Reinventing Access Control with KeeLess and KeeChain

Executive summary

Access control systems have remained largely unchanged for decades: physical cards, proprietary hardware locked to a single vendor, and fragmented management platforms that don't talk to each other. Organisations face growing pressure on security, scalability, user convenience, and operational cost, while the underlying technology in most deployments hasn't moved on.

To address this, KSE Labs developed KeeLess, a fully integrated access control platform built around custom-designed hardware, mobile credentials, and intelligent access management. Complementing the platform is KeeChain, a digital wallet and identity ecosystem that extends access control beyond doors and gates into a broader framework of digital credentials, memberships, and permissions.

Unlike most solutions on the market, which assemble off-the-shelf controller boards with third-party protocols, KeeLess was engineered from the ground up with proprietary hardware and communication technology built specifically for modern access management.

The challenge

Traditional access control deployments tend to run into the same set of problems regardless of vendor:

• Dependence on physical access cards and key fobs.
• High ongoing costs from card issuance and replacement.
• Complex user onboarding and credential management.
• Limited integration between access control and other digital services.
• Vendor lock-in through closed, proprietary ecosystems.
• Ageing controller hardware with little room for new features.
• Difficulty scaling consistently across multiple sites.

Organisations increasingly need something different: secure, mobile-first, scalable, and adaptable enough to keep up with new technology rather than being locked to whatever a single hardware vendor supports.

The KeeLess solution

KeeLess is a complete access control ecosystem developed entirely in-house. The platform combines custom-designed controller hardware, intelligent mobile credentials, a proprietary communication protocol, cloud and on-premises management, real-time monitoring and auditing, multi-site administration, and integration with modern digital identity systems.

At the centre of the ecosystem is the KeeLess Controller, custom-built hardware engineered specifically to support next-generation access control requirements.

Custom hardware, designed in-house

A key differentiator of KeeLess is that the controller hardware was designed entirely by our own engineering team rather than built on top of a third-party access control board. The KeeLess Controller was developed to provide:

• High-performance processing for real-time credential checks.
• Flexible integration options for different lock and gate hardware.
• Secure credential validation at the hardware level.
• Remote management without a site visit for most changes.
• Future-proof expandability as requirements grow.
• Enhanced reliability in demanding, always-on environments.

The controller acts as the intelligence hub of the ecosystem, managing communication between readers, mobile devices, locks, and backend services. Because we control both the hardware and the software, we can ship new features without waiting on a third-party manufacturer's roadmap or being limited by what their board supports.

KeeLink: a proprietary communication protocol

KeeLess stays compatible with industry-standard technologies where it needs to, but its primary communication engine is the proprietary KeeLink Protocol, built specifically to get around limitations common in legacy access control systems. It's optimised for mobile credentials, gives faster authentication and response times, includes stronger security mechanisms, reduces communication overhead, supports more intelligent device interactions, and holds up better in real-world conditions than the protocols it replaces.

The protocol is the foundation of communication between KeeLess Readers, KeeLess Controllers, the mobile applications, the management platform, and KeeChain services. That's what lets the whole ecosystem behave like one unified platform instead of a collection of components that happen to be sold together.

Mobile-first access

KeeLess turns a smartphone into a secure digital credential. Users can unlock doors and gates, access designated facilities, receive and manage permissions remotely, authenticate without a physical card, and use a single credential across multiple locations. That mobile-first approach improves convenience for users and security for administrators at the same time, while cutting the operational overhead of managing physical cards.

Introducing KeeChain

KeeChain extends KeeLess beyond door access into a broader digital credential and wallet ecosystem. Instead of just granting access to a door, organisations can issue and manage a range of digital permissions through one platform, including digital identities, membership credentials, visitor access passes, employee credentials, tenant credentials, event access permissions, service entitlements, and facility-specific authorisations.

KeeChain creates a unified digital identity layer that works directly with the KeeLess access ecosystem rather than as a bolted-on add-on.

Deployment architecture

Hardware layer

• KeeLess Readers
• KeeLess Controllers
• Electronic locks and gate operators
• Network infrastructure

Software layer

• KeeLess Administration Platform
• Mobile applications
• Monitoring and reporting tools
• KeeChain wallet platform
• API integration services

Access workflow

1. A user is onboarded into the platform.
2. Permissions are assigned digitally.
3. Credentials are securely delivered to the user's device.
4. The user approaches an access point.
5. The KeeLink Protocol validates the authorisation.
6. The KeeLess Controller processes the request.
7. Access is granted.
8. The event is recorded for auditing and reporting.

Results and benefits

Reduced costs

No physical card issuance, no card replacement costs when someone loses one, and lower day-to-day administrative overhead for the team managing access.

Improved security

Instant credential revocation instead of waiting for a card to be physically returned, stronger authentication than a swipe card alone, full audit trails, and real-time monitoring of every access event.

Enhanced user experience

Smartphone-based access, faster onboarding than issuing and activating a physical card, simplified credential management for admins, and a smoother day-to-day experience for the people actually using it.

Greater scalability

Multi-site deployment support, centralised management across locations, and an architecture that lets us ship new features quickly because we own the hardware and software stack rather than waiting on a third party.

Why KeeLess is different

Most access control providers assemble a solution from third-party controllers, standard protocols, and externally developed software. KeeLess takes a different approach: KSE Labs owns and develops the controller hardware, the reader hardware, the communication protocol, the management software, the mobile applications, and the digital wallet ecosystem.

That vertical integration is what makes faster innovation, tighter security, and better reliability possible. When a feature needs a firmware change, a protocol tweak, and an app update, we can make all three changes ourselves instead of waiting on three different vendors to agree on a roadmap.

Conclusion

KeeLess and KeeChain represent a different way of building access control: custom-engineered hardware, a proprietary protocol built specifically for mobile credentials, and a digital identity layer in KeeChain that extends what "access control" even means. By controlling the entire stack, from controller hardware to digital credentials, we're able to build for what organisations need now and keep adapting as those needs change.