Re: Biometric Access logs

[Shailesh Rangari <shailesh.sf () gmail com>]

Dear John,

I understand that the infrastructure @ your organization maybe  
different than we had @ my former workplace.
But I will still go ahead and mention how we tackled this problem @ my  
former workplace.

All the Data Centers had a Dual Factor Authentication, Layer 1 Access  
Card & Layer 2 Biometrics Access.
The Layer 2 Access was Monitored and Recorded 24/7 by Camera's.

This ensured that even though our Biometrics Access Control Logs had  
an Access Granted/Denied reference we had the Layer 1 Swipe Card Logs  
(with card unique no.) to Cross Verify with.
In a case where we couldn't verify the two logs, the Camera Recording  
always came handy.

Regards,
Shailesh

On Mar 2, 2009, at 7:24 AM, John wrote:

> Hi All,
>
> Request you to give your views on the following issue.
>
> We have Biometric access controlled server room door for better  
> security.
> There is no doubt that Biometric proovides enhanced protection. But  
> the
> issue with this access control mechanism is that it is not possible to
> review and analyze denied attempt logs since the logs only shows that
> access was denied, but to whom and other details are obvisouly not  
> shown
> because only few users from IT department only have the access to  
> the server
> room.
> It is not like Swipe cards based Access control where all the  
> employees are
> registered with the access control system.
> In that it becomes easily possible to trace who tried to access what  
> and
> when.
>
> We faced issue in the audit because of this and auditor insisted  
> that the
> review and analysis of the logs for the Biometric controlled area  
> needs to
> be done.
>
> What can be done in this scenario like this? Please give in your  
> comments.
>
> Thanks.