[hackerspaces] RFC: security alarm and access control systems in use

Arclight arclight at gmail.com
Tue Jun 16 10:29:54 CEST 2015 

We developed this access control system and also sell copies:

http://accxproducts.com/wiki/index.php?title=Main_Page

The version 4 Open Access is a very robust platform that supports
2xWiegand-format card readers, 4xrelays, 4xsupervised alarm zones, has
a real-time clock, and can have a Raspberry Pi bolted on. You can buy
them here:

http://www.wallofsheep.com/

The hardware is deployed at 50+ sites and is used for industrial
stuff. It will work stand-alone or docked to a server for
logging/remote control. What it could use some help with is a nicer
Web GUI. There are two projects available now, but more work would
improve things considerably.

As far as RFID goes, it has lots of security limitations. For managing
a hackerspace, it offers cheap, easily-revoked tokens and logging. We
got tired of dealing with metal keys, so we developed this system and
went for simple card format.  There are also better tokens available,
and contactless RFID can be combined with a PIN or other second factor
very easily.

We figured out after a couple of years that security model mostly includes:

1. Keeping the junkies from the alley out of our space
2. Making it difficult for someone to roll a moving truck up to the
space on a long weekend and make off with all of our gear.

The rest of the features are about convenience (i.e. letting the
maintenance man in remotely/etc).

Arclight
23b Shop, Fullerton CA
http://blog.shop/23b.org
Arclight

On Mon, Jun 15, 2015 at 8:35 PM, Brett Dikeman <brett.dikeman at gmail.com> wrote:
>
> On Mon, Jun 15, 2015 at 9:55 PM, JB Zurn <jbzurn at gmail.com> wrote:
>>
>> Also I guess they assume that someone who is capable of hacking a proxcard
>> system would probably enjoy hanging out with people at a hackerspace.
>
>
> Given our space has instructions on how to hang out with us (public events,
> email and ask), someone with such poor respect for other people's boundaries
> is not someone I would want to be part of our community. I'm well aware
> security is never perfect; yes, there are easier means, but other methods
> (ie physical) leave much more evidence, do not potentially endanger the
> reputation of an innocent party, etc. There are a multitude of reasons for
> wanting good access control. We've had to expel one member and lock them out
> because their behavior harmed others.
>
> Anyway...this was just a secondary comment/grousing, and I don't want to get
> bogged down in it. Simple take it as my opinion that hackerspaces should
> demonstrate good security, given how often so many people who frequent them,
> concern themselves with, or make fun of, poor security practices of others.
>
> What's the current state-of-the-art / who has a really sweet setup? Lessons
> learned? Thank you to the person who added a new link to the wiki!
>
> -B
>
> _______________________________________________
> Discuss mailing list
> Discuss at lists.hackerspaces.org
> http://lists.hackerspaces.org/mailman/listinfo/discuss
>

More information about the Discuss mailing list