Field notes fromthe team.
Engineering deep-dives, security research, and product stories from the people building EntryBit.
Access Control: How to Choose the Right System for Your Organization
An access control system is far more than a door that opens with a card. Here's how to choose the right one for your organization — identification methods, integrations, cloud vs. on-premise, and what really matters before you decide.

Why More and More Organizations Are Moving to Cloud-Based Access Control
Managing access control no longer requires an on-site server and a technician for every change. These are the reasons organizations are moving to the cloud: control from anywhere, a system that keeps improving, and flexibility that grows with the organization.

Before You Buy an Access Control System: 7 Questions Every Security Manager Should Ask
An access control system is a multi-year commitment. Before you compare prices or specs, these are the seven questions that save you time, money, and hassle down the road.
Why we built EntryBit — rethinking access control
The story behind a cloud-native take on physical access control — and why we think the category was long overdue for a rewrite.
Scaling to 1,000 sites with zero downtime
Cell-based architecture, blast radius containment, and offline resilience — how we scaled access control across four continents.
Designing audit logs you can actually trust
How tamper-evident hash chains change incident response and what we learned implementing them in production.
Visitor management: from lobby chaos to concierge
How modern visitor management transforms front-desk operations with pre-registration, digital NDA signing, auto-expiring badges, and lobby analytics.
Mobile credentials: the end of the keycard
What we learned shipping Apple Wallet and Google Wallet credentials to 50,000 users across 40 sites.
Biometric access control and privacy: a guide
A practitioner's guide to deploying face recognition and fingerprint readers while respecting biometric privacy regulations.
Security from day one: trust baked into the stack
How we built enterprise-grade security controls into our infrastructure from our first commit — and what we would do differently.
Building real-time event streams at sub-50ms
A deep dive into our WebSocket architecture, back-pressure handling, and how we achieve consistent low latency.
Hardware-agnostic access control matters
Why we refuse to lock customers into proprietary controllers — and what it took to support every major protocol.