Presentation is loading. Please wait.

Presentation is loading. Please wait.

Physical Security “Least sexy of the 10 domains but the best firewall in the world will not stand up to a well placed brick.”

Published byStephen Mitchell Modified over 9 years ago

Similar presentations

Presentation on theme: "Physical Security “Least sexy of the 10 domains but the best firewall in the world will not stand up to a well placed brick.”"— Presentation transcript:

1 Physical Security “Least sexy of the 10 domains but the best firewall in the world will not stand up to a well placed brick.”

2 Physical Security  Addresses threats, vulnerabilities, countermeasures to physically protect org’s resources & sensitive info  Natural disasters  Unauthorized entry and/or theft

3 Threats  Risk analysis or business impact assessment identify threats  Seven major sources of physical loss 1.Temperature 2.Gases 3.Liquids 4.Organisms 5.Projectiles 6.Movement 7.Energy Anomalies

4 Controls for Physical Security  Administrative Controls Emergency Procedures, Personnel control, & planning and policy implementation  Physical & Technical Controls

5 Facility Requirements Planning  Planning done in early stages of construction of data facility  Choosing a Secure Site  Designing a Secure Site

6 Choosing a Secure Site  Visibility: neighbors, external markings  Local Considerations: near possible threats, local crime rate  Natural Disasters: weather related, earthquake fault  Transportation: excessive air, highway or road traffic  Joint Tenancy: HVAC controls, elecriticity  External Services: local emergency, hospitals

7 Designing a secure site  Walls: fire ratings rooms & storage  Ceilings: weight-bearing, fire rating  Floors: weight bearing, static, electrical cables  Windows: none or translucent & shatterproof  Doors: resist forcible entry, fire rating, personnel safety is first  Sprinkler systems: fire resistant rating of not less than 1 hour  Liquid or gas lines: positive (outward) flow  Air Conditioning: dedicated power circuits, positive air flow  Electrical Requirements: dedicated circuits, alternative

8 Facility Security Management  Audit Trails Detecting security violations Performance Problems Design & programming flaws Include: date & time, successful or not, Where access granted, Who tried, data modified? Detective rather than preventative  Emergency Procedures Include: emergency shutdown procedures, Evacuation, Employee training, periodic tests

9 Administrative Personnel Controls  Human resources department  Pre-employment screening  Ongoing employee checks  Post-employment procedures

10 Environmental & Life Safety Controls  “Physical controls necessary to sustain either computer’s operating environment (OE) or personnel’s OE”  Main Areas: Electrical Power Fire detection & suppression Heating, Ventilation, & Air Conditioning (HVAC)

11 Electrical Power  Noise Radio frequency interference, EMI Cell phones, laptops, other ele. Equip. EMI eavesdropping Power line conditioning, proper shielding, grounding, magnets, fluorescent lights, electric motors, space heaters  Brownouts & Sag (NYC 15% common) Surges & spikes when come back up  Humidity Low == static (20,000 volts possible)

12 Fire Detection & Suppression  Fire classes, combustibles, detectors, & suppression methods  Factors in priority order: 1.Life safety aspects 2.Fire threat of installation to occupants & property 3.Economic loss from computing function 4.Economic loss from loss of equipment

13 Fire Classes & Combustibles  Classes A.Common combustibles – water or soda acid B.Liquid – CO 2, soda acid, or halon C.Electrical – CO 2 or halon  Fire requires: oxygen, heat, & fuel  Water: temperature, soda acid: fuel supply, CO 2 oxygen, halon: chemical reaction

14 Fire Detectors  Heat sensing Predetermined temp or fast change  Flame-actuated Infrared or pulsation of flame  Smoke-actuated In ventilation systems  Automatic dialup fire alarm

15 Fire Extinguishing Systems  Water Sprinkler Wet Pipe, Dry Pipe, Deluge, or Preaction (combination of wet & dry pipe)  Gas Discharge Pressurized inert gas CO 2, halon, argon, argonite, inergen

16 After the fire  Contamination Smoke: little damage at first, residue Heat Water Suppression medium  Water damage Shutoff power Move equipment Drain Wipe parts & spray

17 Physical & Technical Controls  Facility Control Requirements  Facility Access Control Devices  Intrusion Detection & Alarms  Computer Inventory Control  Media Storage Requirements

18 Facility Control Requirements  Guards  Dogs  Fencing  Mantrap  Lighting  Locks  Closed Circuit TV

19 Facility Access Control Devices  Security Access Cards Dumb: photo id Smart: digital coded smart card Smarter: processor on card  Wireless Proximity Readers Passive, field powered, transponders  Biometric

20 Intrusion Detection & Alarms  Perimeter Intrusion Detectors Photoelectric & dry contact switches  Motion Detectors Wave pattern (reflection), capacitance (electrical field), audio detectors  Alarm Systems Local, central station, proprietary Line supervision

21 Computer Inventory Control  Physical PC Control Cable locks Port controls Switch Controls Peripheral Switch Controls Electronic Security Boards  Laptops

22 Media Storage Requirements  Ongoing Storage Access & Environment  Disposal Clearing – overwriting (7 times min), Purging – Degaussing or overwriting, Destruction Erasing only changes FAT, Damaged sectors not changed, overwrite may not change cause new file shorter,  Encryption of sensitive data

23 Simplest Way to check physical Security  “walk-about”

Download ppt "Physical Security “Least sexy of the 10 domains but the best firewall in the world will not stand up to a well placed brick.”"

Similar presentations

Physical Security.

Physical Security.
Facilities Management and Design Chapter 4 Safety and Security systems.

Facilities Management and Design Chapter 4 Safety and Security systems.
Emergency Preparedness and Response

Emergency Preparedness and Response
Chapter 7: Physical & Environmental Security

Chapter 7: Physical & Environmental Security
Computer Security Computer Security is defined as:

Computer Security Computer Security is defined as:
Copyright 2004 Foreman Architects Engineers School Security From Common Sense to High Tech.

Copyright 2004 Foreman Architects Engineers School Security From Common Sense to High Tech.
Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.

Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.
Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.

Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.
Copyright © Center for Systems Security and Information Assurance Lesson Seven Physical Security.

Copyright © Center for Systems Security and Information Assurance Lesson Seven Physical Security.
Principles of Information Security, 3rd Edition 2 Introduction  Physical security addresses the design, implementation, and maintenance of countermeasures.

Principles of Information Security, 3rd Edition 2 Introduction  Physical security addresses the design, implementation, and maintenance of countermeasures.
Stephen S. Yau CSE 465 & CSE591, Fall 2006 1 Physical Security for Information Systems.

Stephen S. Yau CSE 465 & CSE591, Fall Physical Security for Information Systems.
Information Security Principles and Practices

Information Security Principles and Practices
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 16: Physical and Infrastructure Security.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 16: Physical and Infrastructure Security.
Information Systems Security Physical Security Domain #4.

Information Systems Security Physical Security Domain #4.
Physical Security Chapter 9.

Physical Security Chapter 9.
CVFD Training – Fire Protection Systems

CVFD Training – Fire Protection Systems
What you will learn in this session 1.The characteristics of fire, smoke and toxic fumes 2.Fire hazards involved in the working environment 3.Significant.

What you will learn in this session 1.The characteristics of fire, smoke and toxic fumes 2.Fire hazards involved in the working environment 3.Significant.
Chapter 3.  Security Framework  Operational Security Lifecycle  Security Perimeter  Access Control  Social Engineering  Environmental Issues.

Chapter 3.  Security Framework  Operational Security Lifecycle  Security Perimeter  Access Control  Social Engineering  Environmental Issues.
Security Devices A modern security system, with its array of electronic components, is designed to sense, decide, and act. The security system senses events.

Security Devices A modern security system, with its array of electronic components, is designed to sense, decide, and act. The security system senses events.
Physical Security EECS710 Fall 2006 Professor Saiedian Presenter:

Physical Security EECS710 Fall 2006 Professor Saiedian Presenter:

Similar presentations

Ads by Google