Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Systems Security Physical Security Domain #4.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Systems Security Physical Security Domain #4."— Presentation transcript:

1 Information Systems Security Physical Security Domain #4

2 Physical Security Areas  Threat Types  Threat Sources  Vulnerabilities  Physical Organization  Current Measures  Physical Security Procedures  Environmental Controls  Physical Barriers

3 Threat Types  Environmental  Malicious  Accidental

4 Layered Defense  Site Location  Physical and Procedural Methods  Physical Controls –Guard Post –Visitor Security –Delivery Security –Fire Control

5 Fire Detection Systems  Ionization – Reacts to charged particles in smoke  Photoelectric – Reacts to changes in or blockage of light caused by smoke  Heat – Significant changes in ????

6 Physical Controls  Fencing  Lighting  Locks  Mantraps  Dogs  Guards

7 Location Consideration  Natural Disasters  Local Crime  Highway/airport access  Customer access  Joint tenants  Proximity to emergency services  Visibility????

8 Construction Issues  Building Codes  Levels of fire resistance  Data Center Location –No basements or top floors –Controlled access –Do not use partitions

9 Physical Controls  Locks –Conventional –Pick-resistant –Electronic key systems –Electronic combination lock

10 Facility Access  Photo ID viewed by a guard  Biometric devices  Card badge reader  Proximity devices –User activated –System sensing  AVOID PIGGYBACKING –Use mantraps

11 Fencing  3-4 Feet – deters casual trespassers  6-7 Feet – hard to climb easily  8 Feet with 3 strands of barbed wire BEST  Powered Fences  PIDAS Fences –Perimeter Intrusion Detection and Assessment System

12 Lighting  Required in critical areas  Ensure there are no dead zones  Two candle feet of power at eight feet high

13 Guards  Best deterrent, but most expensive  Provides discriminating judgment  Watches for piggybacking and suspicious activity  Enforce regulations

14 Types of Physical IDS  Electro-mechanical –Magnetic switches –Metallic foil in windows –Pressure mats  Volumetric –Vibration –Photoelectric –Ultrasonic and passive infrared

15 Mobile Devices  Locking cable to anchor  Tracing software  Encryption  Biometric controls

16 HVAC  Positive air pressure –Air goes out when doors are opened  Protect vent  Dedicated power lines  Emergency switch-off valves  Same rules for water supply

17 Electrical Power  Dependable primary power source  Alternative power source –Generator –UPS (online and standby)  Additional feeder from substation  Power not always clean and constant  Voltage fluctuations

18 Power Terms  Fault – momentary loss of power  Blackout – complete loss of power  Sag – momentary low voltage  Spike – momentary high voltage  Surge – prolonged high voltage  Noise – steady interfering disturbance  Transient – short noise disturbance

19 Electrical Consideration  High Humidity –Can cause corrosion  Low Humidity –Can cause static electricity  Also use antistatic flooring in server areas  Wear antistatic bands when working on internal computer systems

20 Recommendation  Computer room 60-75 Fahrenheit  Humidity 40% - 60%  17,000 volts damages circuits

21 Fire Prevention  Four legs of fire –Heat (Reduce Temperature) –Fuel (Remove fuel) –Oxygen (Remove oxygen) –Chemical Reaction (Disrupt chemical combustion)

22 Fire Detection Systems  Configured to call fire station  Shuts down HVAC  On and above suspended ceilings  Below raised floors  In air ducts

23 Fire Types CLASSTYPEELEMENTMETHOD Class A Common Wood, paper, cloth Water & Soda Class B Liquid Gas, oil, alcohol CO2, FM-200 Class C Electrical Circuits & Wires Halon or CO2 Class D Metals Sodium, Potassium Dry Chemicals

24 Extinguishers  Halogenated –Used in place of water  FM-200 –Replacement for Halon  Carbon Dioxide –Does not damage sensitive devices  Dry Chemicals –Not effective against electrical fires

25 Water Pipes  Wet Pipe –Always contains water –Can freeze in cold weather –Most commonly used  Dry Pipe –Water not in pipe –Released after delay –Allows system shut down before water release

26 Water Pipes (contd)  Pre-action systems –Water released after a sprinkler head is melted  Deluge system –Sprinkler head is open –Releases a lot of water fast

27 Extinguishers  Placed within 50 feet of electrical equipment  Inspected four times a year  Clearly marked  Easily reached  Filled with appropriate reagents

28 Combustion Elements Suppression Methods How Method Works Fuel Soda acid Removes fuel OxygenCO2 Removes oxygen TemperatureWater Reduces temperature Chemical Halon or FM200 Stops chemical reaction

29 Physical Intrusion Detection  Electrical Circuits  Light Beams  Passive IR  Ultrasonic

30 Management Issues  Physical Security Audits  Drills  Internal Testing  Pen Testing  Maintenance Issues  Education and Training

Download ppt "Information Systems Security Physical Security Domain #4."

Similar presentations

CISSP Luncheon Series: Physical (Environmental) Security

CISSP Luncheon Series: Physical (Environmental) Security
Physical Security.

Physical Security.
Facilities Management and Design Chapter 4 Safety and Security systems.

Facilities Management and Design Chapter 4 Safety and Security systems.
Physical and Environmental Security

Physical and Environmental Security
Chapter 7: Physical & Environmental Security

Chapter 7: Physical & Environmental Security
Preventing Equipment Failures

Preventing Equipment Failures
Fire Extinguishers 29 CFR 1910.157. Session Objectives You will be able to: Identify different classes of fire Choose the appropriate type of extinguisher.

Fire Extinguishers 29 CFR Session Objectives You will be able to: Identify different classes of fire Choose the appropriate type of extinguisher.
Objectives: Chapter 9: Data Centre Architecture VLAN definition and benefits * VLANs and broadcast domains * Routers role in VLANs * Types of VLANs * VLANs.

Objectives: Chapter 9: Data Centre Architecture VLAN definition and benefits * VLANs and broadcast domains * Routers role in VLANs * Types of VLANs * VLANs.
Always present at 21% in air Almost always present Electrical arcs, sparks, appliances, open flames When all three come together we have a fire.

Always present at 21% in air Almost always present Electrical arcs, sparks, appliances, open flames When all three come together we have a fire.
Fire Safety & Fire Extinguisher Use

Fire Safety & Fire Extinguisher Use
Fire Safety April 2012 Oak Lawn Park District. Pre-Lecture Quiz True or False 1.Oxygen is one of the four elements of fire. 2.Carbon dioxide is one of.

Fire Safety April 2012 Oak Lawn Park District. Pre-Lecture Quiz True or False 1.Oxygen is one of the four elements of fire. 2.Carbon dioxide is one of.
Fire Extinguishers: types and uses John Carmichael OH&S and IM.

Fire Extinguishers: types and uses John Carmichael OH&S and IM.
Fire Prevention.

Fire Prevention.
FIRE SAFETY TRAINING THE LOSS PREVENTION UNIT OF THE OFFICE OF RISK MANAGEMENT.

FIRE SAFETY TRAINING THE LOSS PREVENTION UNIT OF THE OFFICE OF RISK MANAGEMENT.
Atlantic Beach Fire Department Presents: For Business Employees and the General Public.

Atlantic Beach Fire Department Presents: For Business Employees and the General Public.
Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.

Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.
Fire. Fire & its Causes The fire triangle The fire triangle is a simple model that illustrates three ingredients necessary to start most fires. In industry.

Fire. Fire & its Causes The fire triangle The fire triangle is a simple model that illustrates three ingredients necessary to start most fires. In industry.
Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.

Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.
Slides copyright 2010 by Paladin Group, LLC used with permission by UMBC Training Centers, LLC.

Slides copyright 2010 by Paladin Group, LLC used with permission by UMBC Training Centers, LLC.
Copyright © Center for Systems Security and Information Assurance Lesson Seven Physical Security.

Copyright © Center for Systems Security and Information Assurance Lesson Seven Physical Security.

Similar presentations

Ads by Google