CISSP (Domain 10 - Physical (Environmental) Security) Flashcards
Crime Prevention Through Environment Design (CPTED)
LTCH
- Landscape (enhance view)
- Territory (visitor parking)
- Controlled Access Points (Walkways)
- Harden the target (Locks on Doors)
Physical Controls
- First line of defense
- Perimeter protection (terrain, fences)
Technical Controls
- Proximity devices
- IDS
Supporting Facility Controls
- Electrical Power
- Heating, ventalation
Different in 3 Fence Heights
- 3-4 feet: deters casual trespassers
- 6-7 feet: too high to climb easily
- 8 feet with 3 strands of barbed wire: deter determined intruder
Perimeter Intrusion Detection and Assessment System (PIDAS)
Detects if intruder goes under, through, or over a fence
Perimeter Wall
- Reinforced concrete or solid brick
- Not less than 10 feet
Lights for Boundary Protection
Lights should overlap in coverage at least 8 feet high
Monitoring with CCTV Requirements
- Detection
- Recognition
- Identification
CCTV Short Focal Length
Wider angel views
CCTV Long Focal Lenght
Narrower Views
3 Types of Proximity Devices
- User Activated: Wireless keypad
- Passive Systems: Powered by sensor
- System Sensing/RFID: Reader transmits signal and user device sends access code
Fail-soft Door
Door defaults to being unlocked
Fail-secure Door
Door defaults to being locked
Fail-safe Door
Door defaults to a stat that protects life
Security Guard Functions
- Deter and correct improper actions
- Crhecking credentials at entry points
- Ensuring company property does not leave the facility
- Verify doors and windows locked
9 Best Practices for Entry Controls
- Limit number of entrances to facility and computer rooms
- Doors should resits forced entry
- Screening device at every entrance
- Log entries and exits
- Watch for property leaving facility
- Secure all openings
- After unusual diversion, search facility
- After suspicious activity, review logs
- Do unscheduled inspections
Primary Power Source
- Provides day to day power
- Dedicated feeders from utility
Alternate Power Source
- Generator
- Backup supply when primary is down
In-line UPS
Constantly provides power from its inverter even when power line is functioning property
Standby UPS
Monitors power line and switches to battery power when problem deetected
Desirable Features of a UPS
- High MTBF Values
- Allow for automatic system shutdown
- Surge protection and line conditioning
- Long battery life
- EMI/RFI filters to prevent data errors
Electromagnetic Interference (EMI)
- Line noise
- Cause by lightning/electrical motors
Radio Frequency Interference (RFI)
- Line noise
- Fluorescent lighting, radio signals
