Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method of determining a door state in a camera-based door position system according to one embodiment includes capturing, by a camera system, an image of a door lock secured to a door, wherein the door lock includes a thumbturn that is moveable between a first position corresponding to a locked state and a second position corresponding to an unlocked state, converting, by a processing system, the captured image to a grayscale image, generating, by the processing system, a door state image based on the grayscale image, and determining, by the processing system, a current door state of the door based on the door state image and a reference image.

Abstract: A method according to one embodiment includes determining, by an access control device that controls access to a passageway, a location of a mobile device relative to the access control device based on a signal distance traveled and an angle of arrival of a signal received by the access control device from the mobile device, determining whether the location of the mobile device relative to the access control device is a location that indicates an intent of the user of the mobile device to access the passageway, and unlocking a lock mechanism of the access control device in response to a determination that the location of the mobile device relative to the access control device indicates that the user intends to access the passageway.

Abstract: A method according to one embodiment includes communicating a wireless advertisement that identifies a clock status of a real-time clock of the access control device, wherein the clock status includes a clock status value indicating that the real-time clock has not been set, establishing a wireless communication connection with a computing device in response to the wireless advertisement, transmitting a session random value to the computing device, receiving a clock update token from the computing device, wherein the clock update token is indicative of an authority of the computing device to update the real-time clock of the access control device, authenticating the clock update token based on at least the session random value, and updating the real-time clock based on a received update time in response to successful authentication of the clock update token.

Abstract: A method according to one embodiment includes determining, by an access control device that controls access to a passageway, a location of a mobile device relative to the access control device based on a signal distance traveled and an angle of arrival of a signal received by the access control device from the mobile device, determining whether the location of the mobile device relative to the access control device is a location that indicates an intent of the user of the mobile device to access the passageway, and unlocking a lock mechanism of the access control device in response to a determination that the location of the mobile device relative to the access control device indicates that the user intends to access the passageway.

Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method according to one embodiment includes determining whether a guest associated with a guest device is authorized to control an access control device based on an access control list, generating a caveated cryptographic bearer token in response to determining the guest is authorized to control the access control device, the caveated cryptographic bearer token including a time-based caveat defining a time limit for control of the access control device, transmitting the caveated cryptographic bearer token to the guest device in response to generating the caveated cryptographic bearer token, transmitting, in response to receiving the caveated cryptographic bearer token, a request including the caveated cryptographic bearer token to control the access control device to the access control device, and authenticating the request based on the received caveated cryptographic bearer token, a base cryptographic bearer token stored on the access control device, and a real-time clock of the access control device.

Abstract: A method according to one embodiment includes communicating a wireless advertisement that identifies a clock status of a real-time clock of the access control device, wherein the clock status includes a clock status value indicating that the real-time clock has not been set, establishing a wireless communication connection with a computing device in response to the wireless advertisement, transmitting a session random value to the computing device, receiving a clock update token from the computing device, wherein the clock update token is indicative of an authority of the computing device to update the real-time clock of the access control device, authenticating the clock update token based on at least the session random value, and updating the real-time clock based on a received update time in response to successful authentication of the clock update token.

Abstract: A method of determining a door state in a camera-based door position system according to one embodiment includes capturing, by a camera system, an image of a door lock secured to a door, wherein the door lock includes a thumbturn that is moveable between a first position corresponding to a locked state and a second position corresponding to an unlocked state, converting, by a processing system, the captured image to a grayscale image, generating, by the processing system, a door state image based on the grayscale image, and determining, by the processing system, a current door state of the door based on the door state image and a reference image.

Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method according to one embodiment includes determining, by an access control device that controls access to a passageway, a location of a mobile device relative to the access control device based on a signal distance traveled and an angle of arrival of a signal received by the access control device from the mobile device, determining whether the location of the mobile device relative to the access control device is a location that indicates an intent of the user of the mobile device to access the passageway, and unlocking a lock mechanism of the access control device in response to a determination that the location of the mobile device relative to the access control device indicates that the user intends to access the passageway.

Abstract: A method according to one embodiment includes determining whether a guest associated with a guest device is authorized to control an access control device based on an access control list, generating a caveated cryptographic bearer token in response to determining the guest is authorized to control the access control device, the caveated cryptographic bearer token including a time-based caveat defining a time limit for control of the access control device, transmitting caveated cryptographic bearer token to the guest device in response to generating the caveated cryptographic bearer token, transmitting, in response to receiving the caveated cryptographic bearer token, a request including the caveated cryptographic bearer token to control the access control device to the access control device, and authenticating the request based on the received caveated cryptographic bearer token, a base cryptographic bearer token stored on the access control device, and a real-time clock of the access control device.

Abstract: A method according to one embodiment includes communicating a wireless advertisement that identifies a clock status of a real-time clock of the access control device, wherein the clock status includes a clock status value indicating that the real-time clock has not been set, establishing a wireless communication connection with a computing device in response to the wireless advertisement, transmitting a session random value to the computing device, receiving a clock update token from the computing device, wherein the clock update token is indicative of an authority of the computing device to update the real-time clock of the access control device, authenticating the clock update token based on at least the session random value, and updating the real-time clock based on a received update time in response to successful authentication of the clock update token.

Abstract: A method according to one embodiment includes determining whether a guest associated with a guest device is authorized to control an access control device based on an access control list, generating a caveated cryptographic bearer token in response to determining the guest is authorized to control the access control device, the caveated cryptographic bearer token including a time-based caveat defining a time limit for control of the access control device, transmitting the caveated cryptographic bearer token to the guest device in response to generating the caveated cryptographic bearer token, transmitting, in response to receiving the caveated cryptographic bearer token, a request including the caveated cryptographic bearer token to control the access control device to the access control device, and authenticating the request based on the received caveated cryptographic bearer token, a base cryptographic bearer token stored on the access control device, and a real-time clock of the access control device.

Abstract: A method according to one embodiment includes monitoring, by an access control device, for changes to a first access control database stored on the access control device, wherein the first access control database is associated with a first security ecosystem having a first set of security protocols; automatically updating a mediation database stored on the access control device to identify a change to the first access control database in response to a determination that the change occurred; and automatically updating a second access control database stored on the access control device based on the change identified in the mediation database and in response to the automatic update of the mediation database, wherein the second access control database is associated with a second security ecosystem different from the first security ecosystem and having a second set of security protocols different from the first set.

Abstract: A method according to one embodiment includes determining whether a guest associated with a guest device is authorized to control an access control device based on an access control list, generating a caveated cryptographic bearer token in response to determining the guest is authorized to control the access control device, the caveated cryptographic bearer token including a time-based caveat defining a time limit for control of the access control device, transmitting the caveated cryptographic bearer token to the guest device in response to generating the caveated cryptographic bearer token, transmitting, in response to receiving the caveated cryptographic bearer token, a request including the caveated cryptographic bearer token to control the access control device to the access control device, and authenticating the request based on the received caveated cryptographic bearer token, a base cryptographic bearer token stored on the access control device, and a real-time clock of the access control device.

Abstract: A method according to one embodiment includes communicating a wireless advertisement that identifies a clock status of a real-time clock of the access control device, wherein the clock status includes a clock status value indicating that the real-time clock has not been set, establishing a wireless communication connection with a computing device in response to the wireless advertisement, transmitting a session random value to the computing device, receiving a clock update token from the computing device, wherein the clock update token is indicative of an authority of the computing device to update the real-time clock of the access control device, authenticating the clock update token based on at least the session random value, and updating the real-time clock based on a received update time in response to successful authentication of the clock update token.

Abstract: A method according to one embodiment includes determining, by an access control device that controls access to a passageway, a location of a mobile device relative to the access control device based on a signal distance traveled and an angle of arrival of a signal received by the access control device from the mobile device, determining whether the location of the mobile device relative to the access control device is a location that indicates an intent of the user of the mobile device to access the passageway, and unlocking a lock mechanism of the access control device in response to a determination that the location of the mobile device relative to the access control device indicates that the user intends to access the passageway.