What is Tailgating in Physical Security? Detection + Mitigation

Tailgating

Tailgating is the physical-security failure where an unauthorized person follows an authorized credential-holder through a door before it closes. It's the most common access-control compromise in office buildings because employees hold doors for visible humans without thinking. Mitigations include mantraps (sequential interlocked doors), optical anti-tailgating sensors at the door header, turnstiles at lobbies, and AI camera analytics that detect two heads passing one badge swipe. The right mitigation depends on traffic volume, building aesthetic, and the cost of an unauthorized entry.

The short definition

Tailgating is the simplest possible access-control attack: a human follows another human through an opening before the lock re-engages. The credential is genuine, the door physically opens, and the unauthorized person walks through. It's the residual risk that survives every credential-strengthening upgrade. You can deploy mobile credentials with biometric MFA and still have an employee polite-hold the door for someone they don't recognize. That's why tailgating mitigation lives at the door, not in the credential: it requires either a physical control that prevents two-person passage or a detection control that flags it after the fact.

The four mitigation classes

Mantraps. Interlocked door pairs that physically prevent two-person passage. Highest assurance, slowest throughput, most expensive. Variants include two-door vestibules, single-occupant booths with floor-weight sensors, and revolving security doors. See the mantrap entry. Standard at data center cages, federal facilities, and pharmaceutical clean rooms.
Optical anti-tailgating sensors. Header-mounted laser or infrared beams create a curtain across the opening and count each passage; when the count exceeds badge swipes, an alarm fires and bookmarks the recording. Common modes catch two-pass-one-swipe, reverse passage, and door-held-open beyond a 15-to-30-second threshold. Brands: Newton (Boon Edam), Smarter Security, Allegion DSI. Faster and cheaper than mantraps. Standard at corporate office IDFs and after-hours lobbies.
Turnstiles. Optical or speed gates that physically meter one person per credential. Common at multi-tenant office lobbies, stadium entrances, transit, and gym entries. Brands: Boon Edam, Smarter Security, Argusa, dormakaba.
AI camera analytics. A door camera (typically a 4MP fixed dome or bullet) detects two people passing one badge event, fires an alarm, and bookmarks the video for operator review. Cheapest mitigation: it rides on existing cameras with no door-hardware change. Vendors: Verkada (built into Command), Avigilon Unusual Motion plus access integration, Genetec KiwiVision, Briefcam, Dragonfruit AI. Detection-only, not prevention, but it gives the audit trail compliance frameworks expect. Standard at IDFs and server rooms.

Where to deploy each mitigation

Data center cages, federal SCIFs, pharmaceutical clean rooms. Mantraps. The cost of a single unauthorized entry justifies the throughput compromise.
Multi-tenant office lobbies, large corporate front doors. Turnstiles. High volume, throughput-critical, plus aesthetic compatibility.
IDFs, server rooms, after-hours back doors. Optical sensors plus AI camera analytics. Lower throughput but real audit-trail value.
General office doors, retail back-of-house. Camera analytics only. Detection without physical prevention, sufficient for most threat models.

When to ask Tec-Tel about tailgating

Right mitigation depends on the door, the throughput, and the cost of an unauthorized entry. We walk a building, prioritize the doors that need physical controls versus detection-only, and scope hardware.

Frequent buyer questions

What's the difference between tailgating and piggybacking?

Mostly synonymous, with a subtle distinction. Tailgating typically describes an unauthorized person following an unaware credential-holder, with the holder unaware the door was held open. Piggybacking describes the same action with the holder's knowledge or active complicity (holding the door for the unauthorized person, often out of politeness). The mitigation set is the same regardless.

What's a mantrap?

An interlocked door pair where the second door won't open until the first door has closed and the person inside has authenticated. Used at high-security zones (data centers, federal facilities, pharmaceutical clean rooms). Variants include single-occupant booths with floor-weight sensors, two-door vestibules, and revolving security doors. Mantraps physically prevent tailgating but are slow (one user at a time) and expensive to build.

How do optical anti-tailgating sensors work?

A pair of optical or laser sensors mounted at the door header detects each person passing through. When the controller registers one badge swipe but the sensors detect two people, an alarm fires and the event logs. Brands include Newton (Boon Edam), Smarter Security, and Allegion DSI. Lower cost than a mantrap, faster throughput, less aesthetic disruption. Standard at corporate office front doors and IDF entrances.

Can AI cameras detect tailgating?

Yes. Modern AI video analytics from Verkada, Axis, Avigilon, Genetec, and Briefcam detect two distinct people passing a doorway in close succession and correlate with the access control event. If the access log shows one badge swipe but the camera sees two people, the analytics generates an alarm. Camera-based detection is the cheapest mitigation because it rides on existing cameras with no door hardware change. Used at IDFs, server rooms, and after-hours lobbies.

Where should I prioritize tailgating controls?

Three zones earn dedicated tailgating controls. (1) IDFs and server rooms; SOC 2 / ISO 27001 / PCI DSS compliance frameworks audit access. (2) High-value asset zones; pharmacy, cash rooms, evidence rooms, lab biohazard zones. (3) Public-facing lobbies of multi-tenant or high-traffic buildings; the throughput problem is real, so optical sensors or turnstiles fit better than mantraps. Most office front doors don't need anti-tailgating; the IDF behind reception does.

Start with a free consultation.

Tell us what you're protecting and what's already in place. The Tec-Tel team reviews it and comes back with a written plan.

Tell us how many sites you run and what's already in place. We'll show you what a build or upgrade looks like.

Straight answers from the team that does the work. We're platform-agnostic, so you get the system that fits your sites, not one brand's catalog.

Since 2010 · 1,000+ deployments nationwide · ISN-accredited

Book a free consultation 855-577-0400