The disclosure relates, inter alia, to a method for access control, performed by an access control apparatus (4). The method comprises obtaining access authorisation information (B, V) that is communicated to the access control apparatus (4) and that comprises at least one or more access authorisation parameters (B) and first check information (V); using at least the communicated access authorisation parameters (B), the communicated first check information (V) and a second key (S, ST) from a symmetric or asymmetric key pair, which second key is stored in the access control apparatus (4), to perform a first check on whether the communicated first check information (V) has been produced by performing cryptographic operations by means of access authorisation parameters (B) corresponding to the communicated access authorisation parameters (B) using at least one first key (S, ST) from the key pair, and deciding whether access can be granted, necessary conditions for granting access being that the first check delivers a positive result and it is established that at least one predefined set of the communicated access authorisation parameters (B) respectively provides access authorisation with regard to respective reference information that is available in the access control apparatus (4) at least at the time of the first check. The disclosure additionally relates to corresponding methods using an access authorisation generation apparatus (2) and an access authorisation verification apparatus (3), computer programs associated with the methods and a system (1) that comprises these apparatuses.