Utilities and vital infrastructure
Water boards, water companies, grid operators and energy infrastructure
Robust offline access across many unmanned assets. Field network is not a guarantee. Mobile validation and keyless access are deployed selectively. The basis remains keyed access with a management process that does not rely on mobile availability.
Policy in brief
-
Mobile validator: limited
-
Keyless to the lock: limited
-
Flex (wired): yes
-
Default issuance: named
-
Integrations: not standard
-
Publication: no critical locations or security details
Context and assets
Assets are dispersed, unmanned, and maintenance-intensive. Failures are not plannable. Contractors and breakdown services rotate. Management must be scalable with minimal dependencies.
Recommended setup
Rights-based access with a key as the basis
Mechatronic cylinders and padlocks on field assets and technical rooms. Offline opening with audit trail.
Selective mobile validation
Only where demonstrable value. Otherwise, design around management points with fixed synchronization.
Update points and management points
Update points at workshops and depots. Align rhythm with breakdown service and contractor rotations.
Issuance and vault process
Default key on the person. Safes in case of high contractor turnover or stricter issuance.
Flex (wired)
Flexibility where wired I/O or signaling adds value within a location.
Software and hosting
CAW Enterprise as the management base. EU-hosted shared for smaller to medium-sized environments. EU-hosted dedicated for segregation scale or integrations. On-prem if hosting is not permitted or if logging and IT governance must remain within the own domain.
Pitfalls within the sector
Keyless
Introducing keyless without demonstrable return on management
Mobile validator
Standardizing mobile validation while policy does not support it
Security details
Describe critical locations or security details to the public