Chapter 11: Electronic Security Systems

Question 1

What are the components of a full-featured access control system?

Answer 1

A credential reader, communication cabling, distributed processor, central database, software, supplementary interfaces to external systems and applications for request to exit devices.

Question 2

What is personnel access control?

Answer 2

the portion of an access control system used to authorize entry and to verify the authorization of personnel seeking entry to a controlled area.

Question 3

What is single factor authentification?

Answer 3

When one identification is required for access authorization.

Question 4

What is dual factor authorization?

Answer 4

When two forms of identification are required for access authorization.

Question 5

What is it called when three forms of identification are required for access authorization?

Answer 5

Three factor Authorization.

Question 6

What are some ways to defeat access control points?

Answer 6

1. Deceit
2. Direct Physical Attack
3. Technical Attack

Question 7

How can an adversary use deceit to defeat an access control point?

Answer 7

By using false pretenses to convince security personnel or an employee to permit entry.

Question 8

What are some way that an adversary can use direct physical attack to defeat an access control point?

Answer 8

Through force and the use of tools.

Question 9

How can an adversary defeat an access control point by using a technical attack?

Answer 9

forging a credential or guessing or obtaining pass codes or pins.

Question 10

What types of measures are used to determine who is allowed access to a facility and who to deny?

Answer 10

1. credentials or other items in a person’s possession (such as metal key; a proximity device, chip embedded insertion card, magnetic stripe card; or a photo identification card
2. private information known by the individual (password or pin)
3. biometric features of the person. (fingerprint, hand geometry, iris and retinal patterns, signature, or speech patterns) this provides the highest levels of security.

Question 11

What is a comprehensive access control system designed to do?

Answer 11

1. Permit only authorized personnel and vehicles to enter and exit.
2. Provide ability to audit compliance with access control policies.
3. Detect and prevent the entry of contraband material.
4. Detect and prevent the unauthorized removal of assets.
5. Provide information to ensure the timely assessment and response to events categorized as exceptions or alarms conditions.

Question 12

What is a PIN numer?

Answer 12

a Personal Identification Number

Question 13

What are some weaknesses associated with the use of pin numbers?

Answer 13

1. An individual could pass the PIN and credential to an unauthorized individual
2. The PIN could be observed surreptitiously by an adversary (Shoulder Surfing)
3. The PIN could be obtained by coercion.

Question 14

How many possible PIN combinations are there in a four digit PIN?

Answer 14

10,000

Question 15

What are some examples of the types of credentials used in access control?

Answer 15

1. photo identification badges
2. exchange badges
3. stored-image badges
4. coded credentials

Question 16

What types of credentials require a high degree of vigilance from security?

Answer 16

1. photo identification badges
2. exchange badges
3. stored-image badges

Question 17

What are some weaknesses of a photo identification badge?

Answer 17

1. a false photo identification badge can be made
2. the individual can make up his or her face to match the face on a stolen badge.
3. Guard inattentiveness

Question 18

What is an exchange badge sytem?

Answer 18

a system that requires matching badges be held at each access point. When an employee presents a badge and requests entry, a guard compares the individual to the one on the corresponding exchange badge held at the access point.

Question 19

What is a positive aspect of the exchange badge system?

Answer 19

The actual credential, with access, is never allowed to leave the facility.

Question 20

What is a negative of the exchange badge system?

Answer 20

Someone can make up their face to match the face on the credential.

Question 21

What is a stored image badge?

Answer 21

This is a system that requires a guard to verify an individual’s identity based on visual characteristics of a stored image.

Question 22

What is a stored image badge system susceptible to?

Answer 22

The use of makeup as a disguise,

Question 23

What are the most common techniques for coding a badge?

Answer 23

1. Magnetic Stripe
2. Wiegand Wire
3. bar codes
4. proximity
5. smart cards.

Question 24

Where is magnetic stripe encoding typically used?

Answer 24

In credit and debit card systems

Question 25

How does Magnetic Stripe Encoding work?

Answer 25

A strip of magnetic material is located along edge of the badge and is encoded with data.

Question 26

How is the data on a magnetic strip encoding read?

Answer 26

It is read when the magnetic strip is moved through or inserted into a magnetic reader.

Question 27

WHat is coercivity?

Answer 27

The measure of the resistance of a magnetic material to changes in the stored information when exposed to magnetic field.

Question 28

What is the unit of magnetic intensity used to describe the coercivity?

Answer 28

The Oersted.

Question 29

What are the two types of oersted used in cards?

Answer 29

300 oersted- used in credit cards
2,500 to 4,000 oersted- used in security credential applications.

Question 30

Which oersted magnetic strip is unlikely to get accidently erased?

Answer 30

The 2,500 to 4,000 oersted.

Question 31

True or False. Credential Forgery is relatively easy to use on magnetic strips?

Answer 31

True

Question 32

Is the Wiegand Wire Technology still in use?

Answer 32

No.

Question 33

IS the Wiegand Data Protocol still in common use?

Answer 33

Yes.

Question 34

What is the Open Supervised Device Protocol (OSDP)?

Answer 34

The OSDP is an access control communication protocol that improves interoperability among access control and security products.

Question 35

When was the OSDP standard adopeted.

Answer 35

In 2020 it was adopted by the Security Industry Association (SIA) after it became the international IEC standard.

Question 36

What is a proximity badge?

Answer 36

A card whose information can be read without the badge being physically placed into a reader device.

Question 37

What is the major weakness of proximity cards?

Answer 37

1. An attacker with an RFID tool can intercept, read, and copy the proximity cards that are not as secure.
2. readers with compromised firmware allow attacker to compromise what information is stored in the reader.

Question 38

What are the frequency ranges are proximality cards?

Answer 38

125 kHz for low-frequency badges
2.5 MHz to over 1 GHz for high frequency badges.

Question 39

What are the types of smart cards?

Answer 39

1. contact
2. contactless (RF)

Question 40

How do contactless smart cards communicate?

Answer 40

Through RF

Question 41

What is the memory size of most smart cards?

Answer 41

8 kb to 64 kb

Question 42

What does NFC stand for ?

Answer 42

Near Filed Communications

Question 43

What is the most widely used method of controlling physical access?

Answer 43

locks.

Question 44

Locks can be divided into what two general classes?

Answer 44

1. those that operate on purely mechanical principles
2. those that combine electrical energy with mechanical operations and are commonly associated with automated access control systems.

Question 45

What are the two major components of a mechanical lock?

Answer 45

the coded mechanism and the fastening device.

Question 46

What is the coded mechanism in a mechanical lock?

Answer 46

a key cylinder in a key lock or a wheel pack in a mechanical combination lock.

Question 47

What is the fastening device in a mechanical lock?

Answer 47

a latch or bolt assembly.

Question 48

How does a latch react when the door closes?

Answer 48

It automatically retracts.

Question 49

How does a bolt react?

Answer 49

A bolt stays in the same position unless it is intentionally moved.

Question 50

Which is more secure, a latch or a bolt?

Answer 50

Bolt.

Question 51

How can you make a bolt more secure?

Answer 51

ensure that it extends beyond the door edge at least one inch.

Question 52

What are the functional assemblies of components of a mechanical lock?

Answer 52

1. the bolt or latch that actually holds the movable part (door, window, etc.) to the immovable part (jamb, frame, etc.)
2. the keeper or strike into which the bolt or latch fits (not an integral part of the lock mechanism but a secure housing for the bolt when in a locked position.
3. The tumbler array, which is the barrier or labyrinth that must be passed to move the bolt.
4. The key or unlocking device, which is specifically designed to pass the barrier and operate the bolt.

Question 53

What are the primary types of mechanical locks?

Answer 53

1. Warded Locks
2. Lever Locks
3. Pin Tumbler Locks

Question 54

What is a warded lock?

Answer 54

The mechanical lock longest in use. It features an open, see-through keyway and the long, barrel-like key

Question 55

Where are Warded locks typically found?

Answer 55

older homes, farm buildings, and older inns.

Question 56

What is the greatest weakness of Warded Locks?

Answer 56

Its vulnerability to spring manipulation by any key that is not stopped by the wards and corrosion due to weathering and age.

Question 57

True or False. A well planned, modern locking program can include Warded Locks.

Answer 57

False.

Question 58

If Warded locks are present, what should you do?

Answer 58

Plan for phased replacement or augmentation with other locks.

Question 59

Describe a lever lock.

Answer 59

A lock that features levers that are flat pieces of metal held to a common pivot and retained in place inside the lock case by the tension of the spring wire.

Question 60

Where are Lever Locks used today?

Answer 60

Desks, Cabinets, locker, bank safe deposit boxes, and U.S. Mailboxes.

Question 61

What is a weakness of Lever Locks.

Answer 61

It is inherently susceptible to picking.

Question 62

When was the pin tumbler lock developed and by who?

Answer 62

Linus Yale in the 19th century.

Question 63

What is the most widely used lock in the United States?

Answer 63

The pin tumbler lock.

Question 64

Where are pin tumbler locks typically used?

Answer 64

exterior and interior building doors.

Question 65

What is the principle of master keying?

Answer 65

a single lock may be operated by more than one key by designing various keys to engage or work on different tumblers or different aspects of the same tumblers.

Question 66

What are the major security difficulties with master keying?

Answer 66

1. master key accountability must be maintained.
2. Additional positions or possibilities are presented for surreptitiously unlocking
3. increased maintenance.

Question 67

What are the security vulnerabilites of mechanical locks?

Answer 67

1. attack by force.
2. Surreptitious attack
3. attack by impression-making and “try keys”

Question 68

What is Attack by Force in relation to locks?

Answer 68

separating the door or movable element from the jamb or immovable element; removing the lock from its housing and exposing the bolt to manual manipulation; or snapping pin tumblers to turn the plug freely.

Question 69

What is an example of a surreptitious attack in relation to locks?

Answer 69

picking, raking, bumping, or mechanical manipulation due to engineering flaws or vulnerabilities with various specialty locksmith tools.

Question 70

What is an example of an attack by impression-making and “try keys”?

Answer 70

by inserting a key blank that has been designed for a particular keyway into the lock before any biting cuts have been made, it may be possible, by applying turning pressure, to make faint marks on the key blank. “Try keys” or “jingle keys” are key blanks that are correctly milled to fit the particular keyway and that contain random biting. Insertion in the keyway and combined turning and raking movements may cause the lock to open.

Question 71

What do electrified locks allow?

Answer 71

doors to be locked and unlocked by a remote device.

Question 72

What is a fail safe lock?

Answer 72

A lock that will unlock when the power goes out.

Question 73

What is a fail secure lock?

Answer 73

a lock that will stay locked when the power goes out.

Question 74

What are the primary types of electrified looking mechanisms?

Answer 74

1. Electric Deadbolt
2. Electric Latch
3. Electric Strike
4. Electric Lock Set
5. Exit Device
6. Electromagnetic Lock

Question 75

How does an electric deadbolt work?

Answer 75

A solenoid (electromagnet) moves a deadbolt, typically mounted on a doorframe, wither into or out of a strike plate on a door.

Question 76

Should an electric deadbolt be used on a door that automatically unlocks during a fire?

Answer 76

No.

Question 77

Why shouldn’t an electric deadbolt be used on a door that needs to open during a fire?

Answer 77

People can push on the door, causing tension on the deadbolt which could cause it not to unlock.

Question 78

What is another name for an exit device?

Answer 78

panic bar or crash bar

Question 79

What does Homeland Security Presidential Directive 12 (HSPD12) require?

Answer 79

Directs the entire Federal Government and all contract agencies to use a single, high security credential.

Question 80

What is UL 294, 7th Edition?

Answer 80

The UL standard for access control system units and is used to evaluate the construction, performance, and operation of access control systems.

Question 81

What year was the International Building Code adopted?

Answer 81

2000

Question 82

What is the IBC?

Answer 82

International Building Code

Question 83

Who publishes the IBC?

Answer 83

The International Code Council

Question 84

What is the acronym for the International Code Council?

Answer 84

The ICC

Question 85

Where is the IBC primarily used?

Answer 85

The United States

Question 86

What other plan is used in the US where the IBC is not used?

Answer 86

The NFPA 101 life safety code.

Question 88

What does NFPA stand for?

Answer 88

The National Fire Protection Association.

Question 89

What does ADA stand for?

Answer 89

The Americans with Disabilities Act of 1990

Question 90

In what areas, does ADA affect physical security?

Answer 90

Access Control and Lifer Safety Systems.

Question 91

In regard to the ADA what is the area of greatest concern and compliance concerning installations?

Answer 91

The ability to exit the structure.

Question 92

What are some methods of Contraband Detection?

Answer 92

1. Metal Detectors.
2. Package Search
3. Explosives Detection
4. Chemical and Biological Agent Detection

Question 93

What type of system detects metal

Answer 93

Magnetometer

Question 94

What is a magnetometer?

Answer 94

A passive device that monitors the earth’s magnetic field and detects changes to that field caused by the presence of ferromagnetic materials.

Question 95

What are ferromagnetic materials?

Answer 95

Metals that are attracted to a magnet.

Question 96

What types of metals does a magnetometer not detect?

Answer 96

copper, aluminum, and zinc.

Question 97

What are metal detectors used for?

Answer 97

To screen entrants to an area to mitigate against firearms and other weapons.