SecurityWorldMarket

25/05/2023

Access Control – Part 2 of 5

Genetec warns of rising cyber risks on legacy access control systems

Customers are gradually freeing themselves from proprietary solutions and demanding more flexible, open solutions.

Customers are gradually freeing themselves from proprietary solutions and demanding more flexible, open solutions.

With the ever-increasing rise in cyber crime, Genetec Inc. is cautioning organisations of all sizes to be vigilant about the cyber security risk posed by legacy access control systems. To improve the awareness of cyber security of access control systems, Genetec share their recommendations, divided into nine steps.

According to the latest report from research organisation Omdia, Genetec is recognised as the fastest-growing access control software provider in the world and ranked as number two among the world’s biggest access control software providers.

Older systems – a risk factor

Christian Morin, Vice President of Product Engineering and Chief Security Officer at Genetec, is concerned about the fact that there are many organisations operating with access control systems that date back ten years or more.

“While these older systems still allow employees to badge in and out, there’s a very high likelihood that these systems employ technologies that are extremely vulnerable to modern cyber threats,” he says.

Criminal’s entry into the network

Vulnerabilities in legacy access control systems can introduce cyber security weaknesses that may put an entire organisation at risk. Cyber criminals can exploit weaknesses in access control system credentials, controllers, servers, readers, or workstations connected to the network. Once a cyber criminal has breached access control system credentials, they can then move on to an organisation’s network and can gain control of other building systems, view or steal confidential information from internal records, or launch attacks designed to take key systems offline.

Average data breach cost – 4,3 million dollars

Companies that are affected pay a heavy price; the average cost of a data breach rose from 4.24 million dollars in 2021 to 4.35 million dollars in 2022. Hence, it’s never been more important for organisations to be educated on the risks associated with legacy systems and the advantages that new cyber secure access solutions can offer.

Cyber security best practices for access control systems

To improve the cyber security of access control systems, Genetec recommends the following steps:

  • Upgrade the system. Older systems were not built to address today’s threats. When evaluating a new access control system or upgrading an existing system, make sure that cyber security is a key component of the vendor selection criteria.
  • Use advanced secure credentials and the latest communications protocols to secure data transmission since older credentials are easy to clone using readily available tools.
  • Educate employees and partners about cyber security best practices and ensure they are prompted to change passwords often.
  • Regularly check for firmware and software updates and install once available.
  • Use a centralised identity access management system to ensure virtual and physical authentication and authorisation of employees for better control and more effective maintenance of your systems.
  • Create a dedicated network for access control systems so that there is clear segregation of networks based on their purpose.
  • Choose a security provider who can demonstrate compliance with established security certifications.
  • Ensure that the access control system uses proven data encryption standards as well as multi-factor authentication.
  • Work with a partner that has strong supply chain risk management, a dedicated team to monitor cyber threats, and ensures software is updated frequently and patched as needed.

A sector in transformation

Christian Morin, Vice President of Product Engineering and Chief Security Officer at Genetec.
Christian Morin, Vice President of Product Engineering and Chief Security Officer at Genetec.

Access control technology has undergone a huge transformation in recent years. Customers are gradually freeing themselves from proprietary solutions and demanding more flexible, open solutions. Forward-thinking technology manufacturers have now introduced a new breed of more cyber secure solutions that offer benefits beyond locking and unlocking doors.

“A unified access control system that uses the latest cyber security standards to secure communication, servers, and data such as Genetec Security Center Synergis is able to not only protect an organisation’s assets and people but help them improve their business operations and decision-making,” states Christian Morin.

“By choosing an open architecture IP-based access control system, organisations have the flexibility to upgrade to the latest supported technology at any time, move at their own pace, and work within their available budget,” he says in conclusion.

Further information on this subject is available for download online from Genetec.

Note: This editorial article has primarily been produced for the security trade magazine Detektor in collaboration with Securityworldmarket.com.



Product Suppliers
Back to top