Domain 4: Physical (Environment) Security Flashcards

Question

MModern CCTV (Closed Circuit Television) systems use what kind of cameras?

Answer 1

Digital Charged Couple Discharge cameras

Answer 2

Charged Couple Discharge cameras which are digital

Answer 3

Act as human irises; controlling the amount of light that enters the lens by changing the size of the aperture.

Answer 4

The aperture is larger at low light conditions

Answer 5

Depth of Field: the area in focus

Answer 6

Field of View: the entire area viewed by the camera

Answer 7

Smaller aperture Larger Depth of Field (more of the image in focus)

Answer 8

Wide aperture used is low light conditions lowers depth of field (smaller area of focus)

Answer 9

Pan: move horizontally

Answer 10

Tilt: move vertically

Answer 11

Fixed: one camera Autoscan: show one for a few seconds and then show a different camer Multiplexing: multiple camera feeds on one display

Answer 12

Magnetic Tape (VHS) for tube cameras DVR (Digital Video Recorder) for digital cameras NVR (Network Video Recorder)

Answer 13

DVR (Digital Video Recorder) for digital cameras

Answer 14

NVR (Network Video Recorder)

Answer 15

NVR has the advantage for centralized storage of all video.

Answer 16

CRT Tube Cameras are older model cameras and CRT displays project images on a screen.

Answer 17

Preventative

Answer 18

Mechanical Electronic Combination

Answer 19

Keys can be shared or copied which lowers the accountability of key locks

Answer 20

Inserting the correct key makes the pins align with the Shear Line allowing the lock tumbler (Plug) to turn.

Answer 21

Uses a set of obstructions, or wards, to prevent the lock from opening unless the correct key is inserted. The correct key has notches or slots corresponding to the obstructions in the lock, allowing it to rotate freely inside the lock.

Answer 22

a well-designed skeleton key can successfully open a wide variety of warded locks.

Answer 23

A locking mechanism that automatically “springs” in and out of the strike plate of the door jamb. A locking mechanism that mechanically rotates in and out of the strike plate of the door jamb.

Answer 24

The art of opening a lock without a key

Answer 25

Lock Picks can be used to lift the pins in a pin tumbler lock

Answer 26

Lock Bumping: Use a shaved down key that will fit into the lock. Attacker fits the key into the lock and whacks it a few times to cause the pins to jump and the attacker quickly turns the key and opens the lock.

Answer 27

All locks can be picked or bumped. The question is how long will it take.

Answer 28

The master key opens all locks in a given zone.

Answer 29

The core key is used to remove the lock core in interchangeable locks.

Answer 30

1: Keep the key in a secure place 2: Only allow a few critical employees access 3: Accountability

Answer 31

1: Limited accountability due to shared combinations. 2: Prolonged use of Buttons or keypads can cause wear on the most used buttons. 3: Prone to brute force attack 4: Prone to shoulder surfing

Answer 32

1: Keys for electronics locks 2: credit card purchases (many international cards) 3: Dual-factor authentication systems.

Answer 33

“Smart” means that card contains a computer circuit

Answer 34

Also called Integrated Circuit cards (ICC)

Answer 35

Integrated Circuit cards (ICC)

Answer 36

1: Contact (where the card must be inserted) 2: Contactless (wirelessly)

Answer 37

Radio Frequency Identification (RFID)

Answer 38

1: Cards contain RFID Tags (Transponders) 2: Read by RDIF transceivers

Answer 39

Used in combination electronic locks to provide physical access control

Answer 40

better then mechanical locks because of audit capability

Answer 41

The stripe in a magnetic stripe card is passive; read only.

Answer 42

A multipurpose Smart Card deployed by the US Department of Defense.

Answer 43

Common Access Card

Answer 44

1: physical access control 2: dual-factor authentication 3: Digitally signing documents

Answer 45

Stores cryptographic certificates as part of the DOD’s Public Key Infrastructure (PKI)

Answer 46

An unauthorized person follows an authorized person into the building after the authorized person unlocks the door.

Answer 47

Added social engineering element (carrying large boxes) may aid the attacker

Answer 48

A preventive physical control

Answer 49

A preventive physical control with two doors. The first door must close and lock before the second door can open Each door requires a separate form of authentication

Answer 50

Designed to prevent tailgating

Answer 51

Both must be designed to allow safe egress during emergencies

Answer 52

Used to detect incoming metals, weapons, explosives and illegal drugs. Used to detect outgoing sensitive data Example: Port Blocking

Answer 53

like Doppler radar A wave of energy is sent out and the echo is returned. If an echo returns more quickly then it normally does, that indicates something has stepped in front of the sensor.

Answer 54

Sends a beam of light across a monitored space to a sensor. If the beam is broken, the sensor alerts.

Answer 55

They are all active sensors; they actively send energy.

Answer 56

Passive Inared (PIR): detects energy created by the human body.

Answer 57

Passive Inared (PIR): detects energy created by the human body.

Answer 58

Motion Detectors provide physical Intrusion Detection. Network Intrusion Detection detect attacks on the network.

Answer 59

They include matched pairs of sensors on the device that an electric circuit flows through. If the circuit is broken, the alarm sounds.

Answer 60

1: Door hinges should face inward 2: Egress must be unimpeded during emergencies 3: No gaps in the door 4: Doors with motion sensors should not have mail slots 5: Externally-facing emergency doors should be marked for Emergency Use Only and equipped with panic bars that alarm if anybody opens them.

Answer 61

1: Internal motion sensors should be bolted securely to a fixed sturdy ceiling or wall to prevent an attacker to cause it to move 2: Should be slab-to-slab. 3: Should be strong enough to resist cutting (Sheetrock – gypsum can be easily cut) 4; Fire Rating: The amount of time required to fail due to a fire not less than one hour

Answer 62

compensating control.

Answer 63

1: Bullet proof 2: Explosive-resistant 3: Wire mesh 4: Polycarbonate (Lexan) 5: Acrylic (Plexiglass)

Answer 64

1: Bullet proof 2: Explosive-resistant 3: Wire mesh 4: Polycarbonate (Lexan) 5: Acrylic (Plexiglass)

Answer 65

The amount of time required to fail due to a fire

Answer 66

Standard for the Protection of Information Technology Equipment

Answer 67

The National Fire Protection Agency (NFPA) 75

Answer 68

1: Preventive 2: Detective 3: Corrective 4: Recovery 5: Deterrent 6: Compensating

Answer 69

1: Inspection of Access Credentials 2: Monitoring of CCTVs 3: Monitoring of Environmental Controls 4: Incident response

Answer 70

Professional Guards have attended advanced training

Answer 71

Pseudo Guard means an unarmed guard.

Answer 72

Guard orders should be complete and clear and trained routinely.

Answer 73

Perimeter Defense guarding rigid turf.

Answer 74

Deterrent and Detective

Answer 75

Legal Liability.

Answer 76

1: Areas may be restricted by space (authorized personnel Only) 2: Areas may be restricted by time

Answer 77

1: Electronic badges automatically expire 2: Printing the valid date in bold on the badge 3: Using different colored badges for different days of the week

Answer 78

1: Site Selection 2: Design 3: Configuration

Answer 79

Physical safety of personnel is the top priority for every decision.

Answer 80

(undeveloped land) process of choosing a site to construct a building.

Answer 81

The physical shape of the land.

Answer 82

1: Steer ingress and egress to controlled points 2: Alter the topography as a defensive measure

Answer 83

1: Uninterruptable Power supplies for short term power failure 2: Generators for longer term power failure.

Answer 84

Weakens your defenses because you are that mercy of your neighbor.

Answer 85

1: Shared Wall may act as a launch point to attack critical areas. 2: Wireless attacks and wireless interference. 3: Shared Demarc

Answer 86

Most buildings have one entry point where power and internet come into the building.

Answer 87

Access to the Demarc areas allows attacks on CIA of all circuits.

Answer 88

1: Strong physical access control including authenticating and authorizing all access. 2: Accountability controls should be built to reconstruct any event. 3: For very secure sites, construct multiple segregated demarks.

Answer 89

1: Asset Tracking 2: Port Controls 3: Drive and Tape Encryption 4: Offsite Media Storage 5: Media Cleaning and Destruction

Answer 90

1: Support regulatory compliance by identifying where all regulated data is in a system. 2: Show exactly where equipment and data resides for Terminated employees 3: Track serial numbers and model numbers

Answer 91

Recommended for all mobile and media containing sensitive information which may leave a site May also be used for static systems which do not move.

Answer 92

Partially encrypted solutions, Encrypted File Folders or partitions often run the risk of exposing sensitive data stored in temp files.

Answer 93

Many breach notification laws concerning PII contain exclusions for lost data that is encrypted.

Answer 94

No - it is critical to highlight the importance of encrypting PII on mobile devices regardless of industry.

Answer 95

1: Bonded and insured 2: Emploies secure vehicles and secure facilities.

Answer 96

Ensure the storage site is will not be impacted by the same disasters as the primary site.

Answer 97

Prevent Object Reuse by securely cleaning or destroying all forms of media.

Answer 98

physical (paper) or electronic.

Answer 99

Dumpster Diving is searching for information by rummaging through unsecured trash.

Answer 100

1; Log serial numbers of any hard drives, 2: Log the data they contained 3: Log the date of cleaning or destruction 4: Log the name of the person performing these actions.

Answer 101

Cuts paper to prevent reuse

Answer 102

cuts paper into vertical strips

Answer 103

cuts bot horizontally and vertically.

Answer 104

Cross-Cut paper shredder

Answer 105

No - Given enough time, attackers can recover shredded documents.

Answer 106

No - Deleting a file removes the entry from the File Allocation Table (FAT) and marks the data blocks as unallocated, but the data is still there until overwritten.

Answer 107

No - Reformatting a disk destroys the old FAT and replaces it with a new one, but the data is still there.

Answer 108

Data Remanence: there are “remnants “of data left behind.

Answer 109

Overwriting writes over every character of a file or an entire disk drive.

Answer 110

Electronic Shredding (Wiping) overwrites the file’s data before removing the FAT entry.

Answer 111

No - There are no known commercial tools which can recover data overwritten in a single pass.

Answer 112

1: You cannot tell if a drive has been securely overwritten by looking at it. Errors made during the process can lead to data loss. 2: It also may be impossible to overwrite damage media.

Answer 113

Controls used to prevent object reuse attacks against magnetic media such as magnetic tape and disk drives.

Answer 114

Destroys the integrity of the magnetic media by exposing them to s a strong magnetic field; usually so damaged that a drive can no longer be formatted.

Answer 115

Destroys the integrity of the media by physically destroying the media itself.

Answer 116

1: Incineration 2: Pulverizing 3: Acid baths

Answer 117

1: It may not be possible to overwrite damaged media 2: Some magnetic media can only be written once

Answer 118

Designed to provide a safe environment for personnel and equipment.

Answer 119

1: Power 2: HVAC 3: Fire Safety

Answer 120

1: Blackout: Prolonged Loss of Power 2: Brownout: Prolonged Low Voltage 3: Fault: Short Loss of Power 4: Surge: Prolonged High Voltage 5: Spike: Temporary high coltage 6: Sag: Temporary low voltage

Answer 121

Prolonged Loss of Power

Answer 122

Prolonged Low Voltage

Answer 123

Short Loss of Power

Answer 124

Prolonged High Voltage

Answer 125

Temporary high Voltage

Answer 126

Temporary low voltage

Answer 127

Confidentiality - Integrity

Answer 128

1: Blackout: Prolonged Loss of Power 2: Fault: Short Loss of Power

Answer 129

1: Brownout: Prolonged Low Voltage 2: Sag: Temporary low voltage

Answer 130

1: Surge: Prolonged High Voltage 2: Spike: Temporary high Voltage

Answer 131

Provide protection against electrical failures.

Answer 132

Protects equipment from damage due to electrical surges

Answer 133

Contains a circuit or fuse which is tripped during a power spike or surge shorting the power or regulating it down to acceptable levels

Answer 134

Uninterruptible Power Supplies

Answer 135

1: Provide temp backup power in the event of a power outage 2: May also clean the power protecting against spikes and surges and other faults 3: Can be used to bridge to generator power

Answer 136

Power is provided by battery or fuel cells

Answer 137

Provides power for a limited time

Answer 138

Provides power for longer outages and will run as long as fuel is available.

Answer 139

1: Store fuel onsite for the period the generator is expected to run 2: Refueling strategies should consider a disaster’s effect on fuel supply and delivery 3: Always place generators above potential floodwaters 4: Make every effort to place them in areas unlikely to be impacted by other natural disasters. 5: Make sure you do the maintenance before the disaster.

Answer 140

Electricity generates magnetism so any electrical conductor emits EMI.

Answer 141

Electromagnetic Interference

Answer 142

1: Circuits 2: Power Cables 3: Network Cables

Answer 143

Poorly shielded or run too close together can cause crosstalk where magnetism form one cable crosses over to the other

Answer 144

Confidentiality Integrity

Answer 145

1: Never route power cables close to network cables 2: Cable choice matters

Answer 146

1: Unshielded twisted pair (UTP) 2: Shielded Twisted Pair (STP) or 3: coaxial cable 4: Fiber Optic Cable

Answer 147

Fiber Optic Cable

Answer 148

Heating, ventilation and Air Conditioning

Answer 149

Controls that keep the air at a reasonable temp and humidity.

Answer 150

Closed loop; recirculating treated air; helps to reduce dust and other airborne contaminants

Answer 151

Air and water are expelled from the building.

Answer 152

1: Untreated air should never be inhaled into the building 2: Water should drain away from the building

Answer 153

Condensation water pooling into the building often going under raised floors undetected.

Answer 154

Document the Location of all gas, water and positive drains

Answer 155

HVAC units are designed to maintain optimum heat and humidity levels for computers.

Answer 156

68-77 Degrees F 20-25 Degrees C

Answer 157

Low humidity

Answer 158

an electrical discharge to balance a positive and a negative electrical imbalance

Answer 159

Sudden static discharge can cause damage to computer equipment

Answer 160

1: Proper humidity 2: Proper grounding 3: Anti-static sprays 4: Wrist straps 5: Work Surfaces

Answer 161

High Humidity may cause water in the air to condense onto and into equipment causing corrosion. Mitigate with

Answer 162

proper humidity controls

Answer 163

1: Built up dust can cause overheating and static buildup. 2: Other contaminants can cause corrosion or damaging chemical reactions

Answer 164

1: HVAC: Positive pressure keeps untreated air from entering the system 2: HEPA (High Efficiency Particulate Air) Filters in the HVAC system.

Answer 165

HEPA (High Efficiency Particulate Air)

Answer 166

1: Heat 2: Flame 3: Smoke Detectors

Answer 167

May trigger when a specific temp is exceeded or when the temp change rate increases.

Answer 168

Detects infrared or ultra-violet light emitted in fire.

Answer 169

Drawback: require line-of-sight to detect; smoke alarms to don’t have this limitation.

Answer 170

1: Ionization 2: Photoelectric

Answer 171

Both alarm when smoke interrupts the radioactivity of light, lowering or blocking the electric charge.

Answer 172

Ionization-based smoke detectors contain a small radioactive source which creates a small electrical charge.

Answer 173

Photoelectric-based smoke detectors contain an LED (Light Emitting Diode) and a photoelectric sensor that generates a small charge when receiving light.

Answer 174

Excessive dust may cause smoke alarms to alert.

Answer 175

1: Locally 2: Centrally monitored by a fire alarm system.

Answer 176

in order to warn deaf and blind people

Answer 177

Training teaches new skill sets. Awareness changes behavior

Answer 178

because of the possible stakes: injury or loss of life. Safety is the primary goal of all physical security controls.

Answer 179

1: Establish meeting points where all people meet in the event of an emergency. These are critical so that people do not go back into a dangerous situation to rescue somebody who is actually safe at another location. 2: Special care should be given to any personnel with handicaps.

Answer 180

Ensures that all personnel safely evacuate the building in the event of an emergency or drill.

Answer 181

Ensures that all personnel are accounted for.

Answer 182

Class A: Ordinary Combustibles Common combustibles such as wood and paper Most Common Extinguished with water or soda acid.

Answer 183

Class B: Flammable Liquids Burning alcohol, oil or other petroleum products such as gasoline. Extinguished with gas or soda acid; never water.

Answer 184

Class C: Electrical Equipment Electrical fires occur in equipment or wiring Conductive fires Extinguishing agent must be non-conductive (any type of gas) but not soda acid (soda acid can conduct electricity.

Answer 185

Class D: Combustible Metals Extinguish with dry powder

Answer 186

Class K: Kitchen Fires Burning Oil or grease Extinguish with wet chemicals

Answer 187

A - B - D are the Same Ordinary - Liquid - Combustable Metals US uses B for Liquids and flammable gases Euro use B for Liquids and C for flammable gases US uses C for Electrical Euro uses E for Electrical US uses K for Kitchens Euro uses F for Kitchens

Answer 188

Always consult local fire code before implementing a fire suppression system.

Answer 189

preventing a fire

Answer 190

1: Fire Temperature Reduction 2: Oxygen supply reduction 3: Fuels reduction 4: Chemical Interference

Answer 191

Suppresses fire by lowering the temperature below the Kindling Point (Ignition Point)

Answer 192

Alerts people to evacuate.

Answer 193

Safe Evacuation

Answer 194

water right up to the sprinkler heads.

Answer 195

Each head will open independently as the trigger temp is exceeded.

Answer 196

Different colors to indicate ceiling temp trigger Orange: (135 F / 57 C) Red: (155 F / 68 C) Yellow: (175 F / 79 C) Green: (200 F / 93 C) Blue: (286 F / 141 C)

Answer 197

Filled with compressed air. Water held back by a valve that remains closed as long as sufficient air pressure exists. Used in areas where water may freeze like parking garages.

Answer 198

Deluge: Similar to dry pipes except that the sprinkler heads are larger

Answer 199

A combination of wet, dry or deluge systems and require two separate triggers to release water. Can be single interlock systems or double interlock systems .

Answer 200

Single interlock systems release water into the pipes when a fire alarm triggers. The water releases when the heads open.

Answer 201

Double interlock systems use compressed air (like dry pipes). The water will not enter the system until both the fire alarm triggers and the sprinkler head opens.

Answer 202

1: In areas where water may freeze like parking garages. 2: In areas where accidental discharge is costly like museums.

Answer 203

Lowers Fire Temp Used in Class A Fires Pressurized cylinders filled with Sodium Bicarbonate and water. A glass vial of acid suspened at the top. Break the vial and mix the acid with the liquid causes a chemical reaction that would create gas pressurizing the cylinder. Also creates a foam that float on the surface of some liquid fires and starves the oxygen supply.

Answer 204

Lowers Fire Temp Used in Class D Fires (combustable metals) Usually made of Sodium Chloride

Answer 205

1: Sodium 2: Magnesium

Answer 206

Lowers Fire Temp Used in Class D/F Fires (Kitchen Fires) Also work on common combustible fires. Usually Potassium Acetate mixed with water Covers the grease or oil with a soapy film

Answer 207

Lowers Fire Temp Used in Class B/B, B/C and C/E Fires (Liquid, Flmamable Gases and Electrical Equipment) Many believe they work like CO2 and extinguish the fire through oxygen starvation. This is a secondary affect and minor. These systems are designed to allow enough oxygen to support human life.

Answer 208

Montreal Protocol on Substances that deplete the Ozone Layer. Halon has ozone-depleting properties. Developed countries agreed to ban production and consumption of new halon by 1 Jan 1994. Existing systems could be used. Re-cycled halon can also be used.

Answer 209

No longer recommended due to their age; any existing system is over 15 years old. There are better substitutes.

Answer 210

1: Argon 2: FE-13: Newest and safest; can be breathed in concentrations as high as 30%. Others only 10-15%. 3: FM-200 4: Inergen

Answer 211

FE-13: Newest and safest; can be breathed in concentrations as high as 30%. Others only 10-15%.

Answer 212

Reduces Oxygen supply Used in Class B/C and C/E Fires (Liquid, Flmamable Gases and Electrical Equipment)

Answer 213

Count-Down Timers: Visible and Audible timer before gas-based systems are released to allow for personnel evacuation or to stop the release in time due to false alarm.

Answer 214

Risk: Odorless and colorless; humans can suffocate if they are exposed to too much. Recommended only for areas that have no humans. Any human entering a CO2 should be trained and probably should use oxygen tanks.

Answer 215

D: Static Electricity

Answer 216

A: Soda Acid

Answer 217

C: Liability

Answer 218

D: Fiber Optic

Answer 219

B: Asset Tracking

Answer 220

B: Safety of personnel

Answer 221

B: Integrity

Answer 222

D: Wet Chemical

Answer 223

C: Have an expert consult local fire codes

Answer 224

C: A CRT is an analog camera; a CCD is a digital camera

Answer 225

D: Preaction

Answer 226

C: Degauss and Destroy

Answer 227

D: The water is held back by a valve which remains closed as long as sufficient air pressure remains in the pipes. The valve opes once the sprinkler head opens and air pressure drops.