CISSP Domain 3: Physical Security

Question 1

What are the logical (technical) controls for physical security?

Answer 1

• building access controls
• intrusion detection
• alarms
• CCTV and monitoring
• HVAC
• power supplies
• fire detection and suppression

Question 2

What are administrative controls for physical security?

Answer 2

• facility construction
• facility selection
• site management
• building design
• personnel controls
• awarness trainig
• emergency response
• emergency procedure defined within the emergency response

Question 3

What are the physical controls for physical security?

Answer 3

• fencing
• lightning
• locks
• construction materials
• mantraps (access control vestibules)
• dogs
• guards

Question 4

Describe efficacy of fences by hight:
* 3-4 feet
* 6-7 feet
* 8+ feet (topped with barbed wire)

Answer 4

• 3-4 feet
  
  • deters casual traspasser
• 6-7 feet
  
  • too difficult to climb easily
  • may block vision (providing additional security)
• 8+ feet (topped with barbed wire)
  
  • will deter determined intruders

Question 5

What’s PIDAS?

Answer 5

• Perimeter Intrusion Detection and Assessment System
• detects someone attmpting to climb a fence
• expensive and may generate false positive alarms

Question 6

What is the role of a fence?
What type of control?

Answer 6

• to deter the potential intruder
• therefore deterrent control

Question 7

What is the role of PIDS?
What type of control?

Answer 7

• detect potential intruder
• therefore detective control

Question 8

What’s Blackout?

Answer 8

prolonged loss of power

Question 9

What’s Brownout?

Answer 9

prolonged low voltage

Question 10

What’s Fault?

Answer 10

short/momentary loss of power

Question 11

What’s Surge?

Answer 11

prolonged high voltage

Question 12

What’s Spike?

Answer 12

momentary/temporary high voltage

Question 13

What’s Sag?

Answer 13

temporary low voltage

Question 14

What are the different types of electrical impact?
Name from high voltage to low/none.

Answer 14

• surge
• spike
• sag
• brownout
• fault
• blackout

Question 15

What is the rule of an effective lighting design?

Answer 15

should not illuminate of guards, dogs, patrol posts, or other similar security elements

Question 16

How should be the lighting for perimeter detection designed?

Answer 16

lighting for perimeter protection should illuminate critical areas with 2 feet of candle power from a hight of 8 feet

Question 17

How should be the light poles placed for perimeter protection?

Answer 17

• the same distance apart as the diameter of the illuminated area
• means 20 feet of coverage means poles 20 feet apart

Question 18

What’s the ideal humidity?

Answer 18

40%-60%

Question 19

What’s the ideal and damage temperature for computers?

Answer 19

• ideal = 60-75 F (15-23 C)
• damage = 175 F (80 C)

Question 20

What is the temperature in which managed storaged devices can be damaged?

Answer 20

100 F or 38 C

Question 21

What can be caused by too much humidity?

Answer 21

corrosion

Question 22

What can be caused by too little humidity?

Answer 22

static electricity

Question 23

What are the different classes of fire and suppression agents?

Answer 23

• Class A (ash) fires
  
  • common combustibles such as wood, paper, etc
  • most common and should be extinguished with water or soda acid
• Class B (biol) fires
  
  • burning alcohol, oil, and other petroleum products
  • extinguished with gas (CO2, halon) or soda acid
  • never use water to extinguish a class B fire
• Class C (conductive) fires
  
  • electrical fires which are fed by electricity and may occur in equipment or wiring
  • electrical fires are conductive and the extinguishing agent must be non-conductive, such as any type of gas CO2, halon)
• Class D (dilythium) fires
  
  • burning metals, which are extinguished with dry powder
• Class K (Kitchen) fires
  
  • kitchen fires, such as burning oil or grease
  • wet chemicals are used to extinguish class K fires

Question 24

What are the categories of fire detection systems?

Answer 24

• smoke sensing
• flame sensing
• heat sensing

Question 25

Water can be used to put out which types of fire?

Answer 25

only class A, everything else cannot be put out with water

Question 26

Smoke is damaging to what equipment?

Answer 26

storage devices

Question 27

Heat is damaging to what equipment?

Answer 27

electronic or computer components

Question 28

Suppression mediums can do what type of damage?

Answer 28

can cause short circuits, initiate corrosion or otherwise render equipment useless

Question 29

What are the different sprinkler systems?

Answer 29

• preaction systems
• wet pipe systems
• dry pipe systems
• deluge systems

Question 30

Describe preaction systems

Answer 30

• use closed sprinkler heads
• the pipe is charged with compressed air instead of water
• good for areas with people and computers

Question 31

Describe wet pipe systems

Answer 31

• have water present in the pipes at all times, posing an unacceptable level of risk for a data center containing electronics that might be damaged if a pipe leaks

Question 32

Describe dry pipe systems

Answer 32

• filled with compressed air
• only contain water when triggered in the event of a possible fire

Question 33

Describe deluge systems

Answer 33

• similar to dry pipes, except the sprinkler heads are open and larger than dry pipe heads

Question 34

Describe gas discharge systems

Answer 34

more effective than water discharge systems, but should not be used in environments where people are located, because they work by removing oxygen from the air

Question 35

Describe halon as fire suppressant

Answer 35

• effective, but bad for the environment (ozone depleting)
• turns to toxic gas at 900 F (482 Celsius)

Question 36

What are suitable replacements for halon?

Answer 36

• FM-200 (HFC 227ea)
• CEA-410 or CEA-308
• NAF-S-III (HCFC Blend A)
• FE-13 (HCFC-23)
• Argon (IG55) or Argonite (IG01)
• Inergen (IG541)
• Aero-K

Question 37

What are the types of electromagnetic interference?

Answer 37

1. common mode noise
2. traverse mode noise

Question 38

Describe common mode noise

Answer 38

generated by the difference in power between the hot and ground wires of a power source operating electrical equipment

Question 39

Describe taverse mode noise

Answer 39

generated by a difference in power in the hot and neutral wires of a power source opearing electrical equipment

Question 40

Describe radio frequency interference (RFI)

Answer 40

source of interference that is generated by electrical appliances, light sources, electrical cables, circuits and so on

Question 41

What are the different lock types?
Describe each

Answer 41

• electronic combination lock
  
  • something known
• key card systems
  
  • something possessed
• biometric systems
  
  • something that is
• conventional locks
  
  • easily picked / bumped and keys are easily duplicated
• pick-and-bump resistant locks
  
  • expensive, harder to pick and keys are not easily duplicated

Question 42

What’s the most world’s popular locks?

Answer 42

pin-tumbler

Question 43

Does bumping require skill?

Answer 43

• no
• leaves no traces
• there’s no standard for bump resistance

Question 44

What are the site design elements that impact physical security?

Answer 44

• site selection
  
  • should be based on the security needs of the organization
  • security requirements take precedence over cost and location
• location
  
  • what is the proximity to other buildings and businesses?
  • what kind of traffic do they draw?
  • is it on a hill or in a valley? is there a sufficient drainage?
  • what types of natural disasters are there?
• visibility
  
  • what is the surrounding terrain?
  • is it easy to approach it by vehicle or foot without being seen?
  • be vary of elements that obscure visibility

Question 45

What are the types of locks that can be picked/bumped?

Answer 45

• Pin Tumbler Locks
• Wafer Locks
• Tubular Locks
• Disc Detainer Locks

Question 46

Do centralized server or computer rooms need to be human compatible?

Answer 46

no, the server rooms should be optimized for computers while maitaining certain level for human safety

Question 47

No matter which physical access control is used, a security guard or other monitoring system must be deployed to prevent what?

Answer 47

• abuses
  
  • propping open secured doors and bypassing locks and controls
• masquerading
  
  • using someone else’s security ID to gain entry to a facility
• piggyback
  
  • following someone through a secured gate or doorway without being identified or authorized personally

Question 48

Media storage facility protections include what?

Answer 48

• locked cabinets or safes
• using a librarian/custodian
• implementing a check-in/check-out process
• using media sanitization

Question 49

What are the protections of evidence storage?

Answer 49

• locked cabinets or safes
• dedicated/isolated storage facilities
• offline storage
• access restrictions and activity tracking
• hash management and encryption

Question 50

What is important for a successful reconstruction of a physical intrusion, breach or attack?

Answer 50

• audit trails and access logs
• logs can be created manually by security guards or they may be generated automatically with the right equipment (smartcards and only certain proximity readers)
• entry points should be monitored with CCTV so audit trails and access logs could be compared with a visually recorded histroy of the events

Question 51

When designing physical security of a facility, what is the functional order in which controls should be used?

Answer 51

1. Deter
2. Deny
3. Detect
4. Delay
5. Determine
6. Decide

Question 52

Describe the Determine phase

Answer 52

security staff or legal authorities should determine the cause of the incident or assess the situation to understand what’s happening

Question 53

Describe the Decide phase

Answer 53

based on the assessment in ithe Determine phase, security staff should decide on the response to implement - apprehending the intruder or collecting evidence for further investigation

Question 54

What’s the goal of an Occupant Emergency Plan?

Answer 54

guide and assist with sustaining personnel safety in the wake of disaster

Question 55

What are robot sentries?

Answer 55

• used to automatically patrol area to look for anything extraordinary
• use facial recognition to indetify authorized personnel and detect intruders
• can be on wheels or be used as drones

Question 56

What’s the primary purpose of lighting?

Answer 56

deterrence of potential intruders

Question 57

What’s white noise?

Answer 57

active control that generates emanations that effectively jam the true emanations from el. mag. equipment

Question 58

What type of motion detector senses changes in the el. mag. fields in monitored areas?

Answer 58

capacitance

Question 59

What motion detectors transmit ultrasonic or microwave signals into the monitor area, watching for changes in the returned signals bouncing off objects?

Answer 59

wave pattern

Question 60

Use of an electromagnetic coil inside the card indicates that this is what card?

Answer 60

proximity card

Question 61

Describe hand geometry scanners

Answer 61

• assess the physical dimensions of an individual’s hand but do not verify other unique factors about the individual, or even verify if they are alive
• geometry scanners should not be implemented as the sole authentication factor for secure environments
• do not stand out as a particular issue from an accessibility standpoint compared to other biometric systems

Question 62

What does CPTED framework stand for?

Answer 62

Crime Prevention Through Environmental Design (CPTED)

Question 63

What are the 3 strategies implemented by CPTED?

Answer 63

1. natural access control
2. natural surveillance
3. natural territorial reinforcement

Question 64

Which one of the fire suppression systems poses the greatest risk of accidental discharge that damages equipment in a data center?

Answer 64

wet pipe - use pipes filled with water all times that may damage equipment if there is damage to a pipe

Question 65

What fire suppression systems all use pipes that remain empty until the system detects signs of a fire?

Answer 65

Dry pipe, deluge, and preaction systems

Question 66

What’s Critical path analysis?

Answer 66

systematic effort to identify relationships between mission-critical applications, processes, and operations and all the necessary supporting elements when evaluating the security of a facility or designing a new facility

Question 67

What is the most common and inexpensive form of physical access control device for both interior and exterior use?

Answer 67

lighting

Question 68

What is the ideal humidity range for a server room?

Answer 68

20 to 80 percent

Question 69

What is the most common cause of a false positive for a water-based fire suppression system?

Answer 69

people

Question 70

What is the best type of water-based fire suppression system for a computer facility?

Answer 70

preaction system is the best type of water-based fire suppression system for a computer facility because it provides the opportunity to prevent the release of water in the event of a false alarm or false initial trigger

Question 71

Where are photoelectric motion detectors usually deployed?

Answer 71

in internal rooms that have no windows and are kept dark

Question 72

What does infrared PIR (passive infrared) detector monitor?

Answer 72

significant or meaningful changes in the heat levels and patterns in a monitored area

Question 73

How does wave pattern motion detector work?

Answer 73

transmits a consistent low ultrasonic or high microwave frequency signal into a monitored area and monitors for significant or meaningful changes or disturbances in the reflected pattern

Question 74

What changes in the environment does photoelectric motion detector detect?

Answer 74

senses changes in visible light levels for the monitored area

Question 75

What is the most common form of perimeter security devices or mechanisms?

Answer 75

Lighting

Question 76

How should be cameras positioned?

Answer 76

• to watch exit and entry points allowing any change in authorization or access level
• to have clear sight lines of all exterior walls, entrance and exit points, and interior hallways

Question 77

What are the additional capabilities of cameras that include a SoC?

Answer 77

may be able to perform various specialty functions, such as time-lapse recording, tracking, facial recognition, object detection, or infrared or color-filtered recording

Question 78

Biometric systems using a one-to-many search provide provide what?

Answer 78

Identification

Question 79

Biometric systems using a one-to-one search provide what?

Answer 79

authentication

Question 80

Do biometric systems provide authorization or accountability?

Answer 80

no

Question 81

Which disaster type is not usually covered by standard business insurance?

Answer 81

most general business insurance and homeowner’s insurance policies do not provide any protection against the risk of flooding or flash floods

Question 82

RFID (radio-frequency identification) is effectively what type of device?

Answer 82

field-powered proximity device

Question 83

What are fail-secure doors?

Answer 83

stay closed and locked during adverse conditions

Question 84

What are fail-safe doors?

Answer 84

allow for easy egress in the event of adverse conditions as they prioritize personnel safety