Contact Information

UA Point of Contact:

Diane Tatterfield
Assistant Director, CatCard Services tatterfieldd@arizona.edu
621-1709

Daniel Mayhew
Electronic Field Services Technician, CatCard Services
mayhewd@arizona.edu
626-9162

Access Hardware and Software Point of Contact:

Eric Peloquin
Amer-X,
epeloquin@amer-x.com
626-9345

Dennis Peloquin
Amer-X
dpeloquin@amer-x.com
626-9345

Summary of Proposal

by

Diane Tatterfield
Assistant Director, CatCard Services,
July 2005

Concept

Adopting a Biometric Contactless Access Technology will enable the university to provide a higher level of access security, less wear and tear on the card, less maintenance and upkeep of the readers, and be more convenient to the user.

It is envisioned that this technology be made available to the university’s high risk and research facilities, areas where hazardous materials are present, and areas where there is a higher risk of damage or compromise to sensitive property or injury to personnel. All new construction should consider this access technology.

If, in the future, the university decides to transition, the contactless smartchip is capable of handling all functions currently being used via the magnetic stripe and the contact smartchip.

Technical Evaluation

Biometric Contactless Access cards and equipment are available from six companies worldwide. Two companies provided equipment and cards for a Beta Test that was conducted in May 2005.

Company 1 was HID which offered iClass technology. This technology is proprietary which means that all equipment, cards and future applications on the contactless smartchip must be provided by a particular company. The primary focus of the iClass contactless smartchip is facility access.

Company 2 provided equipment and cards using a DESfire smartchip technology which is compatible with the International Standards of the smartchip configuration and can accommodate future applications currently being used via the magnetic stripe and the contact smartchip.

Both company’s cards and equipment worked well for the users. The DESfire technology was chosen as a result of its capability to accommodate future applications and its open technology. Compliance with International Standards, the cost of the cards and equipment, the ease of the biometric enrollment process, and the capability to accommodate future uses are reasons why the DESfire technology was chosen over iClass.

Biometric Enrollment Information

The biometric fingerprint algorithm is stored on the user’s card; it is not in a database. The card is presented to the reader, the fingerprint is presented to the reader and, if the individual is authorized, entry is granted. Once the authentication is complete between the card and the fingerprint, the 16-digit ISO number, stored on the contactless smartchip, is transmitted through the reader the exact same way the system currently works using the magnetic stripe.

Building Requirements

Campus buildings are configured to accommodate Biometric Contactless Access systems except buildings configured with the older, Northern System Panels. These facilities would require a panel upgrade plus the cost of labor. A list of Northern System Facilities is attached. (Link to Northern System Facilities). There are currently 24 buildings on campus that would require this particular upgrade.

Equipment

There are three types of readers available. These readers would be chosen based on the level of security required for an entrance. Below are the three types of readers and their approximate costs as of July, 2005:

Wave the card and enter - $360
Wave the card, enter a four-digit pin number and enter - $400
Wave the card, present the biometric fingerprint and enter - $990

Supplies

The DESfire smartchip is embedding in the card and has an internal antenna. You cannot see the contactless smartchip by looking at the card. The current University of Arizona CatCard has a contact smartchip and a magnetic stripe that are visible on the card. For authorized users only, the new CatCard for Biometric Contactless Access will have all three technologies on one card.

The contactless smartchip embedded in the card
The contact smartchip on the front of the card
The magnetic stripe on the back of the card

With this advance in technology, there will be an increase in card expenses as of July, 2005. The cost per card is $15.00 over and above the cost of the existing CatCard.

UA Access Sub-Contractor (Amer-X)

Amer-X is subcontracted to The University of Arizona to provide the software and personnel to control access based on input from authorized university employees.

Amer-X retains personnel to order, install and repair access equipment at the university. They also provide a 24/7 Call Center.

Benefits

Because magnetic stripe technology is being replaced by smartchips, magnetic stripe readers are becoming more cost prohibitive and vendors are encouraging purchasing magnetic stripe readers in quantity to lower the price per unit cost. For instance, the basic reader for the contactless smartchip with a pin pad is $360, whereas, the basic magnetic stripe swipe reader with pin pad is now $746.
Reader maintenance, repair and upgrades can be performed on-site; readers can be programmed in the field.
If there is an attempt to hack the smartchip, it destroys itself.
The enrollment process can be done at the CatCard Office using an Enrollment or Erase card.
The fingerprint enrollment process is optical and reads below the skin (sub-thermal).
Up to six companies worldwide provide supplies and equipment for DESfire technology.
There is more efficient use of the amount of memory needed on the smartchip.
The DESfire smartchip can accommodate the functions currently handled by the CatCard’s magnetic stripe and contact chip.
The contactless smartchip is the most current technology worldwide; there is no other technology on the horizon to replace the contactless smartchip.
The DESfire contactless smartchip is in compliance with the International Standards for smartchip configuration.

Challenges

Unlike the magnetic stripe that needs to be swiped through the reader, the contactless smartchip card must be placed within 3-5 inches from the reader. This may be a problem for some users such as individuals with disabilities that may need special accommodation. In this case, options would be discussed with the department.
Some individuals’ fingerprints are unable to be enrolled on the contactless chip. A combination biometric and/or pin pad reader could be put in place at these locations.
Cards should not have holes punched through them; it will damage the contactless smartchip or its antennae. (see “Good News” below)

Good News

In response to a request from individuals who use their CatCard as an identification badge, the new card will be configured so that the photograph can be displayed upright on a lanyard yet the magnetic stripe still be free and available for swiping at a reader.

Direction

Develop a focus group to work specifically on the MRB and Keating Building Access Systems.
Develop an Operational Group to work with AmerX on appropriate readers for the different access points and associated Business Rules.
Develop an Administrative Group to work with CatCard on Carding issues and associated Business Rules.