What Electronic Door Lock Would You Buy?

zentigger asks: "I work for an ISP that supports internet in several dozen remote areas. Our POPs are typically fairly small shed-like structures, with a couple racks of equipment. For the most part, we can manage this stuff in-band, but frequently we need to have a local agent physically access the equipment for some minor maintenance work or adjustments. As time goes on, the shuffle of keys is becoming farcical and expensive. What we need is an electronic lock of some sort that can be reprogrammed remotely (preferably from a remote console via serial or directly via ethernet) that will stand up to extreme weather. Google certainly turns up lots of glossy brochures — although I don't see how they can -all- be 'The heaviest duty lock you can buy!' Does anyone have good experiences with any particular products or perhaps other means of dealing with the key shuffle?"

A GSA approved lock of course

[laing]

Sargent & Greenleaf are *THE* stanrdard when it comes to electronic locks. See here [sglocks.com].

Don't give out keys at all.

[jhfry]

Your an ISP... you have bandwidth and old servers... simply get an electronic latch, a webcam, and patch it through to your security officers.

With some easy code, you could remotely unlock the buildings for workers on an as needed basis. Plus it provides video surveillance, and a method to document who accesses the facilities and when.

Keys would still be in the hands of a few techs for situations when the network is down.

Re:

[mollymoo]

That would maximise the response time (keys would have to be found) for the most critical incidents (network failure), which doesn't sound like a great idea to me.

Re:

[Captain Splendid]

Not if the responsibility is given to a select few "higher-tier" personel, and even less problematic if part of their duties is a round of the remote stations every six months for a routine check anyway.

Re:

[mollymoo]

I don't follow. None of that changes the requirement for managing physical keys, which is exactly what the questioner is trying to get away from. If managing the keys wasn't a problem, they wouldn't have asked the question, would they?

Re:

[jhfry]

I was under the impression that the issue wasn't so much the use of keys, but the number of people that need to use them on an occasional basis.

If the submitter was indeed trying to eliminate keys altogether, then I apologize for being off topic.

Oh, and I honestly can't think of a situation where an electronic lock doesn't need a mechanical method of opening the door, other than one involving Jack Nicholson and an ax, when the electronics fail... thus still requiring a key to be accessible on short notice d

Re: Don't give out keys at all.

[ralzod]

This solution would break down if the local agent needed to access the shed because of a network outage. How do you let the guy in if the comm gear is hung and he is there to give it a good kick? What zentigger needs is an electronic cipher that can be set in advance, provided to the appropriate person when required, then changed again after the service is restored, maintenance completed, etc.

Re:Don't give out keys at all.

[j00r0m4nc3r]

Since your budget is down a bit this quarter, you should just hire an H1-B immigrant to live in your POP shed 24/7 with a cellphone, a small ration of ethnic food, and a DVD of Little Superstar to keep his spirits up.

Re:Don't give out keys at all.

[MentalRuin]

Look at what universities use. They have thousands of users that need access to various areas, but only to very specific areas around campus. This includes students as well as staff.

They need to control who has access, as well as when access has been gained. Most employers now use some kind of ID system, the 'access keys' could be included in the ID. It could be as simple as RFID to magnetic stripes. You could also combine these with keycodes chosen by the individual users. With this dual level of authentication, the keycodes would not need to be updated regularly because of the dual authentication.

You could use one of your onsite servers to control access and log access. These servers could be updated in real time. The only worry would be that the server could not be updated quickly enough after an employee was fired. This is where HR comes in, if you have your system immediately revoke ID's upon employee termination, terminated employees would not be able to gain access. On the off chance that the servers could not be updated due to communication problems, the server that controls access logs would show that the terminated employee gained access to a facility after their rights had been revoked. Combine this with video surveillance you will have both digital and pictorial proof of the illegal access. In a worst case scenario, one of you security officers would need to physically show up to the site to allow access to someone that has the right to access the facility, but the inability to do so.

Re:

[rabbit994]

Problem with this systems is they require constant communication with auth server. We had them at my University and on occasion, when servers went down or Mr. shovel beat Mr. Optic Wire, they would have to place them in some special mode where any swipe of card (credit cards included) would open the door. Normally, campus police could accomplish this function but it would be annoying till they got there to pop open the doors. I couldn't see this working for a sites where it's geographically dispersed AND th

Re:

[Paracelcus]

Yup, and use a backup with a tubular keyway to prevent picking and bumping.

Bit o' Warning

[thesameguy]

A while back I did some consulting for a somewhat remote municipality, who was in your exact same situation. They had small "equipment sheds" located throughout the region, and were having problems maintaining physical access. Their solution was to invest in a bunch of programmable electronic combination locks that they could reprogram as people were fired and/or promoted and not have to go through the whole rekeying process. This created an entirely new problem: People forgetting access codes that changed every several months. These workers worked around the problem the only way they could: Prying open the doors with tools, breaking the doors and sometimes the locks in the process. This forward-thinking municipality ended up footing the bill for the lock retrofit, a bunch of broken doors, and ultimately a return to standard keyed locks. FYI, YMMV...

Re:

[sumdumass]

Locks keep honest people out. The Idea of changing the codes and such is to keep otherwise honest people honest. If someone is willing to break the law, they will go ahead and do it. The chances of getting caught or even being suspected deters most honest people. A disgruntled employee is likely an honest person.

Think if it as the locks on you car. The glass windows won't keep a determined person out. But it will keep the majority of people from getting in. You are more likely to have you car stolen by leav

Re:

[Schraegstrichpunkt]

It's not just about honest people. If you are attacking a system that's protected by a physical lock, defeating a lock means that you are more likely to be ignored by a third-party bystander if one happens to see you. That increases your chances of success.

Re:

[timmarhy]

whats your point? that not all people steal things? bravo sir *slow clap*

Re:

[sumdumass]

Maybe you should read the entire thread before showing the world how retarded we can be. The point is that a lock is a lock and as long as someone has to defeat one, it will keep the same amount of people out.

Everyone else got this point and even added some insightful commentary to the mix. Hopefully you could too.

Re:Bit o' Warning

[sirket]

A user should have a combination- not the lock. A user leaves and his code is removed- the lock code isn't changed. In addition- a user uses the same combination on every single lock. It's hardly complicated. It sounds like the systems this municipality used was just broken.

Re:

[igb]

Depends on how many staff you have. Every ten-fold increase in staff means you need an extra digit on the combination just to stand still. BT currently use a system that has a swipe-card and a PIN for each employee, and the lock is programmed with the swipe-cards that it will accept: that has the benefit that the safety of the PIN doesn't decline with staff-count.

Re:

[HydroPhonic]

This created an entirely new problem: People forgetting access codes that changed every several months.

If you rely on access codes, always have someone they can call for a code if they forget theirs. They would authenticate themselves to your office (or their office) and said office would read them their code.

Re:

[FooAtWFU]

A remote controlled lock? Via Ethernet? In all honesty, that is one of the stupidest ideas I have heard in a LONG time.

Hey. Our school has one of those key-card systems, where you can have a card to open the locks... or open them on a schedule... and stuff like that... and they do connect on Ethernet (they have their own virtual LAN, but anyway...)

Re:

[click2005]

If your internet connection/webcam server/any other point of failure has a problem, you lose access to your locks if they are controlled via ethernet.

Re:

[mollymoo]

Being remotely programmable doesn't necesarrily mean the lock needs to be connected to the network just to operate.

Re:

[MoxFulder]

Bingo. It's amazing how this post has already gathered about 5 threads of dimwits flaming each other over this very simple point.

Re:

[Door-opening Fascist]

We have an RFID-based card access system where I work. The local stations keep a log of all cards allowed on a particular door in the last six months, so it'll open the door for those cards even if the network is out.

Re:

[RMH101]

Yes. These are great. However, they don't scale down well: *no-one* makes a decent lock of this type that is economical to buy in single digit numbers. You need the infrastructure to back it all up. Fine if you're doing a whole site, no good at all if you want a single lock.
*ALL* the single-door electronic locks are junk, which is why use of them often invalidates your building insurance.

Re:

[housed09]

I'm with a startup called Edge Integration (www.edge-integration.com - sorry, our web site is pretty lame at the moment) building exactly the system everybody seems to be talking around. Coming from the database/web I have found the physical security industry is pretty backward and I just don't think there are many solutions out there for our friend with the POP sheds all over the place. We're a good fit for it and maybe Brivo.

There are all sorts of quality electrified locks, decent means of authenticatio

Re:

[sumdumass]

You need to think like in a house/door lock instead of a padlock. And then think of a security system too. I have a garage door opener that you input your code to open and the alarm stores who accessed what when for 30 days. But I can set up a code for a repair man or someone who I know will be coming over while I'm away and then delete/disable the code after they are gone. and my security system can be controlled by Ethernet or the phone from any remote location. (even viewing the cameras.)

The Door in the

Re:

[DamnStupidElf]

The Door in the kitchen coming from the garage is controlled by a set of really strong magnets and and hooked through the security system too. Once it is locked, you need about as much force necessary to kick a regularly locked door in to open it.

Too bad most thieves cut the power before trying to break in. You do have your cameras on a UPS and the video sent to a remote location in realtime, right?

Re:

[sumdumass]

The who system runs on DC with a bank of small security batteries. The cameras have the power feed through the cables and I suppose they go through the same DC control panel. Last time the power went out and the generator didn't kick on, the alarm company called me on the cell phone asking if everything was ok. They said they received the signal that the power was off but didn't get the signal from the generator [lowes.com] (it is the lower type that runs on natural gas and is automatic)

I'm under the impression they c

Re:

[DamnStupidElf]

If you can afford it and the police have a reasonable response time, an alarm monitoring company is probably the best solution. Cutting wires won't help because disconnecting the house from the monitoring company triggers the alarm on their end (and maybe at the house, too) It would be interesting to know what infrastructure the alarm company uses for their wires. I imagine they could lease lines from the phone company, but for video it would tend to be rather expensive. Maybe they borrow frequencies on the

Re:

[sumdumass]

f you can afford it and the police have a reasonable response time, an alarm monitoring company is probably the best solution. Cutting wires won't help because disconnecting the house from the monitoring company triggers the alarm on their end (and maybe at the house, too)

It really isn't that expensive once the install and initial maintenance is out of the way. The monitoring is less then 30 bucks a months with some service fees for incidents. But the discounts on the home owners insurance bring this down

Re:

[timmarhy]

hah, your giving most thieves WAY too much credit there pal. MOST thefts are thefts of oppertunity. scumbag X see's an open window and jumps in to see what he can steal. the most they will usually do is smash a window if they can see something worth the risk of the noise. My best mates a fed and even he has never known anyone to be that determined as to cut the power to a home to break in. you MIGHT need to worry about it if you house something obviously vaulable.

Best lock for the money

[Anonymous Coward]

Here [fixedreference.org] is my preferred electrical door lock in action. Never had a problem with a burglar yet.

Only a door lock?

[Timesprout]

I have a complete electronic defense system for my home and I am currently upgrading the AI. It was slow going at first, the AI kept requesting to be given a name. Eventually i gave in and called it Skynet and things have been going quite well, although the Asimo I hooked up to it does like to chase me round the house a lot trying to taser me. I am going to ask one of my mates at the NSA if one of their global domination scenarios can connect and defeat it as a final acceptance test. Should be cool.

Re:

[UnderDark]

I'm sorry, but I can't do that Dave.

Re:

[elrous0]

I have a friend in Russia with an equivalent system in his home. I'll give you his number and maybe you can arrange it so that your system and his can have an interaction. Couldn't hurt, right?

Can you have the locks keyed the same?

[astrashe]

Is there some reason you can't just have all of the locks keyed the same?

Any locksmith should be able to do this for you.

Re:

[MeanMF]

Kind of a pain if the wrong person gets their hands on a key....

Re:

[itwerx]

Is there some reason you can't just have all of the locks keyed the same?

A - they probably have different equipment in different locations, some of which they may not want everyone to have access to
B - when somebody leaves the company they have to rekey every darn one of 'em!

(Yes, there are mastery key configurations which work around some of the above issues but the additional overhead probably makes it a wash in this case)

Back on topic: despite recently announced security flaws, HID actually makes decent

Re:

[Big Bob the Finder]

With some high security systems (Medeco, Assa, etc.), it could be written into the contract that unless all keys were returned at the time of departure from the company (or upon request by a supervisor), it was possible to withhold a deposit or the last paycheck of a departing employee to defray the expenses of re-keying the locks.

This was from a long time ago, when I worked as a locksmith. I have no idea if it's still legal to do so.

Re:Can you have the locks keyed the same?

[Big Bob the Finder]

With high-security systems, the blanks are under patent. Only locksmiths who service those locks have access to them. With most systems, you end up with regional distributors, and if you walk in asking to get a copy made, they'll recognize it as one of theirs and confiscate it- and inform the true owner of what happened. I've actually seen that happen- it's pretty unfortunate for the guy working for a major bank to lose his job over that sort of thing. They can then mike the key and determine whose it is; if it is stamped with a serial number, it's even easier.

All bets are off if a machinist is available to duplicate it. This is made very difficult with sidebar locks such as ASSA, or with odd keys such as Abloy. A machinist would also have to duplicate the wards and angle cuts if duplicating Medeco keys.

So while the possibility is there, I have yet to hear of it happening.

Re:

[FLEB]

Hmm... so that's why they couldn't dupe the Medeco key from my old apartment. Nothing nefarious, I just lost the thing and it cost $25 for a replacement.

Re:

[ivan256]

Right, because people don't have access to home CNC mills [littlemachineshop.com], and the casting of brass is still secret after all these decades. In a pinch, even Dremels suddenly stop working when they realize they're duping a "patent" blank. And there's no such thing as a locksmith who would dupe a "Do not duplicate" key for a few extra bucks... They're not the greedy, secretive type. They all talk to each other and this would get back to the owner of the original in no time...

There's fantasy and there's reality. In reality,

Re:

[pla]

if you walk in asking to get a copy made, they'll recognize it as one of theirs and confiscate it

Two questions...

First, can they legally do that? Depriving someone of their posessions without permission or a court order generally counts as "theft".

And second, how do you get new keys made, if you can't get them copied?



A machinist would also have to duplicate the wards and angle cuts if duplicating Medeco keys.

Has this Medeco company ever heard of "clay" and "casting resin"? It wouldn't live u

Re:

[timmarhy]

right, because if someone tried to take a key off me i wouldn't jump across the counter and pop then right in the nose.

Re:

[Captain Splendid]

despite recently announced security flaws, HID actually makes decent card-key equipment. If you have a ton of money and the technical wherewithal to work around the (to my knowledge as-yet-unpatched) security issues their system will do exactly what you want.

Talk about damning with faint praise.

Re:

[Propaganda13]

C - if a vendor tech needs to access at a remote location, they can give them a temporary code for access
D - tracking who accesses a location, checks for unauthorized access by employees and use of codes by someone else

Just a reminder
With remote locations, good locks can only do so much since criminals have a lot more options.

S&G, HID are standard

[mlts]

Most companies I see use HID or S&G for card access. I personally would recommend HID (one of their newer card reader lines that use two-way authentication).

For mechanical lock backup, go with Medeco, Mul-T-Lock, or Abloy. All of which are immune to bumping, are restricted in key duplication, but keys are still decently available when you need copies made at a locksmith with your card.

Lastly, if you want a solution that is a hybrid, requiring only cylinders changed rather than lock hardware, you might consider the Mul-T-Lock CLIQ series. The CLIQ keys are mechanical and electronic, and the reader is in the cylinder, so no wiring of doors is needed. To remove a key from the authorized list, you just code the programmer key to remove it, then walk around and stick the key in the appropriate doors.

Re:

[numbski]

I googled a bit on what you said. I went looking a while back for a solution that would allow me to put either RFID or biometric data into LDAP and then have biometric scanners at each door (fingerprint probably).

I'm finding it difficult to find a solution. Once upon a time I had a bookmark for a vendor that sold component parts - strikes, latches, dead-bolt, fingerprint scanners, rfid scanners and cards, etc. Can't find it now. Ideally I'd like to put fingerprint signatures into ldap, use a central sys

Re:

[innocent_white_lamb]

How do these handle cold weather?
 
Batteries tend to go dead in -40 degree weather, so if you're locking an unheated shed in the winter, where do those things get their power?
 
In fact, I wonder if they work at all in extreme cold, even if they are locking a heated building.

From a locksmith's perspective

[Big Bob the Finder]

I worked my way through college as a locksmith. I've always favored hardware security (keys) over electronic widgetry. Talking to a Medeco dealer about getting your locks on a solid masterkey system would give you a solid system, but allowing remote sites to be accessed- possibly by different agents each time- wouldn't work.

One solution might be Videx. I've only glossed over their literature, but they seem to have a pretty good solution in place.

http://www.videx.com/products/detail/cyberlock.h tml

Specifically, the section on how "the CyberKey Authorizer enhances CyberLock systems by providing the ability to program and download CyberKeys at remote locations." That might be too pricey for your application. I've never priced out "door" costs on Videx hardware.

Re:

[kah13]

Videx is popular in hospitals for high-abuse keys (like Code Blue keys for elevator overrides) and for remote gate keys in places such as airports or nuclear plant where loss of a key would have tremendous implications unless you can make sure the key will expire in a short period of time or can be quickly override.

The cost is high, IIRC around $400/cylinder, and the keys aren't cheap. However, I find the idea clever and it's nice to have a system you can just do drop-in installations for.

Unfortunately, it

How to do the keypad

[mrcaseyj]

I was thinking of putting an electronic lock on my door. One of the problems is that if there is someone near that you don't completely trust they may see you entering the combination. My cousin shoulder surfed my password once so I'm a little paranoid about this sort of thing. You can move to block them from seeing you enter it but that can be insulting to your guest. That's a significant issue for someone like my grandmother who may be entering her combo in front of customers she doesn't want to offend.

So I'm thinking that the way to do it is to have a keypad facing down so that you curl your fingers up to push the buttons so the person near you doesn't see. I figure having only four buttons would make it easier to enter the combo without looking. Buttons on the bottom would also have the advantage of keeping water out of your buttons.

One of the reasons I wanted a combo was I figured it would also be a lot faster than pulling the key out of my pocket every time. In fact I think a quick combo lock would be so quick that it wouldn't be too much trouble to just leave the door locked all the time.

Some other good features for the lock would be different combinations for everyone in the house. And some one time use combos and guest combos.

By the way if you are hiding a key outside your house make sure you put it around the corner or something so if someone is with you then you won't have to reveal your hiding place.

Re:

[hazem]

That's a significant issue for someone like my grandmother who may be entering her combo in front of customers she doesn't want to offend.

Nobody should be ashamed by keeping secure things secure... and nobody should be offended when somebody else tries to do so.

It's just like I shouldn't be ashamed to go behind a door to "adjust the hardware"... and nobody should be offended that I do so.

Re:How to do the keypad

[jimmyswimmy]

I used to use a system much like you describe. I used to work at a major international airport, which secured some private areas from the public with a cipher lock. It had rocker buttons, five of them, at the bottom of a metal "butter tub". You could stick your hand in there and look inside and see the labels on the buttons, but once you'd seen it once, you didn't need to look again. The rocker buttons were centered and if you press one way it might be a '1' and the other way was a '6', I think.

A more interesting system was on the front door to my office - a 9-digit keypad where the numbers were lit up in a dot-matrix format. You could only read the numbers standing in front of it, and they would change each time you walked up to it. It was very cool, but they stopped using it in favor of ethernet-programmable fingerprint readers.

There are a lot of options. The tougher part is weatherproofing any of these solutions. The more fancy electronics you have, the more important keeping water out becomes. Good luck!

Re:

[dgatwood]

This may sound somewhat smart-alecky, but weatherproofing is easy if you don't put it outside. :-) Build a two foot extension off each door. Use an exterior door with the lock disabled for the outside of the tunnel. After opening the outer door and walking in a foot and a half, you have access to the keypad or other similar device.

Re:

[ivan256]

It was very cool, but they stopped using it in favor of ethernet-programmable fingerprint readers.

How long until they gave up on the fingerprint readers?

My experience with fingerprint readers, regardless of brand, is that they just plain can't handle people with dry, cracked skin. If you wash your hands or wear gloves a lot, they just don't work. Usually you see fingerprint locks go in, and then they're back to PIN or prox card locks within a few months.

Re:

[dextromulous]

ScramblePad. [hirschelectronics.com] I've heard they're around $500 though :-(

Why not pay "SOHO Geek Pads" to Watch them?

[ivi]

For a long time, geeks have come to share homes (eg, Open Sourcerers, who perfer lower living costs, et al.)

We can envision techie villages, bringing together a mix of renewable energy geeks with al the other geeks, onto a modest sized property,
away from the smells & noises of cityscapes, within commuting distance, but closer to nature & its beauties, maybe with windows looking out over nothing but natural sights & sounds (if the windows are opened ;-)

It the coming WiFi (WiMax & beyond) days

You know, it's funny

[way2trivial]

while reading the first line of your 'utopia' I was immediately already envisioning the fourth & fifth word in your third line, but in a completely different expectation.....

geek's kibbutz?

[morethanapapercert]

Sound's like the geeks version of the Kibbutz [wikipedia.org]
A small circle of friends and myself have been seriously discussing and investigating the myriad details in setting up something along those lines for ourselves. Thus far, the most compelling arguments in favour of it are the economies of scale and the various grants, tax breaks and other incentives we may gain, depending on how we are structured. The strongest argument against it has been the possibility of serious personality conflicts long term. Even setting

Avoid Chubb

[humberthumbert]

Whatever you do, avoid Chubb like the plague.

The "brains" of the system run on useless software that will not work without a hardware dongle. Check before you buy, I'm sure there are plenty of vendors who pull the same shit out there

Also, are you SURE that a keypress box (lockable box with hooks for hanging keys) won't do? When I was in the military, that's what we did. Never had a problem as:

a) We exchanged keys for identification (no ID, no key!)

b) If you lose the key or run away, we have your id, and we

ThinkGeek RFID Digital Door Lock ?

[KlaymenDK]

I have had my eye on the RFID Digital Door Lock from ThinkGeek for quite a while now.

It's easily reprogrammed, you can issue access cards to persons as opposed to giving out a single PIN. Plus, it's supposed to be hack-proof, but probably not to the level of Sargent & Greenleaf.

I am considering it as a replacement for the lock in my flat's front door (which is arguably both less and more critical than an ISP gear shed). It's indoors, so weatherproofing is not an issue, but the flat is just rented so I c

Do the swippy card thing

[JumperCable]

Add & remove access on the fly.

Careful with upgrades...

[Bazman]

Our recently refurbed admin building ("Hey! When are we plebs going to get our leaky windows replaced??") had its grand opening the other day, complete with University bigwigs and minor royalty. The day before it seems someone decided to upgrade the security system firmware.

When they did this, there was nobody inside. And they locked themselves out. They figured if they set the fire alarm off then the override would fling the doors open. But it didn't. They had to get someone in to smash through the security door to a) get inside and b) stop the fire alarm.

I imagine all the mess was cleaned up before the princess arrived.

Check out this company

[RussoS]

Check out Computrols, Inc. They have programmable keycard locks that work over ethernet. Different card can access different zones and its all programmable from one head end unit. http://computrols.com/security [computrols.com]

What the brochure says...

[joto]

...is, as you have concluded yourself, completely useless.

Basically, you should go for the system that is easiest for you to manage. All electronic locks (and all locks in general) are easy to break, if you want to. Quite surprisingly, the more expensive locks, are often easier to break (it can be done with a screwdriver instead of a crowbar (or if your doorframe is better: power tools). And if the lock is better than that, there are always windows, or even walls.

If what you need is security, you need m

Saflok

[sheddd]

I work at a hotel and put Saflok [saflock.com] locks in ~350 rooms. ~$100 per lock, nothing super secure, but cheap, and you can have keys that open whichever locks you specify, and you can see which key(s) opened which locks and when.

Of course, with a $10 tool, you can open the locks, but I bet the same could be said with your current locks.

Re:

[couchslug]

"Of course, with a $10 tool, you can open the locks, but I bet the same could be said with your current locks."

An intrusion detection system would be a Good Idea too. :)

Unless the doors are something special, anyone desiring entry can use a (good) cordless holesaw/drill/sawzall and just slice out the lock/frame/whatever.

FWIW I use a cordless 28-volt Milwaukee Sawzall to cut pickup truck frames in half when making trailers. Their cordless drill will cut heavy sheet metal using a good holesaw, and does a fine

certainly not the ones used in

[seanfast]

certainly not the ones used in Jurassic Park... I know I don't want to overpay for some expensive door lock that some velociraptor can open when the power goes out...

Videx CyberLock?

[Radon360]

Here's something a little different than the typical swipe card systems that all have to be connected back to some central control:

Cyberlocks [videx.com]

We use these where I work and it's a great retrofit when you have multiple builds, including ones that don't have any electrical power. Basically, you have electrical lock tumblers that you replace the mechanical ones currently in your door handles. The key supplies the power (no batteries in the locks to change). When the key is inserted, it powers up the tum

Using iButtons as keys

[lbates_35476]

I can't speak to the security of these locks but they might be worth a look. You unlock them using the Dallas Semiconductor iButtons. Each one has a unique serial number imbedded it it and it can't be copied. We've sold these peoples timeclocks and they have worked well. They also have a line of locks that sound like they might meet your needs. http://www.accesspilot.com/ [accesspilot.com]

Re:

[mmontour]

You unlock them using the Dallas Semiconductor iButtons. Each one has a unique serial number imbedded it it and it can't be copied.

A serial number certainly can be copied. Relying on it for security is like relying on MAC-address filtering on a wireless router (i.e. insufficient). You can't copy the serial number onto another iButton, but you can program a little microcontroller to speak the same 1-wire protocol and pretend to be the iButton interest. It's not hard to discover the serial number of an iButton; it's printed right on the case of each device.

There used to be a "crypto iButton" that provided real copy-proof security. It co

Re:

[eudaemon]

There's a technote on using the 5250 w/RSA http://www.maxim-ic.com/appnotes.cfm/appnote_numbe r/4004 [maxim-ic.com]

http://www.maxim-ic.com/quick_view2.cfm/qv_pk/3932 [maxim-ic.com]

Mechanical and Electronic

[mulvane]

Another solution I have seen to a very like issue is having a secure door lock like the medlock that don't open the door itself, but the bolt triggers an electric trigger built in the door with battery backup for power outages that will cycle the lock mechanism. Then also, a keypad combo lock tied into a central server that will also trigger the lock mechanism. This provides secure mechanical and electronic access in best and worst case scenarios.

manual not electronic?

[pbjones]

If the reason for attending the site is a power or backhaul problem, be careful which electronic lock you buy. It would be a shame if no power meant no access.

mag cards

[timmarhy]

mag casrds are your answer. you can remotely program the cards and there's no problem with opening the door if the network goes down at the site. they are also dirt cheap and can be set to expire so it doesn't matter if the tech loses it. video survillance is also a good idea.