Next-Generation Security Devices
A look at what's on the market and what's coming down the line to help secure public and private spaces.
By Derek Gale, Associate Editor -- HOTELS Magazine, 1/1/2007
|
When it comes to property security, guestroom locking systems and closed-circuit television systems have been standards in the industry for years. But that does not mean vendors of these products are sitting back watching the time go by—rather they are constantly innovating to respond to the changing needs of an industry embracing new technologies across the board and new realities in terms of physical security. Of course, two buzzwords when it comes to any new technology are “wireless” and “digital.” And security technology is no different, with the recent development of contactless RFID locking systems as well as digital, network-based closed-circuit television systems. Both have advantages over the former technology. In terms of CCTV and video surveillance, everything now can be digitally recorded and placed on the hotel network so that a general manager, for example, is able to access any camera from any computer terminal. And RFID locks give hoteliers a superior option for outdoor entrances in harsh weather environments, while also allowing for flexibility in the key, which might not be a key at all in the traditional keycard sense, but rather a bracelet or cell phone that may serve various functions throughout the property, including payment. As vendors continue to do research and development, these technologies and the products around them will evolve to meet the needs of tomorrow’s hoteliers and hotel guests. Meanwhile, here’s a look at some of what’s available now.
|
Miwa, SAFLOK and VingCard each have developed a contactless RFID lock design that offers less hardware on the front of the door. Miwa’s product includes a battery-operated lock and remote-control RFID keys effective at a range of up to 5 meters (16 feet). The lock emits an audible indication to confirm that the door has been locked or unlocked, and a rolling code format makes it virtually impossible to duplicate the frequency, even if the RFID waves were to be intercepted. SAFLOK’s Quantum RFID lock features an environmentally sealed proximity reader and LED lights that display behind the polycarbonate reader lens, along with open IR/RF architecture and an energy management interface. And VingCard’s Signature RFID product allows guests to use Near Field Communications (NFC) compliant cell phones to open guestroom doors. In addition, through collaboration with NXP, hotels equipped with the Signature RFID locking system will be able to offer remote check-in, allowing guests to receive their room number and room key access code via text message so they can go directly to their rooms upon arrival. VingCard’s RFID lock runs on an open-platform system compatible with the leading RFID ISO standards and the NFC platform. CISA also offers an RFID open IR/RF architecture and an energy management interface. And VingCard’s Signature RFID product allows guests to use Near Field Communications (NFC) compliant cell phones to open guestroom doors. In addition, through collaboration with NXP, hotels equipped with the Signature RFID locking system will be able to offer remote check-in, allowing guests to receive their room number and room key access code via text message so they can go directly to their rooms upon arrival. VingCard’s RFID lock runs on an open-platform system compatible with the leading RFID ISO standards and the NFC platform. CISA also offers an RFID product, the Wave Mode lock, which allows guests to signal their presence in the room by the press of a button, eliminating the need for other guest privacy devices.
On the CCTV front, digital technology enables better functionality in cameras, recording and playback. The latest trend is to base CCTV surveillance systems on hotels’ IP networks. By doing this, any camera can be provided with any frame rate at any time, and frame rate and storage capacity are easily increased. Moreover, IP allows intelligent functionality of cameras, including motion detection, dynamic noise reduction, alarm triggering, and remote accessibility of live or stored video streams from any location. “IP is head and shoulders above analog cameras,” says Jon Ecker, founder and CEO of Peace of Mind Technologies LLC, a New-York based security company. Plus, an IP-based system offers the benefit of lower installation costs. “We can utilize the IP network to eliminate 80% of the wiring, and therefore [lessen] cost,” Ecker says.Bosch has a range of products available to get hotels fully set up with an IP-based CCTV system, from pan/tilt/zoom cameras to its VIDOS-NVR (networked video recorder), which supports up to 64 video streams simultaneously over a single PC server, and is designed to ensure seamless and gapless recording even in the event of a network failure. A customizable software package also is available to control all functions of the IP CCTV system.
| Security Vendors: |
|
Bosch Security Systems
 |
Credit Check: Is Your Hotel PCI Compliant?
Understanding security standards and vulnerabilities can keep hotels from having to tell guests that credit card numbers were compromised.
Whether obtained via high-tech malicious hacking or lowtech employee wrongdoing, guests’ credit card numbers are valuable to criminals. And regardless of whether local or national legislation dictates it, hotels have a responsibility to keep sensitive guest data confidential. For credit card numbers, this starts with the payment card industry data security standard.
Chicago-based information security firm Ambiron Trustwave does frequent PCI compliance audits for companies with decentralized locations like hotel chains and individual properties. Instead of completing an extensive self-assessment questionnaire, Ambiron offers hotels its RiskProfiler product, which identifies basic risk parameters and boils them down to a short questionnaire that is dynamic based on the answers received as it is completed. Once Ambiron sees what the risk profile is, the firm will recommend appropriate action. And Ambiron offers tools for hotel companies to work with individual properties to ensure the same level of data security at each hotel as at the corporate office, for example.
|
But guest data security goes beyond the corporate office and individual properties. Because hotels have many business partners through which they may receive sensitive data or to which they may transmit sensitive data, management must take the same level of due diligence in choosing vendor relationships and partnerships, asking partners the same questions the hotels answered themselves when going through their own assessments, says Mike Pettiti, senior vice president of marketing at Ambiron.
One specific system found in almost all hotels that has been the subject of much scrutiny in terms of data security is the point-of-sale (POS) system. The reason for this is that POS systems were not originally designed to ensure the security of guest credit card data, Pettiti says. “Some payment applications may inadvertently store prohibited, sensitive cardholder information that merchants don’t need, such as magnetic-stripe (e.g., track data) and PIN data,” writes Michael Smith, senior vice president, enterprise risk and compliance for Visa, in the October issue of Transaction World magazine. “In some situations, merchants may not understand that their payment applications are storing this highly sensitive information. But it is exactly this sort of data that fraudsters covet to perpetrate card payment fraud.”
Thankfully, these days, security practices are top of mind for POS system developers like Santa Barbara, California-based InfoGenesis and Columbia, Maryland-based MICROS. Both companies adhere to Payment Application Best Practices (PABP) standards, and MICROS goes even further in some markets, such as partnering with Peace Of Mind (POM) Technologies LLC in New York to integrate its POS systems with POM’s surveillance systems. “So an operator can watch a bartender punch in four martinis and see what is given out,” says Jon Ecker, POM’s founder and CEO. With that setup, all transactions go into the software system and reports can be run on no-sales and voids, with the corresponding video able to be brought up simultaneously.
In addition to POS systems, many hotels or hotel companies have developed internal, custom applications that handle sensitive guest data. The code in those applications also should be examined to ensure that such systems meet basic standards and that the data within them is secure, Pettiti says.
Handling A Crisis - In the case of a security breach, what is the proper response for a hotel or hotel company? “Try to contain and limit as much exposure to the data as you can immediately,” Pettiti says. “Remove all components of systems that have been breached. Turn off [systems], and do anything you can without altering data—you want to preserve all available logs while stopping the breach. Then, lots of notification.” Customer notification is significant because of legislation in some locations, but equally important is notifying the merchant bank and card associations, which have hotlines that must be contacted in the event of a breach. Local law enforcement has to be contacted as well, and, in the United States, those organizations often will escalate the issue to the Secret Service or Federal Bureau of Investigations. Finally, Pettiti suggests finding a third party to work with to go through a forensic investigation—identifying what happened, going over the trails, and looking for evidence that could be gleaned for possible prosecution. This also will help prevent additional breaches in the future.
Tech BriefsEcolab Inc. introduces Simply Fragrance, an air freshener that delivers a precise dose of fragrance via a hydrogen fuel cell device. iBAHN launches SmartLink, which employs an automatic backup circuit to deliver fail-proof Internet service even when a connection goes down. Joie de Vivre Hospitality, San Francisco, chooses to standardize property technology on a multiproperty, centrally hosted MICROS OPERA Enterprise Solution. Chicago- based Hyatt Hotels & Resorts renews its partnership with Passkey for online group reservations. Clive Smith joins EasyRMS as part of the senior management team. Agilysys introduces enhancements, including a new hospitality business intelligence solution, to its Lodging Management System and the Materials Management System. Amadeus and PAR Springer-Miller Systems are partnering to provide a comprehensive revenue management solution for hoteliers. NORTHWIND adds Retail Point of Sale, Golf Management and Membership Management to its Maestro Enterprise Suite, which now consists of 15 integrated applications. Jiten Hotel Management, Brockton, Massachusetts, installs M-Tech’s PMWorks preventive maintenance software in 12 properties. Pegasus Solutions Inc. launches its Web Analytics service for hoteliers. Wayport adds Richard Barnes as vice president and general manager of retail, and Bob Pojman as vice president of operations. IntraDynamic Systems launches IntraMax and Intra- Flow software to manage and streamline sales and catering activities. Philips is named
a global supplier of televisions
to Paris-based Accor. |
View All Blogs
