What is the primary goal of physical security?
Click to see answer
The primary goal of physical security is the safety of people. People are considered the most valuable asset of any organization, and physical security controls must prioritize their safety above all else.
Click to see question
What is the primary goal of physical security?
The primary goal of physical security is the safety of people. People are considered the most valuable asset of any organization, and physical security controls must prioritize their safety above all else.
How does physical security contribute to confidentiality, integrity, and availability?
| CIA Goal | Physical Controls (examples) |
|---|---|
| Confidentiality | Access control (card readers, locks), mantraps, CCTV for monitoring and deterrence |
| Integrity | Environmental controls (HVAC), tamper detection, clean power (UPS), physical seals and monitored enclosures |
| Availability | Redundant power (UPS, generators), HVAC for cooling, fire detection & suppression, network redundancy |
What does the expression 'if you can touch the box, you own the box' imply in the context of physical security?
The expression implies that if an attacker can gain physical access to a device, such as a firewall or server, they can easily gain control of it due to built-in bypass controls, like factory reset buttons.
What are the five categories of controls used in physical security?
| Category | Description | Example Controls |
|---|---|---|
| Deter | Discourages trespassing and theft | Signage, lighting, territorial reinforcement |
| Delay | Slows down unauthorized access | Locks, fences, mantraps |
| Detect | Identifies security incidents | CCTV, motion sensors, glass-break detectors |
| Assess | Determines attack method and target | Security monitoring, video review, incident analysis |
| Respond | Remediates or contains incidents | Security personnel, alarms, automated locking |
Why is it important to implement multiple layers of controls in physical security?
Implementing multiple layers of controls is crucial because if only one control is in place and it fails, significant risks can occur. Multiple layers ensure a combination of preventive, detective, and corrective measures, enhancing overall security through the concept of defense in depth.
What is the role of landscaping in physical security?
Landscaping plays a role in physical security by ensuring that foliage around a building is maintained to provide clear sight lines for cameras. This prevents potential attackers from using trees and plants to gain access to the building.
How should grading be managed around a building for security purposes?
Grading should be managed to ensure that the land slopes down and away from the building. This design helps protect the building from flooding, keeping it dry and secure, effectively creating a natural barrier against water intrusion.
What are the primary functions of CCTV in physical security?
CCTV systems serve as a deterrent, detective control, and can be used for monitoring and auditing. They are primarily classified as detective controls.
How do Passive Infrared Devices function as motion sensors?
Passive Infrared Devices detect infrared light emitted by objects in their field of view. When a warm-bodied mammal enters the area, the increase in infrared light triggers the sensor, detecting movement.
What role does lighting play in physical security?
Lighting is crucial in physical security as it helps deter crime and ensures the safety of individuals by providing visibility in and around buildings.
What are the two major types of card reader systems?
| Type | Operation | Typical Use Cases |
|---|---|---|
| Contact | Card is swiped or inserted; reads magnetic stripe or contact chip | Older access systems, legacy POS |
| Contactless | Card or fob is presented near an RFID/NFC reader; reads via radio frequency | Modern access control, mobile credentials, high-throughput doors |
What is the primary function of ionization smoke detectors?
Ionization smoke detectors respond more quickly to flaming or fast fires, making them effective for early detection of such fire types.
What is a mantrap and how does it prevent unauthorized access?
A mantrap consists of two doors with a small space in between. It requires the first door to be closed before the second door can be unlocked, preventing tailgating or piggybacking by unauthorized individuals.
Why are locks considered a DELAY control in physical security?
Locks are considered a DELAY control because they slow down an attacker, but it is only a matter of time before they can be picked, forced, or broken, allowing entry.
What are the two broad categories of locks used in physical security?
| Category | Examples | Strengths / Notes |
|---|---|---|
| Mechanical Locks | Keyed locks, mechanical combination locks, magnetic locks | Simple, reliable, no power required; vulnerable to picking/force |
| Electronic Locks | Proximity/RFID locks, electronic combination, biometric locks | Flexible access control, audit trails, can be integrated with systems; requires power and management |
What is a critical factor that determines the security of combination locks?
The complexity of the combination is one of the most important factors that determines the security of combination locks.
What are the two types of sensors used to detect broken glass in windows?
| Sensor Type | How it Detects | Typical Installation |
|---|---|---|
| Shock Sensors | Detect the shockwave or physical impact transmitted through the glass | Attached directly to the glass pane |
| Glass Break Sensors | Detect the sound or vibration pattern of breaking glass (acoustic/seismic) | Mounted near windows or as part of alarm systems |
Why are windows considered a weak link in the perimeter of a building?
Windows allow natural light but are often vulnerable points in a building's security, making them potential entry points for intruders.
What is skimming in the context of physical security?
Skimming is a method where criminals use electronic devices to steal card information from valid transactions, such as recording debit or credit card details at ATMs or Point of Sale machines.
What are the three major infrastructure services critical to the operation of a facility?
| Service | Role / Examples |
|---|---|
| Network | Connectivity for systems, monitoring, access control, and communications |
| Power | Provides clean AC power to equipment; supports UPS and generators for redundancy |
| HVAC | Heating, Ventilation, and Air Conditioning; provides cooling, humidity control, and air quality |
What is meant by 'clean power' in the context of power supply?
'Clean power' refers to Alternating Current (AC) power that oscillates at a perfect 60 Hz with no noise or distortion in the line, resembling a perfect sine wave.
What are the roles of UPS and Generators in providing power?
| Backup Type | Duration | Strengths / Limitations |
|---|---|---|
| UPS (Uninterruptible Power Supply) | Instantaneous, short-term | Provides immediate clean power during switchover; limited runtime depending on battery capacity |
| Generators | Long-term (hours to days, depending on fuel) | Provide sustained power for extended outages; require fuel and regular maintenance |
What is the difference between a blackout and a fault in terms of power outages?
A blackout is a long-term loss of power, while a fault is a momentary loss of power.
What does power degradation refer to?
| Issue | Definition / Effect |
|---|---|
| Brownouts | Intentional or sustained voltage reduction that can cause equipment malfunction |
| Sags & Dips | Short periods of low voltage that can disrupt sensitive electronics |
| Surges | Momentary spikes of excessive voltage that can damage equipment |
What does HVAC stand for and what are its primary functions?
| Stands For | Primary Functions |
|---|---|
| HVAC (Heating, Ventilation, and Air Conditioning) | - Temperature control: cools equipment to safe operating temperatures |
What are the ideal temperature and humidity ranges for HVAC systems according to ASHRAE?
According to ASHRAE, the ideal ranges for HVAC systems are:
What is positive pressurization in the context of HVAC systems?
Positive pressurization is a method where clean, filtered air is blown into a data center at slightly above ambient pressure. This helps to:
What are the three major types of fire detection systems?
| Detector Type | What it Detects | Use Case |
|---|---|---|
| Flame Detectors | Infrared and/or ultraviolet light from flames | Fast detection of open flames in high-risk areas |
| Smoke Detectors | Smoke particles (ionization for flaming fires; photo-electric for smoldering fires) | General-purpose detection for different fire types |
| Heat Detectors | Rapid rise in temperature or a fixed high temperature | Useful where smoke detectors may produce false alarms (dusty/dirty environments) |
What is the advantage of dual smoke detectors?
Dual smoke detectors combine both ionization and photo-electric technologies, allowing them to respond effectively to both flaming and smoldering fires.
How do heat detectors function in fire detection?
Heat detectors, also known as thermal detectors or rate of rise detectors, function by monitoring temperature changes. They detect a rapid rise in temperature, which indicates a potential fire.
What is the best way to prevent a fire according to the text?
The best way to prevent a fire is to limit or eliminate any combustible materials.
What are the two major types of fire suppression systems?
The two major types of fire suppression systems are water-based systems and gas-based systems.
What are the four types of water-based fire suppression systems?
| System Type | Description |
|---|---|
| Wet-pipe systems | Always have pressurized water in the pipes; water is discharged immediately when a sprinkler activates. |
| Dry-pipe systems | Pipes are filled with pressurized air or gas; water is held back by a valve and flows only when the system activates, preventing freezing or water damage in unheated areas. |
| Pre-action systems | Require a separate detection event to charge the pipes with water, combining elements of wet and dry systems to reduce accidental discharge. |
| Deluge systems | Have open nozzles and a deluge valve; when triggered by detection, the system releases large volumes of water immediately to inundate the protected area. |
Why are gas-based fire suppression systems justified in data centers?
Gas-based fire suppression systems are justified in data centers because they effectively suppress fires without the risk of water damaging expensive electrical equipment.
What is the primary function of gas-based fire suppression systems?
Gas-based fire suppression systems primarily function by either displacing oxygen in a room to extinguish the fire or interrupting the chemical exothermic process of fire.
What are the four major types of gases used in gas-based fire suppression systems?
The four major types of gases used in gas-based fire suppression systems are:
Why is Halon not included in the list of gas-based fire suppression agents?
Halon is not included in the list of gas-based fire suppression agents because it has been banned globally due to its environmental impact.
What are the five different classes of fire extinguishers?
| Class | Typical Use/Agents |
|---|---|
| Class A | Common combustibles (uses Water, foam, dry chemicals) |
| Class B | Liquid fires (uses CO2, foam, dry chemicals) |
| Class C | Electrical fires (uses CO2, dry chemicals) |
| Class D | Metal fires (specific agents for metal fires) |
| Class K | Kitchen fires (uses wet chemical agents) |
Why is CO2 considered an excellent fire suppression agent for data centers?
CO2 is considered excellent for data centers because:
What type of fire does Class C fire extinguishers target?
Class C fire extinguishers are designed to target electrical fires, which can occur in environments like data centers.
