(19)
(11) EP 2 395 451 A1

(12) EUROPEAN PATENT APPLICATION

(43) Date of publication:
14.12.2011 Bulletin 2011/50

(21) Application number: 10165397.0

(22) Date of filing: 09.06.2010
(51) International Patent Classification (IPC): 
G06K 9/00(2006.01)
G07C 9/02(2006.01)
 G08B 13/194(2006.01)
(84) Designated Contracting States:
AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK SM TR
Designated Extension States:
BA ME RS

(71) Applicant: IEE INTERNATIONAL ELECTRONICS & ENGINEERING S.A.
6468 Echternach (LU)

(72) Inventors:
  • Schockmel, Paul
    7430 Fischbach (LU)
  • Uhres, Laurent
    1372, Luxembourg (LU)
  • Roulling, Patrick
    8540, Ospem (LU)
  • Calmes, Sam
    1309, Luxembourg (LU)
  • Schifflers, Marc
    54329, Konz (DE)
  • Fuks, Stephen
    Ann Arbor, MI 48103 (US)

(74) Representative: Office Freylinger 
P.O. Box 48
8001 Strassen
8001 Strassen (LU)

   


(54) Configurable access control sensing device


(57) An access control device comprises at least one transition request device, such as an ID sensor activated by access card or badge or a biometric sensor (fingerprint, retina), said transition request device to be activated by a person requesting authorization to pass through said passageway or doorway and a presence detection and tracking device for detecting the presence of a person in the vicinity of said passageway or doorway and for tracking the movement of a person within or through said passageway or doorway. According to the invention, the access control device further comprises a control unit configured for assigning a virtual transition ticket to a person after authorization to pass through said passageway or doorway has been granted to said person, said virtual transition ticket being representative of the transition privileges granted to said person, i.e. the privileges regarding the transition direction through said passageway of doorway, and for controlling said presence detection and tracking device to track the movement of the person with the virtual transition ticket with respect to the granted transition privileges, said control unit comprising a processing module with a configurable decision table for generating an output control signal based on an output signal of said at least one transition request device and an output signal of said presence detection and tracking device, said output control signal to be used for the controlling of the passage of persons through a passageway or a doorway.




Description

Technical field



[0001] The present invention generally relates to the technical field of access control e.g. in public and/or commercial buildings and to the monitoring of entries through portals such as doorways. More particularly the present invention relates to a configurable access control sensing device for detecting and monitoring persons entering or exiting through portals.

Background Art



[0002] An access control system is a system which enables an authority to control access to areas and resources in a given physical facility or computer-based information system. An access control system, within the field of physical security, is generally seen as the second layer in the security of a physical structure.

[0003] Access control systems are typically used in or for situations requiring identification of each and every person (e.g. badge, biometric) in order to access an area. This area is typically accessible through a single door or passage controlled by an ID sensor. The access system may involve an authorized person presenting an access card to a card reader, or may involve fingerprint or retina verification or other means. Access is granted only if the person's credentials are verified and it is ensured that the physical situation is permitted.

[0004] When a credential is presented to an ID sensor of reader, the reader sends the credential's information, usually a number, to a control panel, a highly reliable processor. The control panel compares the credential's number to an access control list, grants or denies the presented request, and sends a transaction log to a database. When access is denied based on the access control list, the door remains locked. If there is a match between the credential and the access control list, the control panel operates a relay that in turn unlocks the door. The control panel also ignores a door open signal to prevent an alarm. Often the reader further provides feedback, such as a flashing red LED for an access denied and a flashing green LED for an access granted.

[0005] The above description illustrates a single factor transaction. However credentials can be passed around, thus subverting the access control list. For example, Alice has access rights to the server room but Bob does not. Alice either gives Bob her credential or Bob takes it; he now has access to the server room.

[0006] To prevent this, two-factor authentication can be used. In a two factor transaction, the presented credential and a second factor are needed for access to be granted. The second factor can be a PIN, a second credential, operator intervention, or a biometric input. Often the factors are characterized as
  • something you have, such as an access badge or passcard,·
  • something you know, e.g. a PIN, or password.·
  • something you are, typically a biometric input


[0007] A problem is that once the door is open an authorized person can be 'tailgated' by another member of staff or an unauthorized person. Another problem is that an authorized person may open the door, but for some reason not pass through. A conventional access control system is likely to assume the person has passed through. This will have bad implications where the system is required for safety or time and attendance reasons to know if a person is 'in' or 'out'.

[0008] The newer access control systems use sensing systems to detect certain of these misuse situations. These sensing systems can detect a limited number of situations. These systems are not capable to enable a situation/application specific access strategy. These systems are not configurable to be adaptable to different imaginable security policies.

[0009] The difficulty in these kind of automatic access control systems therefore lies in the correct implementation of security policies defining classes of permitted and rejected physical situations.

Technical problem



[0010] It is therefore an object of the present invention to provide a configurable access control sensing device which enables implementation of different security policies. This object is achieved by an access control sensing device as claimed in claim 1.

General Description of the Invention



[0011] In order to overcome the above-mentioned problem, the present invention provides for an improved access control device for monitoring and controlling the passage of persons through a passageway or a doorway between an inside area and an outside area. The access control device comprises at least one transition request device, such as an ID sensor activated by access card or badge or a biometric sensor (fingerprint, retina), said transition request device to be activated by a person requesting authorization to pass through said passageway or doorway and a presence detection and tracking device for detecting the presence of a person in the vicinity of said passageway or doorway and for tracking the movement of a person within or through said passageway or doorway. According to the invention, the access control device further comprises a control unit configured for assigning a virtual transition ticket to a person after authorization to pass through said passageway or doorway has been granted to said person, said virtual transition ticket being representative of the transition privileges granted to said person, i.e. the privileges regarding the transition direction through said passageway of doorway, and for controlling said presence detection and tracking device to track the movement of the person with the virtual transition ticket with respect to the granted transition privileges, said control unit comprising a processing module with a configurable decision table for generating an output control signal based on an output signal of said at least one transition request device and an output signal of said presence detection and tracking device, said output control signal to be used for the controlling of the passage of persons through a passageway or a doorway.

[0012] With the access control system of the present invention, it is possible to implement a freely configurable access control policy, namely based on the assigned virtual transition tickets and the tracking thereof trough the passageway. In fact, the configurable decision table allows to define a plurality of different situations, like the presence of one or more persons in the vicinity of the passageway or the transition request device, a transition request from the inside to the outside or from the outside to the inside, simultaneous transition attempts from different persons (in the same direction or in opposite directions), transition attempt in accordance with the assigned access ticket or privilege or in violation of the assigned access ticket or privilege, abortion of a transition motion or U-turn during transition, etc and the associated output signal statuses of the control unit. Depending on the adopted security policy or access control policy, the output signal statuses may considerably differ between a high security policy, where strict compliance with a restricted access policy is required, and a less severe high throughput policy.

[0013] It will be noted, that in the context of the present invention, the expressions "inside area" and "outside area" are only chosen for distinguishing purposes without prejudice to the actual location of these areas. In a classical approach, the inside area will normally be the "high security side", whereas the "outside area" will be the non-controlled public area. Furthermore it will be appreciated, that the transition request device may be configured for autonomous authentication of a person requesting transition authorization and for issuing an authentication output signal representative of a yes/no access to be granted. Alternatively the transition request device may simply comprise a "credential" reader such as a card or badge reader or a biometric scanner, which issues a "credential ID" to the control unit, in which case said control unit is configured for authentication of the person and for generating the corresponding "yes/no access to be granted" signal. Finally the skilled person will notice that the output control signal of the control unit may be used for controlling an open/close relay of a door, or to generate an alarm signal in case of misuse, or for controlling a status indicator with respect of the actual transition operation.

[0014] In order to correctly track the virtual transition ticket or the person to which is has been assigned, the presence detection and tracking device should preferably be able to track a single person out of a group of persons and to follow this person in all the possible dimensions. In a possible embodiment, the presence detection and tracking device therefore comprises some kind of 3D imager and preferably at least one 3D camera preferably operating according to a TOF principle. Such a 3D camera determines depth information simultaneously with the image recordation and thus enables fast tracking in all possible dimensions without requiring huge data processing capabilities of the associated processing unit.

[0015] In a possible embodiment of the invention, said control unit assigns an entry ticket to said person after successful authorization upon reception of an entry request signal by said transition request device, said entry ticket granting the privilege of transition from the outside area to the inside area. Upon reception of an exit request signal by said transition request device, said control unit may assign an exit ticket to said person after successful authorization, said exit ticket granting the privilege of transition from the inside area to the outside area.

[0016] In a situation where a plurality of persons is present in the area of the passageway, the classical access control systems usually fail to implement a given access policy. In accordance with a preferred embodiment of the present invention and if said presence detection and tracking device detects the presence of a plurality of persons in a specific area in the vicinity of the transition request device, the control unit is preferably configured to assign a transition ticket to the person which was first present in said specific area. In an alternative configuration said control unit is configured to assign a transition ticket to the person, which is located closest to said transition request device. In yet another embodiment, said control unit is configured to assign a transition ticket to the person which first transits through said passageway or doorway (in the direction of requested authorization). In either case, the output signal of the tracking device enables the control unit to generate a misuse output signal based on the configurable decision table as soon as a non authorized person (i.e. a person which had no transition ticked assigned) attempts to pass the passageway or doorway.

[0017] It will be appreciated that based on the above described tracking of respective virtual transition tickets, the present invention enables a reliable counting functionality for inward and outward direction, thus allowing a reliable calculation of the occupancy of the 'inside' area.

[0018] As described above, the present invention relates to a sensing device combined with a suitable algorithm to enable physical situation detection. The system is easily configurable to different physical situations. Inputs are door open/close sensor and credential reading. Outputs are door unlock signal, alarm, status display/indicator and open/close mechanism.

[0019] In the situation of 2 areas (the first called 'inside', the second called 'outside') separated by a door (or another movable barrier device or a corridor/gate with a virtual door) equipped with a lock mechanism (which could be direction-selective) and a transition request device in each area, the invention may comprise an integrated sensing and control device that controls a door lock mechanism and/or an alarm notification device and/or status indicators, based on a configurable logic that considers a door open status (option) and/or an entry request signal and/or an exit request signal and/or the presence and movement of persons determined by a person detection and tracking device (which can be an optical imaging device like a 3D time of flight range camera and a person detection and tracking algorithm) as inputs.

[0020] Optionally the device provides counting functionality for inward and outward direction, allowing the calculation of the occupancy of the 'inside' area. This same information of completed transitions between inside and outside areas is also useful to a supervising system to hold a more accurate list of persons that are inside or outside the areas in case this is made possible by an identification of the persons entering or leaving the area by a reader on each side of the door.

[0021] The logic may consist of one or more of the following steps that are cyclically processed :
  1. 1. On reception of an entry request signal, depending on a configurable decision table, entry tickets are assigned to the persons being tracked. In case of multiple presence, the timing of entry into the zone covered by the sensing device and/or the relative position information for the persons with respect to the entry request device and/or the timing of the transition from one side to the other (the person that first transits in the authorized direction gets the ticket assigned) can be used to assign the entry ticket to the right person.
  2. 2. On reception of an exit request signal, depending on a configurable decision table, exit tickets are reserved and assigned to the persons transitioning from inside to outside area.
  3. 3. A configurable decision table based on presence of persons and their ownership of entry tickets and existence of reserved exit tickets determines the door lock state
  4. 4. A configurable decision table based on presence of persons and their ownership of entry tickets, the presence of transition of persons inwards or outwards and the door open state determines the alarm state
  5. 5. A logic based on the presence of persons and their ownership of entry tickets and the door lock state determines the red/orange/green status display for the outside area
  6. 6. A logic based on the existence of reserved exit tickets and the door lock state determines the red/orange/green status display for the inside area


[0022] The configurability of the logic steps allows the realization of different access policies like a high security policy or a high throughput policy.

[0023] By using the information provided by the person presence detection and tracking device, the security level of the access control system can be improved versus state of the art system. By recognizing the position of persons, the sequence of exit/entry requests and movement of persons, situations like tailgaiting, credential passback, U-turns, crossing and aborting a transition can be detected and the access control system can react adequately, preventing or minimizing unallowed access to the inside area. The tracking information also allows the confirmation of completed transitions between inside and outside areas which is useful to a supervising system to hold an accurate list of persons that are inside or outside the areas in case when persons identification is provided to the supervising system.

[0024] From the above description, it follows that the key features of the present invention include:

● An access control device consisting of a sensing part for presence detection and tracking of persons and of a configurable logic for controlling a lockable barrier and an alarm notification.

• The combination and evaluation of sequence of entry/exit request signals, door open signal, position (location) of persons and entry request device, presence and movement of persons to determine lock and alarm status

• The configurability of the decision logic for lock and alarm status allowing the realization of different access policies implementing different security levels

● The determination and output of an inside and an outside 3-state status display representing 'access denied', 'waiting' and 'access allowed'

• The use of an imaging device combined with an appropriate algorithm to realize the presence detection and tracking of persons

• The determination and output of transition complete information for inward and outward direction

• The computation of inward and outward counters and inside area occupancy for single-door areas


Detailed description with respect to the figures



[0025] Preferred embodiments of the invention will now be described, by way of example, with reference to the accompanying drawings, wherein

Fig. 1 generally shows the different components of an embodiment of an access control system;

Fig. 2 shows a different view of the access control system on a control screen;

Fig. 3 represents a number of different situations and the corresponding actions in a high security implementation of the access control;

Fig. 4 represents a number of different situations and the corresponding actions in a medium security, high throughput implementation of the access control;

Fig. 5 shows a possible configuration of an interface to the configurable access control system.



[0026] Fig. 1 schematically shows the different components of an embodiment of an access control system according to the present invention. The access control system is configured for controlling an automatic door of barrier 10 in a passageway between an outside area 12 and an inside area 14. The access control system comprises a transition request device 16, e.g. a badge reader or a biometric scanner, which his arranged in the vicinity of the passageway or doorway. In a normal situation, a terminal of the transition request device will be located on both sides of the doorway, one in the "outside area" for enabling persons to request entry into the "inside area", and one in the "inside area" for enabling persons to request exit from the "inside area". A presence detection and tracking device 18, e.g. a 3D camera, is arranged for detecting the presence of a person at least in the doorway itself and in the part of the "outside area", which is located immediately in the vicinity of the doorway and a terminal of the transition request device 16.

[0027] A control unit 20 is provided for assigning a virtual transition ticket to a person after authorization to pass through said passageway or doorway 10 has been granted to said person and for controlling said presence detection and tracking device to track the movement of the person with the virtual transition ticket with respect to the granted transition privileges. The control unit 20 comprises a processing module 22 with a configurable decision table 24 for generating an output control signal 26 based on an output signal of said at least one transition request device 16 and an output signal of said presence detection and tracking device 18. The output control signal of the control unit may then be used for the controlling of the passage of persons through a passageway or a doorway 10 or for the activation or deactivation of an alarm device or the like.

[0028] Fig. 2 shows a different view of the access control system on a control screen of the access control device 10. The represented situation includes the following components:
  • an inside (secured) area 14, an outside area 12, and a door/turnstile/barrier 10 arranged between the inside area 14 and the outside area 12.
  • the area located on the "outside" in the vicinity of the door 10, i.e. the area represented on the right hand side of the door, is covered by the field of view FOV of a camera, which is part of the presence detection and tracking device.
  • a device 28 to request exit (badge/button/...) with digital output and a device 30 to request entry (badge/button/...) with digital output are arranged at the door, these devices are part of a transition request device 16.
  • a door open information and a door lock mechanism for both directions or separately for each direction
  • an alarm device (+CCTV trigger, ...) 32
  • a 3-state display 34 and 36 on each side (optional) (Access denied/Wait/Access allowed)


[0029] With the above setup, the following steps may be implemented:
  1. 1. Assign or reserve EntryTickets for people requesting entry
  2. 2. Reserve ExitTickets for people requesting exit
  3. 3. Lock door depending of presence or absence of Entry/Exit Tickets
  4. 4. Trigger alarm depending on door status and presence, entry or exit of persons without Entry/Exit Tickets
  5. 5. Drive displays depending on presence of Entry/Exit Tickets and Lock status


[0030] Two different possible implementations of access control policies are schematically represented in Fig. 3 and 4. Fig. 3 represents a number of different situations and the corresponding actions in a high security implementation of the access control, whereas Fig. 4 represents the different situations and the corresponding actions in a medium security, high throughput implementation of the access control.

[0031] In the different represented situations, the person requesting entry resp. present in the detection zone are represented by the dots, the inside area is located on the left hand side of the barrier or door and the outside area is located at the right hand side of the door. The activation of the transition request device is represented by the reference sign "1" upon which the "virtual transition ticket" is assigned to the person located closest to the transition request device. Reference signals "2" and "3" refer to the actions following the activation of the transition request device. Based on the above convention, the different scenarios are self-explaining. From Fig. 3 and 4 it will for instance be appreciated, that a number of situations, which in a high security policy require a "Blocked" action are classified as "normal" action in the low level security policy.

[0032] A possible implementation of the logic may comprise:
  • On EntryRequest if the configurable 'Allowln' logic allows it, a single track present in FOV gets an EntryTicket. If there are more than one tracks present, an EntryTicket is reserved and will be assigned to the first track crossing the line inwards.
  • On ExitRequest if the configurable 'AllowOut' logic allows it, a track with valid ExitTicket is generated and reserved. If Exit is not allowed, a track with denied ExitTicket is generated and reserved. The track will be assigned to the first track entering from inside (crossing the line).
  • Entry and ExitTickets have a lifetime (timeout)
  • A configurable 'Lock' logic decides based on current situation if door shall be unlocked
  • A configurable 'Alarm' logic decides based on current situation if alarm shall be triggered
  • The alarm has a configurable duration
  • The door open status has a timeout that triggers the alarm
  • The inward direction can be allowed for everybody (free entry)
  • The outward direction can be allowed for everybody (free exit)
  • Count in whenever a track crosses line inwards
  • * Count out whenever a track crosses line outwards


[0033] In order to enable the algorithm to distinguish the different situations, it is required to provide the following information (see also Fig. 5)
-Provide per person:
  • Side the person entered (vs counting line)
  • Side the person left (vs counting line), once after person crossed the line or left FOV, even if not visible anymore
  • Unique iD (may repeat cyclically)
  • Current side (vs counting line)
  • Inside detection area or not (active)
  • 1 or 2 persons / object
Parameters of Allowln logic: (4 combinations)
  • Door open/close
  • 1 track/multiple tracks outside
Parameters of AllowOut logic: (2 or 4 combinations)
  • Door open/close
  • Reserved ExitTicket already existing / max number of ExitTickets reached
Parameters of Lock logic: (8 combinations)
  • Reserved ExitTicket present (= ExitRequest present)
  • Track with EntryTicket present
  • Track without EntryTicket present
Parameters of Alarm logic: (16 combinations)
  • Door open/close
  • Track without ExitTicket present = someone came out without permission
  • Track without EntryTicket present
  • Track without EntryTicket entered = someone entered without permission
Properties of tracks handled by logic:
  • ID : from algo (-1 for reserved Exit/EntryTickets)
  • Count: 1/2 (from algo class 1/2 persons)
  • FirstSide : Inside/Outside (from algo)
  • CurrentSide : Inside/Outside (from algo)
  • LastSide : None/Inside/Outside (computed form current side)
  • EntryTicket : remaining validity time/forever/reserved
  • ExitTicket : remaining validity time/forever/reserved


[0034] The digital I/Os involved are the following:
Inputs:
  • EntryRequest (validity checked by external system)
  • ExitRequest (validity checked by external system)
  • Door status
  • Mode switch : idle/application (lock status in idle to be defined) - energy saving
  • Bypass (=application mode, unlock, no alarm, counting active) - emergency, visitors, cart
Outputs:
  • Lock Inwards
  • Lock Outwards
  • Lock (for simple door)
  • Alarm
  • countln pulse - passage complete indicator
  • CountOut pulse - passage complete indicator
  • (Error)
  • Inside Red
  • Inside Orange
  • Inside Green
  • Outside Red
  • Outside Orange
  • Outside Green
  • Configurable Inside/Outside orange


[0035] It will be appreciated that the present invention is applicable to all kind of automatic door configurations, such as e.g.:
Simple swing door:
  • use general lock output
  • door status available
Sliding door:
  • use general lock output
  • door status available
Turnstile:
  • use of directional lock output possible
  • no door status available -> fix to open or closed No door:
  • no use of lock output
  • no door status available -> fix to open or closed



Claims

1. An access control device for monitoring and controlling the passage of persons through a passageway or a doorway (10) between an outside area (12) and an inside area (14), comprising
at least one transition request device (16), said transition request device to be activated by a person requesting authorization to pass through said passageway or doorway (10);
a presence detection and tracking device (18) for detecting the presence of a person in the vicinity of said passageway or doorway (10) and for tracking the movement of a person within said passageway or doorway (10),
and a control unit (20) configured for assigning a virtual transition ticket to a person after authorization to pass through said passageway or doorway (10) has been granted to said person, said virtual transition ticket being representative of the transition privileges granted to said person, and for controlling said presence detection and tracking device to track the movement of the person with the virtual transition ticket with respect to the granted transition privileges, said control unit (20) comprising a processing module (22) with a configurable decision table (24) for generating an output control signal (26) based on an output signal of said at least one transition request device (16) and an output signal of said presence detection and tracking device (18), said output control signal to be used for the controlling of the passage of persons through a passageway or a doorway (10).
 
2. The access control device according to claim 1, wherein said presence detection and tracking device comprises at least one 3D camera.
 
3. The access control device according to any one of claims 1 to 2, wherein upon reception of an entry request signal by said transition request device, said control unit assigns an entry ticket to said person after successful authorization, said entry ticket granting the privilege of transition from the outside area to the inside area.
 
4. The access control device according to any one of claims 1 to 3, wherein upon reception of an exit request signal by said transition request device, said control unit assigns an exit ticket to said person after successful authorization, said exit ticket granting the privilege of transition from the inside area to the outside area.
 
5. The access control device according to any one of claims 1 to 4, wherein if said presence detection and tracking device detects the presence of a plurality of persons in a specific area in the vicinity of the transition request device, said control unit is configured to assign a transition ticket to the person which was first present in said specific area.
 
6. The access control device according to any one of claims 1 to 4, wherein if said presence detection and tracking device detects the presence of a plurality of persons in a specific area in the vicinity of the transition request device, said control unit is configured to assign a transition ticket to the person which first transits through said passageway or doorway (10).
 
7. The access control device according to any one of claims 1 to 4, wherein if said presence detection and tracking device detects the presence of a plurality of persons in a specific area in the vicinity of the transition request device, said control unit is configured to assign a transition ticket to the person which is located closest to said transition request device.
 
8. The access control device according to any one of claims 1 to 7, wherein said control unit further provides counting functionality for the inward and outward direction.
 




Drawing
















Search report