physical (environmental) security. 2 domain objectives define key concepts of physical security...
TRANSCRIPT
![Page 1: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/1.jpg)
Physical
(Environmental)
Security
![Page 2: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/2.jpg)
2
Domain Objectives
•Define key concepts of physical security
• Goals and Purpose of Layered Defenses
• Principles in Site Location
• Building Entry Points
• Physical Security Principles for Information System’s Security within a Building
![Page 3: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/3.jpg)
3
Information Security TRIAD
Availability
ConfidentialityIntegrity
Information Security
![Page 4: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/4.jpg)
4
Domain Agenda
• Introduction
• Layered Defense Model
• Crime Prevention Through Environmental Design
• Facility and Infrastructure Criteria
![Page 5: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/5.jpg)
5
Primary Physical Security Goal
WARNING
The protection of life is our PRIMARY goal
![Page 6: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/6.jpg)
6
Goals of Physical Security
• Deter
• Delay
• Detect
• Assess
• Respond
![Page 7: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/7.jpg)
7
Threats to Physical Security
• Natural/Environmental
• Utility Systems
• Human-Made/Political Events
![Page 8: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/8.jpg)
8
Malicious Threat Sources and Countermeasures
• Theft
• Espionage
• Dumpster Diving
• Social Engineering and Shoulder Surfing
• HVAC Access
![Page 9: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/9.jpg)
9
Domain Agenda
• Introduction
• Layered Defense Model
• Crime Prevention Through Environmental Design
• Facility and Infrastructure Criteria
![Page 10: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/10.jpg)
10
Layered Defense Model
• Security through ‘layers’ of controls
• Multi-layered
• Starts with the perimeter, then building grounds, then building entry points, etc.
![Page 11: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/11.jpg)
11
Layered Defense Model
Perimeter
Building
Entrance
Building Floors/
Office Suites
Offices/Data
Centers/Equipment,Supplies,
Media
Building Grounds
![Page 12: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/12.jpg)
12
Perimeter and Building Boundary Protection
• Perimeter security controls are the first line of defense
• Protective barriers can be either natural or structural
![Page 13: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/13.jpg)
13
Landscaping
• Ponds, Hedges
• Small Spiny Shrubs
![Page 14: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/14.jpg)
14
Fences
• Federal, state, or local codes may apply
• No parking should be allowed near fences
![Page 15: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/15.jpg)
15
Controlled Access Points
• Gates - minimum necessary
• Bollards
![Page 16: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/16.jpg)
16
Perimeter Intrusion Detection Systems
• Detects unauthorized access into an area
![Page 17: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/17.jpg)
17
Closed Circuit Television (CCTV)
• CCTV Capability Requirements
• Mixing Capabilities
• Virtual systems
![Page 18: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/18.jpg)
18
CCTV Main Components
• CCTV - 3 Main Components
• Camera Lens
• Transmission Media
• Display Monitor
• Components must function together
![Page 19: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/19.jpg)
19
Additional CCTV System Equipment
• Pan and Tilt Units
• Panning Device
• Mountings
• Switchers / Multiplexers
• Remote Camera Controls
• Infrared Illuminators
• Time/Date Generators
• Videotape or Digital Recorders
• Motion Detectors
• Computer Controls
![Page 20: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/20.jpg)
20
CCTV Concerns
• Total Surveillance
• Size Depth, Height, and Width
• Lighting
• Contrast
![Page 21: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/21.jpg)
21
Lighting
• Should be used with other controls
• Supports crime prevention
![Page 22: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/22.jpg)
22
Types of Lighting
• Continuous Lighting
• Trip Lighting
• Standby Lighting
• Emergency Lighting
![Page 23: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/23.jpg)
23
Building Entry Point Protection
• Locks
• Lock Components
![Page 24: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/24.jpg)
24
Types of Locks
• Combination Locks
• Deadbolt Locks
• Keyless Locks
• Smart Locks
![Page 25: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/25.jpg)
25
Lock Picking
• Lock Picking
• Locks are “pick-resistant,” not “pickproof”
![Page 26: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/26.jpg)
26
Lock Security Measures
• Lock and Key Control System
• Key Control Procedures
• Combinations must be changed
• Fail-soft vs. Fail-secure
![Page 27: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/27.jpg)
27
Guards and Guard Stations
• Guards
• Can provide a deterrent
• Guard Stations
![Page 28: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/28.jpg)
28
Other Electronic Physical Controls
• Card Access
• Biometric Access Methods
![Page 29: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/29.jpg)
29
Compartmentalized Areas
• Extremely Sensitive Location
• Most Stringent Security Controls
• Multi-layered Physical Access Controls
![Page 30: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/30.jpg)
30
Data Center or Server Room Security
• Walls
• Multi-factor Access Controls
![Page 31: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/31.jpg)
31
Computer Equipment Protections
• Computer equipment security
• Portable device security
• Objects placed inside security containers
![Page 32: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/32.jpg)
32
Domain Agenda
• Introduction
• Layered Defense Model
• Crime Prevention Through Environmental Design
• Facility and Infrastructure Criteria
![Page 33: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/33.jpg)
33
Crime Prevention Through Environmental Design
• Managing the physical environment to reduce crime
• Relationships between People and Environments
• Three Key Strategies of CPTED
![Page 34: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/34.jpg)
34
Domain Agenda
• Introduction
• Layered Defense Model
• Crime Prevention Through Environmental Design
• Facility and Infrastructure Criteria
![Page 35: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/35.jpg)
35
Site Location Considerations
• Site Security Considerations
• CPTED part of this Process
![Page 36: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/36.jpg)
36
Facility Construction Considerations
• Doors
• Windows
• Entry Points
![Page 37: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/37.jpg)
37
Infrastructure Support Systems
• Infrastructure Support Systems
• Key Threats to Support Systems
![Page 38: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/38.jpg)
38
Fire Concerns
• Best Practices
• Abiding by the Fire Codes
• Fire Containment System (floors, vents, HVAC)
• Fire Extinguishing System (permanent & mobile)
• Fire Prevention Training and Drills
![Page 39: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/39.jpg)
39
Fire Protection
• Fire Prevention
• Fire Detection
• Fire Suppression
![Page 40: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/40.jpg)
40
Fire Types and Suppression
Class Type Suppression Agents
Common combustibles
Water, foam, dry chemicals
LiquidGas, CO2, foam, dry chemicals
ElectricalGas, CO2, dry chemicals
Combustible metals
Dry powders
KCooking Media (fats)
Wet chemicals
![Page 41: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/41.jpg)
41
Halon Gas
• Restricted by1987 Montreal Protocol
• Many jurisdictions require removal of Halon
• Replacement alternatives for Halon
![Page 42: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/42.jpg)
42
Other Infrastructure Threats
• Gas Leakage
• Water Threats
• Loss of Electrical Power
• Loss of HVAC
![Page 43: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/43.jpg)
43
Types of Electrical Power Faults
• Complete Loss of Power
• Power Degradation
• Interference (noise)
![Page 44: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/44.jpg)
44
Domain Summary
• Define key concepts of physical security
• Goals and purpose of layered defenses
• Principles in site location
• Building entry points
• Physical security principles for information system’s security within a building
![Page 45: Physical (Environmental) Security. 2 Domain Objectives Define key concepts of physical security Goals and Purpose of Layered Defenses Principles in Site](https://reader036.vdocuments.mx/reader036/viewer/2022070411/56649f3c5503460f94c5ba74/html5/thumbnails/45.jpg)
“SecurityTranscendsTechnology”