CISSP Exam Notes - Physical Security

4755 Words20 Pages
CISSP Exam Notes - Physical Security

1

CISSP Exam Notes - Physical Security

1. Introduction
1.1 Physical security addresses the physical protection of the resources of an organization, which include people, data, facilities, equipment, systems, etc. It concerns with people safety, how people can physically enter an environment and how the environmental issues affect equipment and systems. People safety always takes precedence over the other security factors.
1.2 Physical security is the first line of defense.
1.3 Major sources of physical security threats are:
Ÿ Weather, e.g. temperature, humidity, water, flood, wind, snow, lightening, etc.
Ÿ Fire and Chemical, e.g. explosion, smoke, toxic material, industrial pollution,
…show more content…
It is a deterrent and delaying device to intruders. There are several types of locks as follows:
Ÿ Preset lock – Typical door lock, which needs to be replaced if the key needs to be changed. Ÿ Programmable lock or Cipher lock – Lock with key pad which requires a combination of keys to open the lock, or lock with reader which requires an access card to open the lock. It may have special options such as:
Ÿ Hostage alarm (support a key combination to trigger an alarm).

CISSP Exam Notes - Physical Security

4

Ÿ

Ÿ

Master-keying (support key combinations to change the access code and configure the functions of the lock).
Ÿ Key-override (support key combinations to override the usual procedures).
Device lock (for locking a device rather than for perimeter security):
Ÿ Slot lock – secure a device to a stationary component (e.g. steel cable with lock).
Ÿ Cable trap – secure a peripheral by locking its cable to a stationary component.
Ÿ Power switch lock – lock the on/off power switch of a device (e.g. key-switch).

3.5 A fail-soft lock is unlocked in a power interruption.
A fail-safe (or fail-secure) lock is locked in a power interruption.
3.6 Access card and reader can also be used as an access control mechanism (details can be found in Chapter 5).
3.7 Fence is another physical access control mechanism. Fences of different heights can serve different purposes:
Ÿ 3 – 4 feet – deter casual trespassers.
Ÿ 6 – 7 feet – deter

More about CISSP Exam Notes - Physical Security

Get Access