MOD 7 - Physical Security

Question 1

What does physical security protect against?

Answer 1

Physical threats

Question 2

What are examples of physical threats?

Answer 2

Fire/Smoke
Water
Earth Movement (Earthquakes, landslides, volcanoes)
Storms
Explosion/Destruction

Question 3

What is secure facility plan?

Answer 3

Outlines the security needs of your organization and emphasizes methods and mechanisms to employ to provide security.

Question 4

How is secure facility plan developed?

Answer 4

Through critical path analysis

Question 5

What is critical path analysis?

Answer 5

provides complete picture of the interdependencies (links) and interactions necessary to sustain an organization

Question 6

What is technology convergence?

Answer 6

the tendency for technology, utilities, solutions and systems to evolve and merge over time

Question 7

What should security staffs assist with in secure facility plan?

Answer 7

site and facility design

Question 8

What is secure facility plan based on?

Answer 8

A layered defense model

Question 9

What should you pay attention to when it comes to site selection?

Answer 9

Does it meet the needs of an organization?
Are security requirements a top priority?
Location and Construction materials
Low crime area
Proximity to other buildings
Environmental threats
Visibility
Natural Disasters
Facility Design

Question 10

What is industrial camouflage?

Answer 10

An attempt to mask or hide actual function, purpose or operations of a facility by providing a facade.

Question 11

What is Crime Prevention Through Environmental Design (CPTED)?

Answer 11

When you structure the physical environment and surroundings to influence individual decisions that potential offenders make before committing any criminal acts.

Question 12

What is Natural access control?

Answer 12

Subtle guidance of those entering and leaving a building through placement of entranceways or lights

Question 13

What is Natural survelliance?

Answer 13

Making criminals feel uneasy through the increasing of opportunities for them to be observed

Question 14

What is Natural territorial reinforcement?

Answer 14

An attempt to make the area feel like an inclusive caring community.

Question 15

What are the three types of site and facility security controls?

Answer 15

Administrative physical security controls
Technical physical security controls
Physical controls for physical security

Question 16

What is Administrative Physical security control?

Answer 16

Awareness training, site management, personnel controls, emergency response and procedures

Question 17

What is technical physical security control?

Answer 17

CCTV , access controls, intrusion detection, alarms, air conditioning (HVAC) power supplies..

Question 18

What is Physical security control

Answer 18

Door locks, fencing, lightning, dogs, guards, construction materials

Question 19

What are the functional order of control?

Answer 19

Deterrence [stop before it happens]
Denial
Detection
Delay
Determine
Decide

Question 20

What is the difference between non-mission critical and mission critical?

Answer 20

Non-mission critical is if an organization can go without the equipment for more than 48 hours any thing less than that is mission critical.

Question 21

What is MTTF?

Answer 21

Mean Time to Failure
Expected functional lifetime to perform a repair on a device

Question 22

What is MTTR?

Answer 22

Mean Time To Repair
Average length of time to perform a repair on a device

Question 23

What is MTBF?

Answer 23

Mean Time Between Failures
Average time between the first and any other failure

Question 24

TRUE OR FALSE
MTTF AND MBTF values are the same/fairly similar

Answer 24

True

Question 25

What is a cable plant?

Answer 25

A collection of interconnected cables and intermediary devices that establish a physical network

Question 26

What is Entrance Facility?

Answer 26

the entrance point to the building where the cable from the provider connects the internal cable plant

Question 27

Equipment room

Answer 27

main wiring closet for the building

Question 28

Backbone Distribution System

Answer 28

Provides wired connections between the equipment rooms and the telecommunications rooms, including cross-floor connections.

Question 29

Wiring closet

Answer 29

serves connection needs of a floor or a section of a large building by providing space for networking equipment and cabling systems.

Question 30

Horizontal Distribution System

Answer 30

provides connection between the telecommunication room and work areas

Question 31

Protected Cable distribution or protective distribution systems

Answer 31

means by which cables are protected from unauthorized access or harm

Question 32

TRUE OR FALSE? Server rooms, data centers, communications rooms, wiring closets, server vaults, and IT closets are enclosed, restricted, and protected rooms where your mission-critical servers and network devices are housed

Answer 32

True

Question 33

What should you keep in mind when designing a server room?

Answer 33

Halotron/PyroGen or other halon-substitute oxygen-displacement fire detection and extinguishing systems Low temperatures Little or no lighting Equipment stacked with little room to maneuver

Question 34

TRUE OR FALSE Server rooms are not located at core of building and away from gas/water/sewer lines; not ground or top floor or basement

Answer 34

False

Question 35

TRUE OR FALSE Server rooms should have 1 hour minimum fire rating walls

Answer 35

True

Question 36

Data Center

Answer 36

Could be an external location separate from a server room used to house the bulk of backend computer servers, data storage equipment and network management equipment

Question 37

What are the data center controls?

Answer 37

smart/dumb cards, proximity readers, biometrics, intrusion detection systems (IDS), and a design based around defense in depth

Question 38

Smartcards

Answer 38

Badges, identification cards, or security IDs are forms of physical identification and/or electronic access control devices.

Question 39

What are weaknesses of smartcards?

Answer 39

physical attacks, logical attacks, Trojan horse attacks, or social-engineering attacks

Question 40

Proximity Devices

Answer 40

Used to to control physical access, they can be passive device, field powered device or a transponder

Question 41

Intrusion Detection Systems

Answer 41

Systems – automated or manual - designed to detect an attempted intrusion, breach, or attack; use of an unauthorized entry/point; or occurrence of some specific event at an unauthorized or abnormal time.

Question 42

What are some physical IDS?

Answer 42

security guards, automated access controls, and motion detectors as well as other specialty monitoring techniques.

Question 43

Heartbeat Sensor

Answer 43

mechanism by which the communication pathway is either constantly or periodically checked with a test signal. If communication fails, alarm automatically triggers.

Question 44

Motion Detectors

Answer 44

Device that senses movement or sound in a specific area

Question 45

What are the different types of motion detectors?

Answer 45

Infrared (PIR – passive infrared) or heat-based looks for meaningful changes in heat levels Wave pattern – monitors for significant changes in the reflected pattern Capacitance – senses changes in electrical or magnetic field surrounding a monitored object Photoelectric – senses changes in visible light levels for area Passive audio – listens for abnormal sounds

Question 46

Intrusion Alarms

Answer 46

An alarm is a separate mechanism that triggers a deterrent, a repellent, and/or a notification.

Question 47

What are the different types of intrusion alarms?

Answer 47

Deterrent Alarm – shut/lock doors; make further intrusion or attack more difficult Repellant Alarm – audio sound, bell, light; discourage intruders/force off property Notification Alarm – silent but record incident data; bring authorized personnel to location Local Alarm System – broadcast audible alarm (up to 120 decibles/400 ft away; protected from tampering; security team positioned nearby Central Station System – silent alarm/offsite agents Auxiliary Station – can be added to centralized or local; when breached emergency services notified

Question 48

What must be in place to monitor access abuse?

Answer 48

A security guard

Question 49

What are the different types of access abuse?

Answer 49

Masquerading – using someone else’s security ID to gain entry into a facility Piggybacking – (tailgating) following someone through a secured gate or doorway without being identified or authorized personally

Question 50

How can we prevent access abuse?

Answer 50

Creating audit trails and access logs to figure out anomalies Monitor entry/exit points with security cameras

Question 51

Media storage facilities

Answer 51

Designed to securely store blank media, reusable media, and installation media

Question 52

What is a utitilities and HVAC considerations?

Answer 52

Equipment damage from power fluctuations can be a common occurrence

Question 53

UPS (Uninterruptable Power Supply)

Answer 53

a type of self-charging battery that can be used to supply consistent clean power to sensitive equipment

Question 54

TRUE OR FALSE A backup battery or a fail over battery is a form of UPS

Answer 54

False

Question 55

POWER RELATED TERMS ***browse through***

Answer 55

Fault – momentary loss of power Blackout – complete loss of power Sag – momentary low voltage Brownout – Prolonged low voltage Spike – momentary high voltage Surge – prolonged high voltage Inrush – initial surge of power usually associated with connecting to a power source, whether primary or alternate/secondary Noise – steady interfering power disturbance or fluctuation Transient – short duration of line noise disturbance Clean – nonfluctuating pure power Ground – Wire in an electrical circuit that is grounded

Question 56

Noise

Answer 56

Noise generated by electric current can affect any means of data transmission that relies on electromagnetic transport mechanisms, such as telephone, cellular, television, audio, radio, and network mechanisms.

Question 57

What are the two types of EMI?

Answer 57

Common Mode – generated by a difference in power between the hot and ground wires of a power source or operating electrical equipment Traverse Mode – generated by a difference in power between the hot and neutral wires of a power source or operating electrical equipment

Question 58

RFI

Answer 58

Radio-frequency interference – another source of noise and interference that can affect many of the same systems as EMI – RFI generating appliances – fluorescent lights, electrical cables, electric space heaters, computers, elevators, motors, and electric magnet

Question 59

TRUE OR FALSE Rooms intended to house computers should be kept between 60 and 75 degrees Fahrenheit

Answer 59

True

Question 60

TRUE OR FALSE Humidity should be maintained between 40 and 60 percent

Answer 60

True