Physical

Question 1

Fences

Answer 1

Fences-
3-4’= deter;
5-7’ prevent;
8’ with 3 strands of outward slanting barbed wire for critical areas

Question 2

Gates

Answer 2

Gates- 
Class I (residential); 
Class II (commercial); 
Class III (industrial/limited); 
Class IV (restricted/airport/prison)

Question 3

Bollards

Answer 3

Bollards- strong post for stopping cars

Question 4

Lights

Answer 4

Lights-
o Fresnel- directional; originally used in lighthouses
o Lumen- amount of light one candle creates
o Footcandle- one lumen per square foot
o Lux- one lumen per square meter

Question 5

CCTV

Answer 5

CCTV (closed circuit TV)- detective
o Tube Cameras (aka CRT cameras)- not to be confused with CRT displays
o CCD (charged-couple device)- modern, digital, mechanical irises
o Depth of field- the area that is in focus
o Field of view- the entire area viewed by the camera
o More light allows larger depth of field because smaller aperture places more image in focus
o VHS backs up tube cameras
o DVR or NVR (Network Video Recorder) backs up CCD

Question 6

Key Bitting code

Answer 6

Bitting code- represents the depth of cut; 0 (shallow) – 9 (deep)

Question 7

Pin tumbler lock

Answer 7

Pin tumbler lock- correct key makes driver pins and key pins align

Question 8

Warded locks

Answer 8

Ward/Warded locks- must turn a key through channels

Question 9

Skeleton key

Answer 9

Skeleton key- opens a variety of warded locks

Question 10

Deadbolt

Answer 10

Deadbolt- rigid bolt

Question 11

Lock bumping

Answer 11

Lock bumping- uses shaved down key inserted into keyhole, bumps key to make pins jumps while quickly turning the key

Question 12

Master key

Answer 12

Master key- opens all locks in a security zone

Question 13

Core key

Answer 13

Core key- removes interchangeable core locks

Question 14

Combination locks

Answer 14

Combination locks- limited accountability for shared combos; button/keypad locks are vulnerable due to wear showing combo

Question 15

Smart cards

Answer 15

Smart cards (aka ICC- integrated Circuit Card)
o	Contact cards must be inserted into a reader
o	Contactless cards are read wirelessly (RFID- radio freq ID)
o	Many international credit cards are smart cards

Question 16

Magnetic Stripe cards

Answer 16

Magnetic Stripe cards (aka swipe cards)
o Passive, contain information on magnetic strip
o Many credit cards in the US are magnetic

Question 17

Mantrap

Answer 17

Mantrap- physical control with 2 doors unlocked in sequence

Question 18

Tailgating

Answer 18

Tailgating (aka piggybacking)- unauthorized person follows an authorized; combine social engineering (carrying boxes)

Question 19

Turnstile

Answer 19

Turnstile- prevents tailgating; must be designed for safe egress

Question 20

Motion detector & perimeter alarms

Answer 20

Motion detector & perimeter alarms
o Ultrasonic and microwave work like Doppler radar; active sensor
o Photoelectric sends a beam of light across a monitored space to a photoelectric sensor; alerts when beam is broken; active sensor
o PIR (passive infrared sensor)- detects infrared energy created by body heat
o Magnetic door/window alarms- matched sensor; e current flows when closed

Question 21

Doors and windows

Answer 21

Doors and windows
o Egress must be unimpeded
o Glass alternative- plexiglass (acrylic) and polycarbonate (eg Lexan)

Question 22

Fail secure

Answer 22

Fail secure: Fails locked. No evacuation. Only in facilities where value of what is being protected exceeds human life. On the CISSP exam never choose fail secure . Fail soft/safe is the best choice

Question 23

Fail Soft

Answer 23

Fail Soft: Opens outward, but door is locked to bar return

Question 24

Fail Safe

Answer 24

Fail Safe: Door fails open (easiest to evacuate)

Question 25

Walls, floors, ceilings

Answer 25

Walls, floors, ceilings o Walls should go floor to ceiling (slab to slab) to prevent entry via floor or ceiling o Walls should be strong (not sheetrock) with appropriate fire rating (not less than 1 hour)

Question 26

Guards

Answer 26

Guards o Professional guards have training o Pseudogaurd (mall cops) have no formal training o Guard orders should be complete & clear; aware of security risks

Question 27

CPTED

Answer 27

``` CPTED (Crime Prevention Through Environmental Design)- Provides instruction on direction of the use of: o Organizational (People) o Mechanical (Technology, hardware) o Natural Design (landscaping, natural environment) ```

Question 28

4Ds

Answer 28

4Ds- o Deter- Fencing, lighting, security guards, guard dogs, signs, etc o Delay- increase the time and effort needed to commit the crime o Detect- e.g. cause the person to make more noise o Deny- remove the rewards received from a crime opportunity

Question 29

Site Selection issues

Answer 29

Site Selection issues o Greenfield is undeveloped lot of land o Topography- physical shape of land; use it to steer ingress and egress o Utility reliability- UPS (uninterruptible power supply) provides short term protection o Local crime rates

Question 30

Site design issues

Answer 30

Site design issues o Telecom demarcation; shared demarc o Site marking- data centers usually not marked externally o Shared tenancy pose security issues; wireless security o Optimally, a data center would be on floor 2 or 3 (middle floors) to avoid floods, traffic, fire

Question 31

electrical faults

Answer 31

``` electrical faults o blackout- prolonged loss of power o brownout- prolonged low voltage o fault- short loss of power o surge- prolonged high voltage o spike- short high voltage o sag- short low voltage ```

Question 32

surge protector

Answer 32

surge protector- protect from surges; shorts the power down to acceptable level

Question 33

UPS

Answer 33

UPS (uninterruptible power supply)- temp backup; also refine/protect against e faults; use batteries or fuel cells; used as bridge to generator power

Question 34

Generator

Answer 34

Generator- used for longer periods than UPS

Question 35

EMI

Answer 35

Electromagnetic interference (EMI)- crosstalk caused by magnetism from cables run too close; impacts integrity and confidentiality; fiber optic is not susceptible to EMI

Question 36

HVAC

Answer 36

HVAC (Heating Ventilation & AC)- closed loop (recirculating air) to reduce airborn contaminants

Question 37

Positive pressure

Answer 37

Positive pressure & drainage- air and water should be expelled from building so water/air drains away from building

Question 38

Heat & humidity

Answer 38

Heat & humidity- 68-77 F; 40-55% humidity

Question 39

Static

Answer 39

Static- caused by low humidity; improper grounding

Question 40

Corrosion

Answer 40

Corrosion- caused by high humidity & condensation

Question 41

Airborne contaminants

Answer 41

Airborne contaminants- cause overheating, static buildup, corrosion; mitigated by positive pressure

Question 42

Smoke detector

Answer 42

Smoke detector- ionization (radioactive source creates small e charge) or photoelectric (LED & photosensor that generates a small charge when receiving the light)

Question 43

Flame detector

Answer 43

Flame detector- detect infrared or ultraviolet light; requires line of sight

Question 44

Class A Extinguisher

Answer 44

Class A Extinguisher- common combustible (wood, paper); extinguished using water or soda acid

Question 45

Class B Extinguisher

Answer 45

Class B Extinguisher - burning alchohol, oil, petroleum products; extinguished with gas (CO2, Halon/substitute) or soda acid

Question 46

Class C Extinguisher

Answer 46

Class C Extinguisher - electrical; extinguished with non-conductive agent (CO2, Halon/substitute)

Question 47

Class C Extinguisher (Europe)

Answer 47

Class C Extinguisher (Europe)- flammable gases; extinguished with gas (CO2, Halon/substitute) or soda acid

Question 48

Class E Extinguisher (Europe)

Answer 48

Class E Extinguisher (Europe)- electrical; extinguished with non-conductive agent (CO2, Halon/substitute)

Question 49

Class D Extinguisher

Answer 49

Class D Extinguisher - burning metals; extinguished with dry powder

Question 50

Class K Extinguisher

Answer 50

Class K Extinguisher - kitchen fire with oil or grease; wet chemicals

Question 51

Fire Suppression agents

Answer 51

``` Fire Suppression agents- reduce temp; reduce Oxygen; reduce fuel supply; interfere w/ chemical reaction ```

Question 52

Water

Answer 52

Water- lowers temp below ignition or kindling point

Question 53

Soda acid

Answer 53

Soda acid- (old giant brass pressurized extinguisher)- lower temp and reduces oxygen

Question 54

Dry powder

Answer 54

Dry powder- eg sodium chloride; lowering temp and reduce oxygen

Question 55

Wet chemical

Answer 55

Wet chemical- eg potassium acetate & water; lowers tempature

Question 56

CO2

Answer 56

CO2- removes oxygen; risk of suffocating personnel; All gas systems (CO2, Halon)- should use a countdown sys to get people out

Question 57

Halon

Answer 57

Halon- ozone depleting; chemical reaction that consumes energy and lowers temp o 1989 Montreal Accord banned halon by 1994; o Halon substitutes- Argon, FE-13, FM-200, Inergen

Question 58

Wet pipe sprinkler systems

Answer 58

Wet pipe- water up to sprinkler head; glass bulb breaks/melts at temp

Question 59

Dry pipe sprinkler systems

Answer 59

Dry pipe- pipes filled with compressed air; used where water may freeze

Question 60

Deluge sprinkler systems

Answer 60

Deluge- water is held back by deluge valve opened when fire alarm is triggered, not good for data centers

Question 61

Preaction sprinkler systems

Answer 61

Preaction- combination of wet, dry, deluge; require 2 triggers to release water; used in areas (data centers and museums) where discharge would be expensive

Question 62

PASS

Answer 62

Portable fire extinguisher | PASS- Pull the pin, Aim low, Squeeze the handle, Sweep the fire