Physical Security Integration

• Access control panels: card reader events, door contact state, REX (Request-to-Exit),

forced/held door alarm

• CCTV / IP cameras: raw streams fed through video analytics (V07 integration)
• Passive infrared (PIR) detectors
• Microwave and dual-tech motion detectors
• Acoustic glass-break sensors
• Vibration/shock sensors on doors and windows
• Outdoor perimeter: IR beam curtains, microwave barriers, buried cable systems,

fence vibration fiber

• Personnel RTLS: BLE/UWB active badge tracking (location to ±0.5m in complex facilities)
• Vehicle LPR: License Plate Recognition at entry gates and perimeter roads
• Visitor management system: pre-registered visitor expected location vs actual
• Environmental context: gas (V01), fire (V16) — security-relevant environmental threats

• Access + video correlation: badge swipe event → verify person in video frame

matches credential holder (anti-passback, identity verification)

• Tailgating detection: door open event + occupancy count mismatch beyond threshold
• After-hours anomaly: access event at unusual time for that credential +

motion in sensitive area = elevated risk score

• Perimeter breach geometry: which sensors triggered in which sequence → predicted

path and destination

• Insider threat pattern: unusual access sequence, timing, zone combination, or

frequency relative to historical baseline (ACE pattern analysis)

• Aggressor dwell: person stationary in restricted area beyond behavioral norm
• Multi-site credential abuse: same badge used at two facilities within

impossible travel time

• Tailgating detected → Alert security desk with camera feed link, log event,

flag for review

• After-hours high-risk anomaly → Alert duty officer, increase camera polling

rate in zone, request verbal verification

• Perimeter breach confirmed → Lockdown affected zone access, alert response team

with location and direction of travel, activate all cameras in predicted path

• Credential abuse (impossible multi-site) → Suspend credential immediately,

alert both facilities, alert credential owner

• Environmental + access correlation (fire alarm + access event) → Unlock

emergency egress, alert fire responders with occupant count and location

• False alarm rate reduction (each confirmed event vs alert sent)
• Mean time to detect (MTTD) for real incidents
• Tailgating rate trend (culture and compliance metric)
• Insider threat risk score calibration vs actual incidents (ACE learning)

• Corporate campuses and headquarters
• Financial institutions (branch, data center, trading floor)
• Critical infrastructure: utilities, water treatment, power generation
• Government and federal facilities
• Military installations (works with V35 but civilian security context)
• Healthcare: hospital security, pharmacy, drug storage
• Retail: loss prevention integration with CCTV and POS
• Transportation hubs: airports, transit stations