Chapter 3 Physical Security

Question 1

What is the relationship between physical security and cybersecurity?

Answer 1

Physical security is related to cybersecurity because hardware storing software and data needs to be physically secure to prevent unauthorized access and data breaches.

Question 2

How does physical access to hardware increase the risk of data breaches?

Answer 2

Physical access to hardware, like storage disks or laptops, gives attackers more options for breaking into the device compared to remote access over a network.

Question 3

Why is it important to encrypt data at rest?

Answer 3

Encrypting data at rest ensures that even if someone gains physical access to storage devices, they cannot easily read or misuse the data.

Question 4

What is a hardware keylogger?

Answer 4

A hardware keylogger is a device that captures keystrokes from a keyboard, often used by attackers to steal sensitive information like passwords.

Question 5

How can using password managers help prevent keylogging attacks?

Answer 5

Password managers automatically fill in passwords without typing, preventing keyloggers from capturing the keystrokes.

Question 6

What are some methods to prevent unauthorized physical access to devices?

Answer 6

Methods include using guards, requiring ID badges, maintaining visitor logs, and using physical barriers like locked doors and fencing.

Question 7

What are robot sentries?

Answer 7

Robot sentries are automated security guards, either terrestrial or aerial, equipped with cameras and Wi-Fi for monitoring properties.

Question 8

Why is having a staffed reception area important for physical security?

Answer 8

A staffed reception area prevents unauthorized access and ensures that visitors are monitored and logged, reducing the risk of physical breaches.

Question 9

How do cloud providers ensure physical security of their data centers?

Answer 9

Cloud providers use measures like undisclosed data center locations, protection from natural disasters, backup generators, locked doors, and fencing.

Question 10

What are bollards and why are they used?

Answer 10

Bollards are thick poles embedded into the ground, designed to prevent vehicles from ramming into buildings, enhancing physical security.

Question 12

What is industrial camouflage?

Answer 12

Industrial camouflage involves disguising facilities, like data centers, to make them harder to spot, such as coloring them green to blend with the environment.

Question 12

What is Class C fire suppression used for?

Answer 12

Class C fire suppression is used to extinguish electrical fires, protecting server rooms and data centers from fire damage.

Question 12

Why is video surveillance important in physical security?

Answer 12

Video surveillance helps monitor and record activities, providing evidence and enhancing the ability to respond to security incidents.

Question 12

What is a mantrap in the context of physical security?

Answer 12

A mantrap is a security feature with two doors where the inner door only opens after the outer door has closed, preventing unauthorized tailgating.

Question 13

What are air-gapped networks?

Answer 13

Air-gapped networks are isolated networks with no physical or wireless connections to other networks, providing high security for sensitive data.

Question 14

How can air-gapped networks still be compromised?

Answer 14

Air-gapped networks can be compromised through infected USB drives or devices brought in by employees that become infected outside the secure environment.

Question 15

Why is physical security important for servers and data centers?

Answer 15

Physical security ensures that hardware is protected from unauthorized access and environmental factors, which in turn protects digital security and data.

Question 16

What is airflow management, and why is it important in server rooms?

Answer 16

Airflow management involves maintaining proper ventilation to keep servers and equipment cool, preventing overheating and ensuring optimal performance.

Question 17

What are containment panels or curtains used for in server rooms?

Answer 17

Containment panels or curtains are used to separate cool incoming air from warm exhaust air, preventing them from mixing and maintaining effective cooling.

Question 18

What are blanking panels, and why are they used in server racks?

Answer 18

Blanking panels are used to fill empty slots in server racks to optimize airflow and prevent mixing of cool and warm air.

Question 19

What happens to servers if they overheat?

Answer 19

If servers overheat, their CPUs may throttle to reduce heat, leading to performance degradation and potential shutdowns, affecting system availability.

Question 20

What is the impact of server overheating on the CIA triad?

Answer 20

Overheating affects availability, one of the CIA triad components, by potentially causing servers to slow down or shut down, reducing system uptime.

Question 21

What are hot and cold aisles in a server room?

Answer 21

Hot and cold aisles are a layout strategy in server rooms where cold air is supplied to the front of the racks and hot air is exhausted from the back, keeping the two air streams separate.

Question 22

Why are raised floors with perforated tiles used in server rooms?

Answer 22

Raised floors with perforated tiles allow cool air from air conditioning units to flow up to the servers, improving cooling efficiency.

Question 23

How do intake and exhaust fans work in server equipment?

Answer 23

Intake fans draw cool air into the equipment, while exhaust fans expel warm air, helping to maintain optimal operating temperatures.

Question 24

: What is the purpose of using air containment panels in a server room?

Answer 24

Air containment panels create a controlled path for warm exhaust air to be removed, preventing it from mixing with cool air and maintaining efficient cooling.

Question 25

What environmental factors should be monitored in server rooms?

Answer 25

Temperature, pressure, humidity, noise, and proximity of equipment should be monitored to ensure optimal operating conditions and prevent failures.

Question 26

What can happen if environmental factors in a server room are not properly monitored?

Answer 26

If not properly monitored, environmental factors can lead to overheating, equipment failure, and downtime, impacting system availability and performance.

Question 27

What role do monitoring software play in maintaining server room conditions?

Answer 27

Monitoring software helps track environmental conditions in real-time, allowing for early detection of issues and preventive measures to avoid downtime.

Question 28

Why is controlling hot and cold air critical for server performance and availability?

Answer 28

Proper control of hot and cold air ensures servers operate within safe temperature ranges, preventing performance degradation and equipment failure.