Today, access control systems are used in almost every institution and building. This is because they are an effective solution that provides a high level of security. There are many commercially available systems that provide security-related access features for buildings, including biometric options. Most use a centralized architecture, where each building can be remotely controlled via an Internet connection. This paper presents a completely different system from those on the market, a decentralized system with clone-detection and data-integrity verification mechanisms that allows access to buildings. The overall architecture includes hardware encoding of the access system’s location, and access is granted based on information written to the RFID card by the card-issuing center. This allows the system to be easily reconfigured at the hardware level prior to installation in the access area. The proposed system uses a confidential RFID card data integrity algorithm that uses the card data and immutable UID to determine a checksum in order to validate the RFID card data. As a result, any unwanted modification of at least one bit invalidates the card and blocks access to the building. The system was implemented, validated, and extensively tested over a one-year period with no reported operational issues.
Popa et al. (Tue,) studied this question.