UFC 4-021-02NF
27 September 2006
change 1, 23 October 2006
3-5
ACS DESIGN GUIDANCE
3-5.1
GENERAL. The DoD is currently migrating to the CAC. New access control
system designs should be based on the CAC as the primary access control credential.
Designer options for new systems are:
3-5.1.1
Current CAC technology
3-5.1.2
Future CAC technology (contactless)
3-5.1.3
Bometrics.
3-5.2
CONSIDERATIONS. When designing an ACS the following should be
considered:
3-5.2.1
Do not design an ACS based around a single access control credential.
3-5.2.2
A coded credential alone does not offer sufficient security.
3-5.2.3
At a minimum, all card readers must be equipped with a keypad.
3-5.2.4
All card readers must be UL 294 listed and CE certified.
3-5.2.5 Contactless card readers must conform to ISO 14443 Parts 1 through 4 and
NIST IR 6887, The Government Smart Card Interoperability specification (GS-IS).
3-5.2.6 For facilities requiring a higher degree of security, provide biometric capability
in addition to the minimum.
Per FIPS 201, fingerprint reading is the biometric technology of choice.. Facial imaging
is listed as a secondary biometric credential.
3-5.2.7 Retina scanners should not be considered as they are being phased out of
the marketplace.
3-5.2.8 Outside hand-geometry readers require special exterior housings. Check with
manufacturer's specifications for external applications on other biometric readers.
3-5.2.9 A common cable type for card readers is a twisted, shielded cable (typically,
six conductor). One pair is used for low voltage dc power, one pair is used for data
transmission, and one pair is normally used for LED or signal illumination. Verify the
cable requirements with the equipment manufacturer.
41
Previous Page
