1 / 10

Physical Security

Physical Security. It’s not what it used to be. A CISSP candidate will be expected to understand the threats and controls that are related to physical security. Some Acronym Definitions C.I.A. = confidentiality, integrity and availability CCTV = closed circuit TV

azana
Download Presentation

Physical Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Physical Security It’s not what it used to be.

  2. A CISSP candidate will be expected to understand the threats and controls that are related to physical security. Some Acronym Definitions • C.I.A. = confidentiality, integrity and availability • CCTV = closed circuit TV • IDSs = intrusion detection systems • PCCIP = President’s Commission on Critical Infrastructure Protection • CPTED = Crime Prevention Through Environmental Control • EMP = Electromagnetic Pulse • HERF = high-energy radio frequency • EPO = Emergency Power Off • HVAC = Heating, ventilation and Air Conditioning • EMI = electromagnetic interference • RFI = radio frequency interference • TEMPEST = Transient Electro Magnetic Pulse Emanations Standard • NFPA = National Fire Protection Association • PIDAS = Perimeter Intrusion Detection and Assessment Systems • IC Chip = Integrated Circuit chip • PIN = Personal Identification Number

  3. Threats to Physical Security • Interruptions in providing computer services (Availability) • Physical damage (Availability) • Unauthorized disclosure of information (confidentiality) • Loss of control over system (integrity) • Physical theft (confidentiality, availability and integrity) Examples of threats to physical security • Emergencies • Fire and smoke contaminants • Building collapse or explosion • Utility loss • Water damage • Toxic material release • Natural disasters • Earth movement • Storm damage • Human intervention • Sabotage • Vandalism • War • Strikes

  4. Physical loss: • Temperature • Gases • Liquids • Organisms • Projectiles • Movement • Energy anomalies Electrical Power Definitions: • Fault – momentary power loss • Blackout – Complete loss of power • Sag – Momentary low voltage • Brownout – Prolonged low voltage • Spike – Momentary high voltage • Surge – Prolonged high voltage • Inrush – Initial surge of power at the beginning • Noise – Steady interfering disturbance • Transient – Short duration of line noise disturbances • Clean – Non-fluctuating pure power • Ground – One wire in an electrical circuit must be grounded

  5. Fire Classes and Combustibles • Water – suppresses the temperature required to sustain the fire • Soda Acid – suppresses the fuel supply of the fire • CO2 – suppresses the oxygen supply required to sustain the fire • Halon – a little different – it suppresses combustion through a chemical reaction that kills fire Fire Suppression Mediums • A – common combustibles – water or soda acids • B – liquid – CO2, soda acid or Halon • C – electrical – CO3, or Halon Combustible materials Fire Class Rating • A - Wood, cloth, paper, rubber, most plastics, ordinary combustibles • B – Flammable liquids and gases, oils, greases, tars, oil-base paints and lacquers • C – energized electrical equipment • D – Flammable chemicals such as magnesium and sodium Fire detectors • Heat-sensing • Flame-actuated • Smoke-actuated • Automatic dial-up alarm

  6. Fire extinguishing systems • Wet pipe • Dry pipe • Deluge • Preaction Suppression Mediums • Carbon Dioxide • Halon (alternatives to Halon are: Halon 1211, Halon1301)

  7. HVAC Heat Damage Temperatures • Computer Hardware – 1750 F • Magnetic Storage – 1000 F • Paper Products – 3500 F Facility Perimeter Control • Guards • Dogs • Fencing • Mantrap • Lighting • Bollards • Locks • CCTV Fencing Height Requirements • 3 – 4 feet high – deters casual trespassers • 6 – 7 feet high – Too hard to climb easily • 8 feet high with 3 strands of barbed wire – deters most intruders

  8. Access Control Devices • Photo image cards • Digitally encoded cards • Wireless proximity readers • Biometric Devices Intrusion detectors and alarms • Perimeter intrusion detectors – photoelectric sensors and dry contact switches • Motion detectors – wave pattern, capacitance and audio detectors Detector Types and Frequency • Sonic – 1500-2000 Hz • Ultrasonic – 19,000-20,000 Hz • Microwave – 400 MHz – 10 GHz Alarm Systems • Local Alarm Systems • Central Station Systems • Proprietary systems • Auxiliary station systems • Line supervision • Power supplies

  9. PC Physical Control • Cable locks • Port Controls • Switch Controls • Peripheral switch controls • Electronic security boards

  10. THE END

More Related