摘要 |
<p>A controller device can correspond to a physical access control unit of a distributed physical access control system. The controller device can include a logic (210) for accessing a global database (354) including access control information for a plurality of controller devices (115). The logic can extract a local access rule table (356) from the global data, wherein the local access rule table (356) associates a user with access rules and the local access rule table (356) is encrypted by a local access rule key. The logic extracts a local certificate table (358) from the global database (354), wherein the local certificate table (358) associates a hashed certificate with a user, the local certificate table (358) stores for the user the local access rule key encrypted by an unhashed certificate associated with the user, and the unhashed certificate is not stored in the controller device.</p> |