In large organizations, handling personnel authorization for access to various sites within the building has always proved to be a challenge for security departments. In this work, we develop a prototype that utilizes an identity-based identification scheme to provide access control for incoming and outgoing personnel from the building, as well as their activities within. Our prototype is built using open-source web technology as well as mobile app support for personnel smart phones. The novelty lies in the application of an identity-based identification scheme as a crucial component to ensure that no third party malicious observers, or even observers disguised as honest users trying to break the system, will be able to learn anything about the authentication processes of other users. We also reveal the running time for our various mobile applications for both the registration and identification process and show that they are competitive to that of previous work done in identity-based identification simulation experiments in the past. Lastly, as proof of concept, we demonstrate our prototype with a Nuvton electromagnetic door lock that communicates with the verification process on the server.
展开▼