Physical Security Design Flashcards

1
Q

What are Physical Access Controls generally intended to do? (QTY 6)

A

1) Deter potential Intruders
2) Distinguish authorized from unauthorized people
3) Delay, frustrate, and prevent intrusion attempts
4) Detect intrusions and monitor intruders
5) Trigger appropriate response
6) Deny by opposing or negating the effects of a covert or overt action.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the three ways an adversary can attack a site?

A

1) From Inside (Intrusion)
2) From Outside (badaboom, chemical, weapons, biological, radioactive)
3) A combination of both (collusion)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the three elements of a PPS? What three measures can implementations of the elements be divided into?

A

Elements:
1) Architectural
2) Operational
3) Security Systems
Measures:
1) Preventive
2) Corrective (reduce effects of an attack and restore facility to normal operations)
3) Detective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the three steps for identifying preventive measures?

A

1) Determine and evaluate significant threats or hazards and exposure, and estimate the likelihood of occurrence. Determine critical control points and risks at those points.
2) Develop and implement preventive controls to reduce threats and hazards.
3) Develop written security monitoring procedures for each critical control point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a critical control point?

A

The point where a countermeasure can be applied to reduce the risk.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the high level cost breakdown for a PPS project?

A

10-15% Design and Engineering
15-20% Hardware and Software
40-50% Installation
3-5% Training
10% Contingency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Does Technology replace manpower?

A

No, it is a force multiplier.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the three types of coaxial cabling?

A

RG-6 (Less than 750ft/228.6m)
RG-11 (750ft/228.6m to 1500ft/457.2m)
RG-59 (1500ft/457.2m to 2500ft/762m)
For longer go fibre

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the goals of a lightning protection system?

A

1) Limit step or contact voltage and induced voltage
2) Limit fire propagation
3) Reduce the effect of surges on sensitive equipment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the difference between Vertical/Riser cabling and Horizontal cabling?

A

Vertical/Riser cabling connects rooms on different floors.
Horizontal cabling connects to individual outlets on the same floor.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the advantages of EoC?

A

1) Reduced labour cost (no new cable pulling)
2) Extended cable distance.
3) Less network hardware needed.
4) No need to PoE inserters.
5) Transparency to the network (no network setup is required)
6) Flexible sitting (indoors and outdoors cameras)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the four IT access/permission levels?

A

1) A person with general responsibility and may be expected to investigate and initially respond to a security alarm or trouble signal.
2) Specific security responsibility and is trained to operate the system.
3) For persons trained and authorized to: reconfigure site specific data within the system.
4) Persons who are trained to repair or alter site specific data that changes the mode of operations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is a critical detection point?

A

The point where delay time exceeds the response force time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the difference between point and area security?

A

Area security is when the perimeter and entry’s have a high level of security.

Point security is when the perimeter is loosely controlled and only specific areas or zones, such as a building envelop, have a high level of security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is the difference between critical and supportive assets?

A

Critical-necessary for continuation of business continuity.
Supportive assets: not critical, but support critical process

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is VSAT

A

The Vulnerability Self-Assessment Tool