Access Control in Enterprises with Key2Share

Key2Share is a new solution for NFC-enabled Android smartphones that allows enterprise employees to access offices and other enterprise premises using digital access control tokens stored on their mobile phones. The Key2Share app utilizes Near Field Communication (NFC) technology, which enables the phone to emulate a contactless smartcard that can be used with standard contactless smartcard readers.

The Key2Share app allows an enterprise to distribute and manage the digital access control tokens of its employees in an efficient and controlled way. Tokens can be issued and revoked remotely, delegated to other employers or visiting guests, and support context-aware and time-limited access control policies. These policies may, e.g., deny access to office rooms during weekends and holidays, or specify whether tokens can be delegated to other users. Electronic door locks can provide access logs for auditing, or unlock all exits in case of emergency (such as fire or earthquake).

Storing and handling digital access control tokens on a mobile phone raises risks of being targeted by attacks. Particularly, in the context of enterprise usage scenarios attackers may be motivated to perform sophisticated attacks. These risks are addressed by the underlying platform security architecture, which protects digital access control tokens on the smartphone. It provides a secure storage and a secure execution environment, where digital tokens can be securely stored and processed in strict isolation from untrusted and possibly malicious code. Using digital access control tokens on NFC-enabled smartphones offers positive user experience to employees and provides security, convenient management and strict access control enforcement to enterprises.