Enhancing Data Centre Security with Mobile Access Control

By Prabhuraj Patil, Senior Director, Physical Access Control Solutions, Asean and India Subcontinent, at HID

In today’s data-driven world, where information is the new gold standard, data centre security has become a top priority for every IT department. And with data privacy and ethical management being no longer just best practices—they’re legal mandates—the stakes are higher.

The average cost of a data breach in ASEAN countries, reached US$3.23 million in 2024 – a 6% increase from 2023, according to a study.

Data centre managers now need to prioritise not only robust network security but also the physical security of server cabinets—the final line of defense against unauthorised access to the world’s digital information stored within these cabinets. Advanced access control solutions, such as mobile credentials, can streamline and enhance this security by providing a way to quickly monitor who and when accessed a server or cabinet.

Particularly in multi-tenant data centres and remote sites where servers from different clients and industries may reside in one server cabinet, access control at the cabinet level offers an extra layer of security compared to room-level security alone.

But, not every area of a data centre requires equal protection or access. Each area type has differing security needs and authentication requirements. There’s the adjacent land, building shell, nontechnical spaces (like meeting rooms), white space (where the actual servers, racks, storage, network equipment, air conditioning units and power distribution systems reside), and gray space (housing generators, cooling equipment, switchgears, transformers and other equipment necessary to support the white space). Typically, the outermost layers require less stringent security; with the highest restrictions reserved for white space.

This flexibility and ease of management makes mobile access control the ideal solution for these high-processing facilities.

Beyond Keyed Locks: Benefits of Mobile Access Control in Data Centres

Mobile access control offers a more secure and efficient solution for data centres. Advantages include:

1. Robust security: Mobile access eliminates reliance on physical cards or badges which can be easily lost and stolen, supports multiple security protocols and includes additional layers of security on top of the card encryption. These systems track access attempts, allowing for fast reprogramming of access rights if needed.
2. Remote management: A cloud-based platform enables remote management and credential updates, simplifying access control administration. This secure, multi-layered infrastructure adheres to industry-leading security certifications and is backed by robust service level agreements and ongoing support. By leveraging cloud-connected access control devices, applications, and mobile credential solutions, data centres can strengthen security, streamline workplace efficiency, and scale their access control system as needed.
3. Threat prevention: Real-time access to data allows data centre managers to quickly detect and mitigate threats, such as the ability to instantly revoke credentials, allowing for sustained growth and continuous improvement of their security systems.
4. System Interoperability: Future-proof support is also a growing concern as users are pushing for long-term convenience while achieving cost savings. Open standards-based technology where software upgrades can be securely managed through the cloud.
5. Sustainability: Organisations across all regions are making a clear effort to understand how new purchases and upgrades in access control technology can have an impact on sustainable practices, with 74% of end users saying they’ve seen the importance of sustainability increasing over the past year, and 80% of partners reporting the trend growing in importance among their customers.
6. Scalable Access Rights: Individual access rights can be assigned to specific users and cabinets, ensuring granular control over who can access which data.
7. Streamlined Logging and Auditing: Mobile access control systems offer automated logging of access attempts. This simplifies report generation for audits and investigations—something privacy laws require—pinpointing any suspicious activity.

Conclusion

While data centres are at the forefront of technological innovation, their reliance on physical credentials for access control seems archaic.  These energy-hungry facilities are prime candidates for mobile access. This shift wouldn’t just boost security and convenience, it could also contribute to energy savings by reducing unnecessary trips and standby times associated with traditional plastic credentials.

Keep in mind that there are wide variations in the underlying security technology. It’s important to choose an access control provider that has been certified to internationally recognised data privacy standards, like ISO/IEC 27001 and SOC2 Type 2, and that uses the highest levels of encryption.

By embracing mobile access, data centres can solidify their position as cutting-edge facilities, not just in processing power, but also in security and efficiency.