Physical Security Flashcards
1
Q
Video surveillance
A
- CCTV (Closed circuit television)
- Can replace physical guards
- Camera properties are important
- Focal length - Shorter is wider angle
- Depth of field - How much is in focus
- Illumination requirements - See in the dark
- Often many different cameras
- Networked together and recorded over time
- Can provide notification of activity
- Motion detection
2
Q
Asset tracking tags
A
• A record of every asset
• Routers, switches, cables, fiber modules, CSU/DSUs,
etc.
• Financial records, audits, depreciation
• Make/model, configuration, purchase date, location,
etc.
- Tag the asset
- Barcode, RFID, visible tracking number
3
Q
Tamper detection
A
- You can’t watch all of your equipment all of the time
- Have your systems monitor themselves
- Hardware tampering
- Case sensors, identify case removal
- Alarm sent from BIOS
- Firewalls, routers, etc.
- Foil asset tags
- Identify the tampering
4
Q
Identification badges
A
- ID badge
- Picture, name, other details
- Must be worn at all times
- May be integrated with door access or a smart card
- It’s more than just a visual identification
• Standardized format
• Train all employees to look for ID and ask questions
if they don’t see one
5
Q
Biometrics
A
- Biometric authentication
- Fingerprint, iris, voiceprint
• Usually stores a mathematical representation of your
biometrics
• Your actual fingerprint isn’t usually saved
- Difficult to change
- You can change your password
- You can’t change your fingerprint
- Used in very specific situations
- Not foolproof
6
Q
Tokens and cards
A
- Smart card
- Integrates with devices
- May require a PIN
- USB token
- Certificate is on the USB device
- Hardware or software tokens / key fobs
- Generates pseudo-random authentication codes
- Your phone
- SMS a code to your phone
7
Q
Door access controls
A
- Conventional
- Lock and key
- Deadbolt
- Physical bolt
- Electronic
- Keyless
- Token-based
- Magnetic swipe card or proximity reader
- Multi-factor
- Smart card and PIN
