0 © 2017 FUJITSU

shaping tomorrow with you

ID-Access PSN 900

Access Management – Technical Training

1 © 2017 FUJITSU

Technical Training

Biometric Basics

Functional Use Cases

Components, interfaces and cabling

Identification mode (factors and population)

Central administration (Network Management System)

2 © 2017 FUJITSU

Portfolio elements

■ Secure access control

■ Monitoring of authorized entry

■ Presence of authorized staff recorded

and monitored securely

■ Consumption management

Areas of application

■ Data centers

■ Integration into turnstiles

■ Elevator control

■ Manufacturing plants (industry)

■ Healthcare

■ Pharmaceutical industry

More Information

■ Current solutions being developed with

OEM partners (e.g. Allday Time Systems,

BWO Systems)

■ PalmPass™ on the Web:

http://en.palmpass.net/index.html

PalmSecure ID Access PSN900 – what is it all about?

3 © 2017 FUJITSU

Advantages of palm vein authentication

Hidden under the skin

Unique (even in the case of

twins)

Traits do not change for entire

lifetime

Live hand detection: only used

if blood circulation detected

Very hygienic because contact-

free

Easy and intuitive operation

High level of privacy because

hidden under the skin

Palm veins are complex

>5 million reference points

Palm has thicker veins than

fingers – easier to identify

Palm veins are not sensitive

to external factors, e.g. cold

temperature, skin scratches

1 Highest level of

security & performance

Extremely

precise

Accepted

everywhere 2 3

4 © 2017 FUJITSU

How PalmSecure works

Hand positioned

over sensor

Sensor focuses &

detects live hand

Hand scanned

with infrared light

Hand veins

recorded

Secure biometric

template stored

Biometric template

converted individual key

assigned & 2nd AES

coding

Transmitted

to PC

1st AES

coding

5 © 2017 FUJITSU

False acceptance rate (FAR) &

false rejection rate (FRR) compared

Fujitsu's palm vein scanner is the most precise and practical technology.

Precision

Pra

cti

cali

ty

Face

recognition

Fingerprint

Palm veins

High

High Low

Voice

recognition

Signature

Iris/retina

Finger vein

Low

Precision of authentication compared

Authentication method FAR (%) = If FRR (%) =

Face recognition ~ 1.3 ~ 2.6

Voice recognition ~ 0.01 ~ 0.3

Fingerprint ~ 0.001 ~ 0.1

Finger vein ~ 0.0001 ~ 0.01

Iris/retina ~ 0.0001 ~ 0.01

Palm vein < 0.00001* ~ 0.01

* I format

6 © 2017 FUJITSU

Functional Use Cases

3rd Party Access Management

Standalone, Identify on PSN900

Central Management & Enrolment, Identify on PSN900

Central Management, Enrolment, Identify on server

Time and Attendance, Enrolment, Identify on server

7 © 2017 FUJITSU

3rd Party Access Management

Door opener over two

wire on door controller

relais

Wiegand 26/34

interface

3rd party door controller

Outside (unsecure) Inside (secure)

8 © 2017 FUJITSU

Standalone, Identify on PSN900

Door opener over two

wire on PSN900 relais

9 © 2017 FUJITSU

Central Management & Enrollment, Identify on PSN900

Door opener

on PSN900

Door opener

on PSN900

Network Management

System on Windows Enrollment

Sensor Eth

ern

et

10 © 2017 FUJITSU

Central Management, Enrollment, Identify on Server (with PSN900-E only)

Door opener

on PSN900

Door opener

on PSN900

Management Console

on Windows Enrollment

Sensor

Eth

ern

et Identification Server

with PalmPass One

11 © 2017 FUJITSU

Time and Attendance via PalmPass One (with PSN900-E only)

Door opener

on PSN900

Door opener

on PSN900

Management Console

on Windows Enrollment

Sensor

Eth

ern

et Identification

Server with

PalmPass One

3rd party time

Management

system

12 © 2017 FUJITSU

Components, interfaces and cabling

Component overview

Connectors and interfaces

Connect with access controller

Connect with electric lock

13 © 2017 FUJITSU

Component overview

Base unit

Power supply

Mounting frame

Hand guides

Black for sunny environment and

enrollment

Transparent for inside environment

Cover ring for contact less use and

skilled users

14 © 2017 FUJITSU

Connectors and interfaces

Connector groups: External interfaces (left to right):

Power supply (3-pin plug)

LAN (RJ-45 plug)

Wiegand interface (6-pin plug)

Relais set (6-pin plug)

Building site you need:

Power (220V)

LAN

Cables to door lock (controller)

15 © 2017 FUJITSU

Connect with access controller (Wiegand IF)

16 © 2017 FUJITSU

Connect with electric lock (internal relais)

17 © 2017 FUJITSU

Identification and work modes

18 © 2017 FUJITSU

Identification modes (factors and population)

Factors Mode Max. users Configuration Remarks

Vein only 1:N 100 Type A/C

Vein only 1:N 10.000 Type E with PPO I33 Format

Card & Vein 1:1 10.000 Type A/C Depending on

memory

GroupNo & Vein 1:N 300 Type A/C

GroupNo & Vein 1:N 300 Type E with PPO

PIN & Vein 1:1 10.000 Type A/C Depending on

memory

PIN & Vein 1:1 10.000 Type E with PPO

19 © 2017 FUJITSU

Central administration (Network Management System)

Hard- and software requirements

Architecture

NMS functions

Connection of PSN devices

20 © 2017 FUJITSU

Hard- and software requirements

Connect PSN 900 device over Ethernet to your network

Only fixed IP v4 addresses (NO DHCP support)

Network Management Software:

Intel® compatible PC with Windows XP / 7 / 8 or Server 2003 / 2008

PalmPass One:

Intel® compatible server with CentOS 6.4 – 32 Bit

Admin Client:

PalmSecure STD Guide Kit for central enrollment

Internet Explorer 8 / 9 (Windows XP 32- bit browser) or Internet Explorer

10 / 11 (Win7 or Win8)

21 © 2017 FUJITSU

Architecture

Windows Client with

Internet Explorer Enrollment

Sensor

NMS (Windows) or

PP1 (Linux)

LAN

Cat 5

LAN

Cat 5

Wiegand 24/36

3 wire

3rd party door controller

LAN

Cat 5

Wiegand 24/36

3 wire

3rd party door controller

LAN

Cat 5

Eth

ern

et

22 © 2017 FUJITSU

NMS Functions

User Management

User information

Department management

Administrators management

Roles management

Device Management

Device information

Device group

Access control setting

Time zone setting

23 © 2017 FUJITSU

NMS Functions (cont.)

Data Management

User data

Access logs

Device logs

File management

Database backup

Database restore

Attendance management

Attendance rules

Shifts management

Scheduling

Attendance results

Statistical reports

24 © 2017 FUJITSU

Connecting PSN devices to NMS

Create access PIN for every device

Set correct IP address, port and device number on device and

NMS

25 © 2017 FUJITSU

Devices and groups

Use device groups to gather devices with same functions

Download of users and profiles as well as upload of logs can be

done to any device in a group at same time

26 © 2017 FUJITSU

Adding und distributing users

Users can be registered

centrally; use IE connected

to NMS

Click User->User Info-

>Register to enroll new

user

Click Data->User Data-

>Download distribute users

to devices

27 © 2017 FUJITSU

Backup

28 © 2017 FUJITSU

HYDST, China - Media

Challenge: Increase security level of turnstiles with biometrical technology to highly accurate recognize staff and registered visitors. Satisfy highest processing speed to serve thousands of staff members during peak hours.

Solution: Palm vein-based ID Access provides highest level of accuracy, fast operation, contactless authentication satisfies hygienic requirements for the public use. Compact size allows integration into turnstiles. Palm vein authentication, combined with staff‘s ID badge allows 1:1 verification that enables 16 authentications per turnstile per minute.

Case studies

State Grid, China - Energy

Challenge: Prevent fraud during

employee sign in and out and

upload of date to customer

database in real-time from various

locations.

Solution: ID Access ensures

highly accurate verification of

users based on Fujitsu

PalmSecure technology. Transfer

of time attendance date to HR

system in real-time, employees

can check time attendance results

in HR application.

Inspur, China – Data Center Operator

Challenge: Access control that meets very high security standards. A fast, easy-to-use, non-intrusive access control system was required.

Solution: ID Access with palm vein technology offers robust biometrical authentication to enhance physical access security. Easy to deploy and – with the Wiegand interface – matches third party access controller. The management software can easily be customized and fits into any control dashboard system.

MBC Group, UAE - Media

Challenge: For one of the Middle East biggest media groups, security is one of the pillars they rely on to ensure a secure and monitored environment. The existing finger print biometric system didn’t provide them with a reliable and flexible solution.

Solution: The PSN900 biometric terminal was installed at the main security office at the main entrance of MBC group to ensure ultimate security and safety.

The PSN900 proved its reliability, agility to cope with changes and gained the appeal of the people working at MBC.

29 © 2017 FUJITSU

PalmSecure ID Access PSN900 Specification

Size/Weight 302mm*132mm*38mm (1Kg)

Touchscreen 5.0" (800*480)

Smart Card Reader Mifare One S50/S70, ID card, HID card

Memory Capacity 4GB and expandable

Speaker 1W*1

USB Interface 1

Power DC:12V/1.5A

Communication Interface LAN(10/100M)

Other Interfaces Wiegand 26/34

Electric Lock/Exit Button/Alarm

Temperature Operation temperature：-10~50℃

Recommend temperature: 0~45℃

Humidity 30 to 80%Rh, No condensation

User Capacity 1:N Mode: Max 1000 IDs

1:1 Mode: Max 200,000 IDs and extensible

Authentication Speed 1:N Mode <3s (N<100)

1:1 Mode <1s

Event Log 100,000 records

30 © 2017 FUJITSU

More information

Security Sales Playbook (EN)

Security Sales Playbook (DE)

PalmSecure on the Web (EN)

PalmSecure on the Web (DE)

31 © 2017 FUJITSU