FIFA World Cup 2018




Development of solutions for the structure of Hardware Complex for the Access Management and Control System at the objects of the FIFA World Cup 2018.


Access Management and Control Systems at the FIFA World Cup 2018 objects is designed to identify supporters, personnel, volunteers and participants of the competition and should ensure operation in the conditions of mass events.

Given the geographical distribution of the objects for competition, the hardware complex must provide reliable operation of the application software with extremely low RTO/RPO parameters imposing increased requirements to both the hardware, and architecture structure of the complex.

HPE DL360 Gen9 servers and MSA 2042 data storage systems were selected as a unified computing platform, which assembly and procurement was also carried out in the Russian Federation by AQuarius.

To meet the challenge of reducing costs and optimising computing resources, it was decided to deploy application systems in a virtual Microsoft Hyper-V environment, which allowed for maximum use of HT DL360 Gen9 servers.

As the hardware for data transmission network, we selected HPE 5120 smart switches (access level) and HPE 5130 smart switches (kernel and distribution level), as well as HPE MSR2004 multiservice routers. Software of the hardware underwent additional checks to ensure absence of undeclared capabilities. Assembly and procurement was also carried out in the Russian Federation by AQuarius.

For the identifying mechanism of the system, it was suggested to use the RFID technology based on Zebra hardware using both stationary (FX9500) and various series of mobile readers. Such technology has already proved its efficiency in the previous projects.

Company experts also suggested to apply Tion single-board programmable computers based architecture of executive mechanisms, which made it possible to abandon the costly integrated solutions.

To meet the requirements of Russian and international legislation for the protection of personal data, an adapted approach combining the requirements of national regulators and advanced tools of information protection was used. Specialised devices were used as the internal perimeter firewalls and information encryption tools. External interface with public networks of involved the use of protection mechanisms based on multiservice routers (MSR), as well as domestic intrusion detection systems.

To ensure differentiation of access rights in the virtual environment, mechanisms of protection against unauthorized access were utilised.

Superimposition of means to ensure information security and conducting certification work allowed concluding on the full compliance of the system with the requirements of domestic and international standards for information security.

In the course of the work on system introduction, the experts of the company provided a full range of technical support and solved the most difficult tasks of complex integration associated with the system structure and computing infrastructure (both on physical and logical levels).

In addition, Maksoft carried out the supply of the entire hardware complex (from computing complex to actuators and switching cables, in total over 15,000 units of equipment) in the shortest possible time allowing the launch of the pilot zone of access management and control systems just by the time of the FIFA Confederations Cup in summer 2017.