Physical Security-Computer And System Security-Lecture Slides, Slides of Cryptography and System Security

This lecture was delivered by Dr. Samarendra Jeethesh at Ankit Institute of Technology and Science for System Security and Cryptography course. It includes: Physical, Information, Physical, Security, Computing, Devices, Loss, Temperature, Extremes

Typology: Slides

2011/2012

Uploaded on 07/17/2012

pameela
pameela 🇮🇳

4.8

(5)

94 documents

1 / 42

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Physical Security
Chapter 9
If someone really wants to get at the information, it is not
difficult if they can gain physical access to the computer or
hard drive.
--Microsoft White Paper, July 1999
docsity.com
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a

Partial preview of the text

Download Physical Security-Computer And System Security-Lecture Slides and more Slides Cryptography and System Security in PDF only on Docsity!

Physical Security

Chapter 9

If someone really wants to get at the information, it is notdifficult if they can gain physical access to the computer orhard drive. --Microsoft White Paper, July 1999

Principles of Information Security - Chapter 9 Slide 2

Learning Objectives:

Upon completion of this chapter youshould be able to:

  • Understand the conceptual need for physical security.– Identify threats to information security that are unique to physical security. - Describe the key physical security considerations for selecting a facility site. - Identify physical security monitoring components.– Grasp the essential elements of access control within the scope of facilities management. - Understand the criticality of fire safety programs to all physical security programs.

Principles of Information Security - Chapter 9 Slide 4

Seven Major Sources ofPhysical Loss 

Temperature extremes  Gases  Liquids  Living organisms  Projectiles  Movement  Energy anomalies

Principles of Information Security - Chapter 9 Slide 5

Community Roles 

General management:

  • responsible for the security of the facility  IT management and professionals: - responsible for environmental and access security  Information security management andprofessionals: - perform risk assessments and implementation reviews

Principles of Information Security - Chapter 9 Slide 7

Facilities Management 

A secure facility is a physical location thathas been engineered with controlsdesigned to minimize the risk of attacksfrom physical threats  A secure facility can use the naturalterrain; traffic flow, urban development,and can complement these features withprotection mechanisms such as fences,gates, walls, guards, and alarms

Principles of Information Security - Chapter 9 Slide 8

Controls for Protecting theSecure Facility 

Walls, Fencing, andGates  Guards  Dogs, ID Cards, andBadges  Locks and Keys  Mantraps  Electronic Monitoring  Alarms and AlarmSystems  Computer Rooms  Walls and Doors

Principles of Information Security - Chapter 9 Slide 10

Locks and Keys 

There are two types of locks

  • mechanical and electro-mechanical  Locks can also be divided into four categories - manual, programmable, electronic, and biometric  Locks fail and facilities need alternativeprocedures for access  Locks fail in one of two ways: - when the lock of a door fails and the door becomes unlocked, that is a fail-safe lock - when the lock of a door fails and the door remains locked, this is a fail-secure lock
  • Principles of Information Security - Chapter
  • Slide
  • Figure 9-

Principles of Information Security - Chapter 9 Slide 13

Figure 9-2 Mantraps

Principles of Information Security - Chapter 9 Slide 14

Electronic Monitoring 

Records events where other types ofphysical controls are not practical  May use cameras with video recorders  Drawbacks:

  • reactive and do not prevent access or prohibited activity - recordings often not monitored in real time and must be reviewed to have any value

Principles of Information Security - Chapter 9 Slide 16

Computer Rooms and WiringClosets 

Computer rooms and wiring andcommunications closets require specialattention  Logical controls are easily defeated, if anattacker gains physical access to thecomputing equipment  Custodial staff are often the leastscrutinized of those who have access tooffices and are given the greatest degreeof unsupervised access

Principles of Information Security - Chapter 9 Slide 17

Interior Walls and Doors 

The walls in a facility are typically either:

  • standard interior– firewall  All high-security areas must have firewall gradewalls to provide physical security from potentialintruders and improves the facility's resistanceto fires  Doors that allow access into secured roomsshould also be evaluated  Computer rooms and wiring closets can havepush or crash bars installed to meet buildingcodes and provide much higher levels ofsecurity than the standard door pull handle

Principles of Information Security - Chapter 9 Slide 19

Fire Detection and Response 

Fire suppression systems are devices installedand maintained to detect and respond to a fire  They work to deny an environment of one of thethree requirements for a fire to burn: heat, fuel,and oxygen

  • Water and water mist systems reduce the temperature and saturate some fuels to preventignition - Carbon dioxide systems rob fire of its oxygen– Soda acid systems deny fire its fuel, preventing spreading - Gas-based systems disrupt the fire’s chemical reaction but leave enough oxygen for people tosurvive for a short time

Principles of Information Security - Chapter 9 Slide 20

Fire Detection 

Before a fire can be suppressed, it must bedetected  Fire detection systems fall into two generalcategories:

  • manual and automatic  Part of a complete fire safety program includesindividuals that monitor the chaos of a fireevacuation to prevent an attacker accessingoffices  There are three basic types of fire detectionsystems: thermal detection, smoke detection,and flame detection - Smoke detectors operate in one of three ways: photoelectric, ionization, and air-aspirating