Physical Security
Sign in

Physical Security

Information Security Professiona
The average person doesn’t immediately think of physical controls as information security measures. But if I don’t want you to steal my credit cards, then they should be under lock and key when I’m not using them… and attached to my wrist with a lanyard when I am. Clearly, limiting physical access is just as important as implementing technical and administrative controls. After all, if someone could walk out the front door with one of your servers—blade servers are pretty small, for example, and could nearly fit into the armpit of an exceptionally large guy posing as a package delivery person—in time the culprit would be able to break through your electronic defenses. So, secure the castle. Build fences. Lock doors. Install cameras. Hire guards. Require employees to carry and use badges. And put additional controls, such as a PIN reader, fingerprint scanner or other biometric access device, on doors which protect especially sensitive areas.

Most of us living in the developed world already employ many of these strategies to protect our homes. Although he’s never invited me over, I can imagine the home of Bill Gates employing all of them…including badges (even for Melinda, perhaps). I say that in jest, but it’s not much of a stretch to envision the typical home of the future employing a family member badge technology which allows lights to dim as we leave, and the currently playing song to follow us from room to room, seeing as how the Gates mansion already has this feature.

(Just in case you’re curious, according to a U.S. News & World Report article, “Miles of communication cable, largely fiber optic, run throughout the house, linking computer servers powered by the Windows NT operating system. In each room, touch-sensitive pads control lighting, music, and climate. Visitors will wear small electronic pins, which will let the computers know who and where they are. Lights and other settings will adjust automatically. Floors throughout the house (and the driveway) are heated.”# Though strangely, no iPhones or iPods.)

I think most of us “get” physical security, since those of us who lock our homes and cars practice it every day. As such, there is no need to go into great detail. Still, a few basic (and a few not-so-basic) physical security controls worth discussing include:

  • Fences, Room Design, Fire Suppression & Cameras
  • Access Cards
  • Biometrics
  • Multi-factor Authentication

I'll discuss each in the coming posts.
start_blog_img