ISO/IEC 20933:2019

INTERNATIONAL ISO/IEC
STANDARD 20933
Second edition
2019-01
Information technology — Distributed
application platforms and services
(DAPS) — Framework for distributed
real-time access systems
Technologies de l'information — Services et plate-formes
d'application distribuées — Structure pour les contrôles d'accès
diffusés en temps réel
Reference number
©
ISO/IEC 2019
© ISO/IEC 2019
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Fax: +41 22 749 09 47
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO/IEC 2019 – All rights reserved

Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions and acronyms. 1
4 Conformance . 3
5 Overview . 3
6 Transaction . 4
7 Time stamping function . 6
8 Module . 6
8.1 Policy module . 6
8.2 Access-point module . 7
8.3 RED module . 7
8.4 Processing module . 7
8.5 Storage module . 7
9 Messages of each interface . 7
9.1 Messages of Policy interface . 8
9.2 Message of Access interface . 8
9.3 Messages of Processing interface . 9
9.4 Messages of Storage interface .11
10 Messages of external interfaces .13
10.1 Access request from external interface (In) .13
10.2 Final result notification to external interface (Out) .13
10.3 Time stamp notification .14
11 Access system performance management .14
11.1 Transaction processing time .15
11.2 Request performance time .15
11.3 Module processing time .16
11.4 Data transmission time .17
11.5 Request performance time for retrieve .17
11.6 Module processing time for retrieve .17
11.7 Data transmission time for retrieve .18
11.8 Request performance time for store .18
11.9 Module processing time for store .19
11.10 Data transmission time for store .19
11.11 Access point processing time .19
Annex A (informative) Service access control system .21
Annex B (informative) Share information between different Access systems .22
Annex C (informative) Usage of time stamping .23
Annex D (informative) List of messages .26
© ISO/IEC 2019 – All rights reserved iii

Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that
are members of ISO or IEC participate in the development of International Standards through
technical committees established by the respective organization to deal with particular fields of
technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other
international organizations, governmental and non-governmental, in liaison with ISO and IEC, also
take part in the work.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of document should be noted (see www .iso .org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject
of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent
rights. Details of any patent rights identified during the development of the document will be in the
Introduction and/or on the ISO list of patent declarations received (see www .iso .org/patents) or the IEC
list of patent declarations received (see http: //patents .iec .ch).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to the
World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see www .iso
.org/iso/foreword .html.
This document was prepared by Ecma International (as ECMA-412) and drafted in accordance with its
editorial rules. It was assigned to Joint Technical Committee ISO/IEC JTC 1, Information technology, and
adopted under the “fast-track procedure”.
This second edition cancels and replaces the first edition (ISO/IEC 20933:2016), which has been
technically revised.
The main changes compared to the previous edition are as follows:
— added new functionalities on performance management mechanisms;
— editorial improvements and clarifications to the text of the document.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www .iso .org/members .html.
iv © ISO/IEC 2019 – All rights reserved

Introduction
Technology for real-time access control is widely used in many situations such as entrance gates of
facilities and service access control systems. Membership and settlement services also benefit from
real-time access control systems connected via networks and using database information.
Sophisticated cloud, virtualisation, database, networking technology and services and the evolution of
authentication technology such as biometrics, NFC, QR codes used in distributed and modular access
control systems enable previously underserved users and operators to innovate around new use cases.
Taking into account the many technologies, this document specifies the reference model and common
control functions. It gives direction for ongoing innovation and development of technology and system
integration of distributed real-time access control system.
nd
This 2 edition of the Standard introduces new functionalities on performance management
mechanisms. Performance management mechanisms allow an Access system to be evaluated for
performance by using specific elements and metrics. This edition also provides a number of editorial
improvements and clarifications to the text of the Standard.
st
NOTE In the 1 edition the title of the Standard was Access systems.
© ISO/IEC 2019 – All rights reserved v

INTERNATIONAL STANDARD ISO/IEC 20933:2019(E)
Information technology — Distributed application
platforms and services (DAPS) — Framework for
distributed real-time access systems
1 Scope
This document specifies a framework for a distributed real-time Access system. It includes:
1) an ID triggered modular system architecture, the functions of the modules, the semantics of
messages those modules exchange, and elements of messages;
2) the system behaviour from the time it receives an access request until the time it sends the result
along with the sequence;
3) performance measurement mechanisms using a time stamping function that can be employed for
the evaluation of the system.
2 Normative references
There are no normative references in this document.
3 Terms and definitions and acronyms
For the purposes of this document, the following terms, definitions and acronyms apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— IEC Electropedia: available at http: //www .electropedia .org/
— ISO Online browsing platform: available at https: //www .iso .org/obp
3.1
Accessor
someone or something that interacts with the Access system
3.2
access-ID
identifier in an Access request
3.3
access-ID-obtained-time
time when an Access-point module obtains an access-ID
3.4
access-point-ID
identifier of an Access-point module
3.5
Access-request
request trigger of processing for access system
© ISO/IEC 2019 – All rights reserved 1

3.6
Distributed real-time access system
data processing system distributed in the network which is activated by an access request and
completed when the processing result accepts or denies that request wit
...