are NC/COM. For illustrative purposes we provided a signal diagram below:
There are numerous security vulnerabilities that exist when using elevator access control. Some of the ways that an intruder can compromise elevator security include:
Even for private elevators with private access, intruders are able to enter the elevator car with authorized passengers and ride to secured floors. This is because entering and exiting elevators with other people is completely natural, and rarely look suspicious. This problem intensifies with the busyness of the elevator.
People rarely find it suspicious that a person stays on an elevator as they are simply thought to be continuing to another floor. This often allows the intruder to access to his desired floor by waiting until someone calls the elevator the desired floor.
Most access and elevator control systems are one-way only. This means to say that feedback is not provided when a floor selection button is pressed. Hence, when one who has multi-floor access rights uses his card, the buttons for all authorized floors will be activated and remain so for several seconds after his card is used. This allows a second person to "piggyback" by selecting a secured floor immediately after the authorized person has used his card.
For obvious reasons, elevator security controls are over-ridden when the elevator is placed in "Fire Service Mode".
Unfortunately, these are often the same between elevators of the same brand, or within a specific geographical area. This entails that anyone having a fire service key to any elevator will have access to all floors. To make matters worse, most fire service keys are also easily available for purchase.
Get this full guide in PDF format, plus other great security content from Kisi. We're offering this guide as a free download. You will also be signed up to get content from the Kisi blog.Download Guide