Cybersecurity: Where It’s Headed areas where network access points pose a potential risk, such as traffic control cabinets and in programmable logic controllers (PLC) that are prevalent on factory floors for controlling automation and robotics. OSDP technology uses wired, real- time bidirectional communication to provide the extra protection of detecting whether someone is trying to breach a signal with a “man-in-the-middle” attack. This is a distinct advantage over single-direction communication in legacy protocols such as Wiegand. Using OSDP technology to secure files, IT assets, on- premises servers, and other critical infrastructure creates tighter electronic access control where it is more essential than ever. Subsequently, OSDP-based access control technology is something that’s been very well received by Fortune 1000 clients like banks, major retail outlets, fast food chains, and other potentially vulnerable operations. Not only are these enterprise customers benefitting significantly through increased overall security, so integrators can offer this assurance to their customers. Within ASSA ABLOY, our product teams have begun leveraging OSDP technology in the server cabinet space with products like the HES KS210 and for traditional door openings with our SN210 integrated wired locks, with the goal of providing increased security for our customers. BALANCING SECURITY AND CONVENIENCE The natural assumption is that increased security measures (phys- ical and cyber) may lead to longer credential read times and de- lays at the door – the opposite of what most of us want. Most credentials are read in less than a second and have little to no im- pact on the natural flow of traffic. By applying new standards and innovating how we process credentials, we are able to increase security and further reduce delays or friction at the door. As a security and access control manufacturer, we fully understand that in order for security practices to be effective, they have to be convenient for people to use. Mobile acceptance is an important trend that continues to get attention as we see a proliferation of mobile credential applications. Now the capabilities of mobile wallets are expanding, and there is an ever-growing demand to use mobile credentials for access control. AI and machine learning opportunities are getting more attention, too. People have become more aware of the amount of data generated through access control. Within the next three to five years, you will see more companies starting to use that data in new ways to make better inferences and create better user experiences at the door. Consider how Tesla uses the way a driver walks up to their vehicle to determine how quickly to start the vehicle automatically. Ben Williams is the senior director of product management, Electromechanical Solutions Group, ASSA ABLOY Opening Solutions. BSecurity requirements are constantly evolving and one of the most pressing impacts of this evolu- tion today centers on cybersecurity. Two aspects are the physical security of digital networks and the cybersecurity of physical security devices. It should come as no surprise that cybersecurity awareness is one of the predominant topics haunting all of us. The sense of urgency to address these vulnerabilities has increased exponentially over the past few years. Driving increased concern is the fact that devices are more interconnected. Every day, we learn how cybercriminals are about discovering new ways to break into digital systems and networks, including those used for access control. This means that manufacturers must continuously level up to make sure we stay ahead of the curve. At the door, access control looks relatively straightforward (you tap or swipe a card, and ingress or egress is allowed), there is a complex set of processes happening on the back end with credentialing, monitoring and cybersecurity measures are constantly in motion. Recognizing that cybersecurity is of increasing importance, Underwriters Laboratories is working through some of these concerns with their release of the eighth edition of the UL294 standard. Additionally, there are already active laws in California and Oregon that go beyond simply creating awareness and aim to hold companies more accountable for protecting against cybersecurity threats in IoT devices. These increasing threats have forced designers to take a step back from traditional methodologies to ensure that we are designing security from the ground up. For example, in many commercial settings today, companies still require users to initiate firmware updates locally and manually. Updates would be automatically uploaded to a device, similar to an iPhone operating system. Until recently, many of the traditional devices we have interacted with required an installer to go to each device to initiate patches and load updates. Fast forward and you will see more devices capable of receiving patches and updates without a person having to initiate the changes. PROVIDING FLEXIBILITY Credential flexibility for access control solutions is another grow- ing area of focus as credential technologies evolve. Facilities are seeking flexible and future-proof solutions that will help them migrate seamlessly to the latest credential technologies. This also applies to other components of access control systems, such as controllers. The use of Open Supervised Device Protocol (OSDP) improves interoperability and provides secure channel serial communication between credential readers and the Physical Access Control System (PACS). Developing new ways to support emerging options like these, based on open system architecture and more robust interoperability means there is a greater need for stronger cybersecurity precautions and policies. Electronic access control is being more widely integrated into y Ben Williams    12 NOVEMBER/DECEMBER 2022 | SECURITY TODAY ACCESS CONTROL