Matrix Access Control Solution

COSEC enforces access policy along three axes — who the user is, which zone they are trying to enter, and what time they are attempting it. The combination is what catches most operational gaps.

Time-windowed access blocks contractors from entering outside agreed shift hours. Zone-based access restricts maintenance crews to maintenance areas. Route-based access requires users to enter zones in a sanctioned order — useful for clean-room workflows or staged-security buildings where skipping a checkpoint is itself an event.

A single COSEC deployment supports up to 65,000 door controllers and one million users on one platform. Multi-site enterprises run identical policies across every location without per-site administration overhead — change a rule once and it propagates.

The same architecture handles a 12-door head office and a 1,200-door industrial campus. Sites onboard via VYOM (cloud) by URL — no new server, no per-site deployment cost — or via CENTRA (on-premise) when data-residency requirements rule out cloud hosting.

From high-security rooms to guard patrols and lone-worker areas, the COSEC policy engine handles the corner cases that catch most operators out:

• First-In User — a zone cannot open until an authorized opener is physically present
• Anti-Passback — one credential cannot be reused to tailgate a second person through the same door
• Man-Trap — two-stage authentication where two adjacent doors cannot be open simultaneously
• 2-Person Rule — dual-credential authentication required for the highest-security rooms
• Occupancy Limits — zone capacity is enforced, not just monitored
• VIP Access — nominated users move through the site without being stopped by route, occupancy, or anti-passback rules — for executives and emergency responders.
• Guard Tour — security patrols tap checkpoints in a set sequence; a missed or late checkpoint raises an alert, turning a patrol into a logged record.
• Dead-man Zone — in hazardous or lone-worker areas, no door activity within a set window triggers a welfare alert to a supervisor.
• DND Zone — a zone can be sealed on a schedule so only exempted users enter during set hours — cleaning windows, audits, maintenance lockouts.
• Instant block — a lost or revoked credential is blocked across every door and every site at once, not door by door.

When a policy is violated — an unauthorized door attempt, a sustained door-held-open, an out-of-hours entry — COSEC pushes the event in real time to SMS, email, or WhatsApp. Security operators see the event, the user, the door, and the timestamp without opening a console.

Routine activity stays out of the channel. Notifications fire only when something operationally meaningful happens, which is what keeps the channel useful instead of saturated.

Where most projects break is at the integration layer. COSEC integrates with fire-alarm, CCTV, turnstile, boom-barrier, and tripod systems at protocol level — not by emailing each other.

When the fire alarm trips, doors unlock and cameras start recording — automatically. Emergency-mustering headcount becomes a derived fact, not a manual call-around. Door events sync to CCTV streams so security can see who triggered an alert. And the HRMS gets the same user identity the door reader saw, which is how attendance and access stay in agreement.