physical and
play

Physical and Environmental Security MIS 5206 Protecting Information - PowerPoint PPT Presentation

Jun 28, 2023 •225 likes •577 views

Protecting Information Assets - Week 7 - Physical and Environmental Security MIS 5206 Protecting Information Assets MIS5206 Week 7 Physical and Environmental Security Test Taking Tip Quiz MIS 5206 Protecting Information Assets

  1. Protecting Information Assets - Week 7 - Physical and Environmental Security MIS 5206 Protecting Information Assets

  2. MIS5206 Week 7 • Physical and Environmental Security • Test Taking Tip • Quiz MIS 5206 Protecting Information Assets

  3. Physical and Environmental Security • Focuses on hazardous energies and materials • Addresses the physical protection of the resources of an organization, which include: – People – Facilities and equipment – Systems – Data • Concerns: – People safety – How the environmental issues affect equipment and systems – How people can physically enter an environment People safety always takes precedence over the other security factors MIS 5206 Protecting Information Assets

  4. Sources of physical t hreats… • Severe weather, earthquakes and landslides • Humans • Fire • Energies • Materials and chemicals • Equipment • Organisms MIS 5206 Protecting Information Assets

  5. Sources of physical threats • Severe weather – Likelihoods of hurricanes, tornadoes, high winds, severe thunderstorms, rain, snow, sleet and ice • Causing fires, flooding/water damage, structural damage, loss of utilities and communications, and hazards to personnel – Lightening strikes can discharge 100,000 amperes of electric current and heat the air to 54,000 o F (30,000 o C), in US starts ~10,000 fires/year • Earthquakes and landslides – Can generate vibration, movement, falling objects – May weaken structural integrity and cause unstable buildings to collapse MIS 5206 Protecting Information Assets

  6. Sources of Physical Threats… • Fire and Chemicals - explosion, smoke, toxic materials, industrial pollution • Energy - electricity, magnetism, radio wave anomalies • Equipment - mechanical or electronic component failure • Organism - virus, bacteria, animal, insect • Human – vandalism, sabotage, theft, terrorism, war • Consider both internal and external threats MIS 5206 Protecting Information Assets

  7. Physical Control Types Facility selection, facility construction and Administrative management, personnel identity badges and Controls controls, evacuation procedures, system shutdown procedures, fire suppression procedures, hardware failure procedures, bomb threat and lock down procedures,… Perimeter security, fences, lighting, facility Physical Controls construction, keys and locks, access card and readers, … Physical access control and monitoring system, Technical intrusion detection and alarm system, fire Controls detection and suppression system, uninterrupted power supply, heating / ventilation / air conditioning system (HVAC), disk mirroring, data backup,… MIS 5206 Protecting Information Assets

  8. Site selection… An administrative control for facilities • Climactic disasters – Is it in a high likelihood area for hurricanes, earthquakes, flood plains, tornadoes or other natural threats? – Are evacuation routes available and what is the level of emergency preparedness? • Visibility – Is it an easy target for crime, terrorism or vandalism? (adjacent to high-profile organization, government or military target?) – Does it have a low profile for avoiding unneeded attention? Is it possible to avoid external markings? • Local Considerations – What are the crime rates and adjacent neighborhoods? – Is it near hazard materials storage? Railroad freight lines? Airport flight paths? • Accessibility – Is it convenience to travel: airports and/or railroads? What are the local traffic patterns? – Is it close to emergency services: police stations, fire stations and hospitals • Utilities – Does location in the power grid provide clean/stable power? – Are telecommunications supported by sufficient high-speed fiber optic network connections? – Are there multiple provides to provide redundant utilities? • Joint tenants – Are they serious enough about security? – Should/would they share physical security responsibilities and costs? MIS 5206 Protecting Information Assets

  9. Perimeter Security - physical control for facilities Perimeter security controls are used to prevent, detect and respond to unauthorized access to a facility Natural access control to limit opportunities for crime – Uses security zones to restrict movement and differentiate between areas – Requiring different levels of protection • Public areas • Semi-private area • Private areas – Limiting points of entry into a building, using structures (e.g. www.pinterest.com sidewalks & lights) to guide visitors to main entrances and reception MIS 5206 Protecting Information Assets areas

  10. Natural access control to limit opportunities for crime – Uses security zones to restrict movement and differentiate between areas – Requiring different levels of protection • Public areas • Semi-private area • Private areas – Limiting points of entry into a www.pinterest.com building, using structures (e.g. sidewalks & lights) to guide visitors to main entrances and reception areas MIS 5206 Protecting Information Assets

  11. Perimeter Control Fencing – different heights serve different purposes: – 3 – 4 feet – deter casual trespassers – 6 – 7 feet – deter general intruders 8 feet with barbed wire slanted at a 45 o angle – deter – more determined intruders PIDAS – Perimeter Intrusion and Detection Assessment System – Fencing system with mesh wire and passive cable vibration sensors – Detects intruder approaching and damaging the fence (may generate many false alarms) Bollards – Small round concrete pillars placed around a building – Protects from damage by someone running a vehicle into the side of the building or getting too close for car-bomb Lighting – Streetlights, floodlights or searchlights – Good deterrents for unauthorized access and personnel safety – National Institute of Standards and Technology (NIST) standard requires critical areas to be illuminated 8 feet in height with 2-foot candle power MIS 5206 Protecting Information Assets

  12. Target Hardening – Complements natural access controls by using mechanical and/or operational controls: e.g. door and window locks, alarms, guards and receptionists, visitor sign-in/sign-out procedures, picture identification requirements,… MIS 5206 Protecting Information Assets

  13. Facilities – Data Center • Should not be located on the top floor because of risk of fire • Should not be in the basement - flooding risk • Ideally in the core of a building - provides protection from natural disasters and intrusion • Should not be close to a public area – to ease security MIS 5206 Protecting Information Assets

  14. Technical Physical Access Monitoring Controls Dry contact switch - uses metallic foil tape as a contact detector to detect whether a door or window is opened. Electro-mechanical detection system - detects a change or break in a circuit. It can be used as a contact detector to detect whether a door or window is opened. Vibration detection system - detects movement on walls, ceiling, floors by vibration. Pressure mat - detects whether there is someone stepping on the mat. Visual recording device - Camera and Closed Circuit TV (CCTV), records the activities taking place in a particular area. It should be used together with security guards to detect for anomalies. MIS 5206 Protecting Information Assets

  15. Technical Physical Access Monitoring Controls Photoelectric or photometric detection system - emits a beam of light and monitors the beam to detect for motion and break-in. Wave pattern motion detector - generates microwave or ultrasonic wave, and monitors the emitted wave to detect for motion. Passive infrared detection system - detects for changes of heat wave generated by an intruder. Audio or Acoustical-seismic detection system - listens for changes in noise level. Proximity detector or capacitance detector - emits magnetic field and monitors the field to detect for any interruption. It is especially useful for protecting specific objects. MIS 5206 Protecting Information Assets

  16. Construction design considerations Exterior Walls – Able to withstand high winds, reduce electronic emanations (when needed), avoid windows at lower levels – otherwise fixed, shatterproof, opaque to conceal inside activities, and reinforced with bars at lower levels (when needed)… Interior Walls – Must extend from floor to ceiling (through dropped ceilings and raised floors to stop intruders) if adjacent to restricted or secure areas, meet building and fire ratings (flammable material storage ratings), reinforced (Kevlar) to protect sensitive areas… Doors – Resistant to forcible entry, fire rating equal to surrounding walls, unlocked from inside with emergency marking, electronic locks and access controls should “fail - soft” (unlocked during power outage) or “fail - safe” (locked during power outage) intrusion detection alarm, doors that swing out to facilitate emergency existing have hinges on the outside which must be secured so hinge pins are not easily lifted by placement of doors… Windows – characteristics of windows material (opaque, translucent, transparent, shatterproof, bulletproof), intrusion detection alarms, placement of windows… MIS 5206 Protecting Information Assets

Recommend

Physical Maps Physical Maps What are they? Physical maps uses colours and shading to show

Physical Maps Physical Maps What are they? Physical maps uses colours and shading to show

Physical Maps Physical Maps What are they? Physical maps uses colours and shading to show height and physical features. What are some physical features? Green = ____________________ Brown/grey = ________________ Blue =

350 views • 8 slides
Units Physical quantities Physical Quantity? A physical quantity is anything measurable.

Units Physical quantities Physical Quantity? A physical quantity is anything measurable.

Units Physical quantities Physical Quantity? A physical quantity is anything measurable. Five litres of petrol is a volume of liquid. It means 5 x 1 litre Volume is a physical quantity. It is measurable, has a size e.g. 5 and a unit,

1.07k views • 79 slides
HEALTHWISE: PHYSICAL ACTIVITY REFERRAL SCHEME PHYSICAL INACTIVITY Physical Inac,vity

HEALTHWISE: PHYSICAL ACTIVITY REFERRAL SCHEME PHYSICAL INACTIVITY Physical Inac,vity

HEALTHWISE: PHYSICAL ACTIVITY REFERRAL SCHEME PHYSICAL INACTIVITY Physical Inac,vity has been iden,fied as the 4 th leading risk factor for global mortality, which

277 views • 27 slides
Virtual and Physical Addresses Physical addresses are provided directly by the machine. one

Virtual and Physical Addresses Physical addresses are provided directly by the machine. one

Virtual Memory 1 Virtual and Physical Addresses Physical addresses are provided directly by the machine. one physical address space per machine the size of a physical address determines the maximum amount of addressable physical

1.02k views • 68 slides
Virtual and Physical Addresses Physical addresses are provided directly by the machine. one

Virtual and Physical Addresses Physical addresses are provided directly by the machine. one

Virtual Memory 1 Virtual and Physical Addresses Physical addresses are provided directly by the machine. one physical address space per machine the size of a physical address determines the maximum amount of addressable physical

1.92k views • 75 slides
MS and Physical Activity(PA) 1 6/18/2015 Physical Inactivity Subjective and objective

MS and Physical Activity(PA) 1 6/18/2015 Physical Inactivity Subjective and objective

6/18/2015 The effects of Yoga on impairments of body function, activity limitations and participation for people with MS: A review Blthn Casey PhD Candidate University of Limerick, Ireland. MS and Physical Activity(PA) 1 6/18/2015 Physical

380 views • 14 slides
Virtual and Physical Addresses Physical addresses are provided by the hardware: one physical

Virtual and Physical Addresses Physical addresses are provided by the hardware: one physical

D Memory Management Virtual and Physical Addresses Physical addresses are provided by the hardware: one physical address space per machine; valid addresses are usually between 0 and some machine- specific maximum; not all addresses

250 views • 22 slides
Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Micro-Architectural Attacks on Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical Systems Cyber Physical Systems (CPS) Cyber (Computer) + Physical (Plant) Real-time Control physical

310 views • 29 slides
Physical Properties and Physical Changes to Matter Science content for middle school teachers

Physical Properties and Physical Changes to Matter Science content for middle school teachers

1/19/12 Physical Properties and Physical Changes to Matter Science content for middle school teachers (Grades 58) 2012 1 Physical Properties and Physical Changes to Matter Group Norms Those who work, learn. Look for

601 views • 23 slides
The Use and Application of Physical Agents and Modalities: Can be used for: Physical Agent

The Use and Application of Physical Agents and Modalities: Can be used for: Physical Agent

The Use and Application of Physical Agents and Modalities: Can be used for: Physical Agent Modalities Certification (PAM) For Occupational Therapists and Certified Occupational Therapy Assistants Kurt Gray, PT, DPT 1 What are Physical Agents

1.38k views • 120 slides
CompChoice Review the purpose of the DOT physical Review the components of the DOT physical

CompChoice Review the purpose of the DOT physical Review the components of the DOT physical

Darin Gregory, MD CompChoice Review the purpose of the DOT physical Review the components of the DOT physical Discuss controversial topics regarding DOT physicals Large truck fatalities and crashes have increased (by 3% in 2018) This is

994 views • 51 slides
Where we are in the Course Beginning to work our way up starting with the Physical layer

Where we are in the Course Beginning to work our way up starting with the Physical layer

Where we are in the Course Beginning to work our way up starting with the Physical layer Application Transport Network Link Physical CSE 461 University of Washington 1 Scope of the Physical Layer Concerns how signals are used to

686 views • 32 slides
TYPES OF DEPRECIATION The causes of depreciation may be physical or functional. Physical

TYPES OF DEPRECIATION The causes of depreciation may be physical or functional. Physical

// Plant design and economics (8) Zahra Maghsoud DEPRECIATION (Ch. 9 Peters and Timmerhaus ) The reduction in value due to physical deterioration, technological advances, economic changes, or other factors is a measure of

204 views • 16 slides
PE Curriculum Briefing (P5) Mission The aim of the physical education (PE) programme is to

PE Curriculum Briefing (P5) Mission The aim of the physical education (PE) programme is to

PE Curriculum Briefing (P5) Mission The aim of the physical education (PE) programme is to develop : the physical, intellectual, social and emotional skills 21 st century competencies, Core values through physical activities

268 views • 15 slides
TYPES OF DEPRECIATION The causes of depreciation may be physical or functional. Physical

TYPES OF DEPRECIATION The causes of depreciation may be physical or functional. Physical

5/7/2015 Plant design and economics (8) Zahra Maghsoud 2 DEPRECIATION (Ch. 9 Peters and Timmerhaus ) The reduction in value due to physical deterioration, technological advances, economic changes, or other factors is a g , g , measure of

324 views • 21 slides
The Toronto Charter for The Toronto Charter for Physical Activity Physical Activity Professor

The Toronto Charter for The Toronto Charter for Physical Activity Physical Activity Professor

The Toronto Charter for The Toronto Charter for Physical Activity Physical Activity Professor Fiona Bull Chair, GAPA Council GAPA Brief History Established 2006 as the Global Alliance for Physical Activity In 2008, the International Society

266 views • 10 slides
OCR Syllabus Why study Physical Education? Studying A Level Physical Education will give you a

OCR Syllabus Why study Physical Education? Studying A Level Physical Education will give you a

Physical Education A Level OCR Syllabus Why study Physical Education? Studying A Level Physical Education will give you a fantastic insight into the amazing world of sports performance. Not only will you have the chance to perform or coach

310 views • 16 slides
How do I recognize child abuse? Physical Abuse 1. Physical Neglect 2. 3. Sexual Abuse 4.

How do I recognize child abuse? Physical Abuse 1. Physical Neglect 2. 3. Sexual Abuse 4.

Child Abuse, Bullying and Strategies You Can Use to Protect Yourself How do I recognize child abuse? Physical Abuse 1. Physical Neglect 2. 3. Sexual Abuse 4. Emotional Maltreatment 1 Physical Abuse Physical indicators Behavioral indicators

737 views • 7 slides
PHYSICAL ELECTRONICS(ECE3540) APPLICATIONS OF APPLICATIONS OF PHYSICAL ELECTRONICS PART I

PHYSICAL ELECTRONICS(ECE3540) APPLICATIONS OF APPLICATIONS OF PHYSICAL ELECTRONICS PART I

PHYSICAL ELECTRONICS(ECE3540) APPLICATIONS OF APPLICATIONS OF PHYSICAL ELECTRONICS PART I PHYSICAL ELECTRONICS PART I 1 Tennessee Technological University Monday, October 28, 2013 Introduction In the following slides, we will

647 views • 25 slides
Telerehabilitation Compared to Conventional Physical Therapy in Improving Physical Functioning in

Telerehabilitation Compared to Conventional Physical Therapy in Improving Physical Functioning in

Telerehabilitation Compared to Conventional Physical Therapy in Improving Physical Functioning in Community-Dwelling Adults: A Systematic Review Brian C Lavado, SPT Margaret K Ortlieb, SPT Megan R Rohleder, SPT Barbara R Wagner, PT, DPT, MHA

206 views • 20 slides
1 Physical Classification - 1 Physical classification - 2 Some chemicals help other

1 Physical Classification - 1 Physical classification - 2 Some chemicals help other

Employee must be informed CHEMICAL SAFETY & CHOICE OF DISINFECTANT Ephy Khaemba - ILRI Physical & chemical characteristics The Right to Know Law Laboratory Management & Equipment Training Workshop 15 th to 19 th June 2015

445 views • 11 slides
If Many Physicists Are Right and No What Is a Physical . . . Physical Theory Is Perfect, Then by

If Many Physicists Are Right and No What Is a Physical . . . Physical Theory Is Perfect, Then by

Solving NP-Complete . . . NP-Complete . . . Can Non-Standard . . . No Physical Theory Is . . . If Many Physicists Are Right and No What Is a Physical . . . Physical Theory Is Perfect, Then by What We Mean by . . . Using Physical

637 views • 20 slides
Physical Therap Physical Therapy: A Hidd y: A Hidden en Answ Answer to er to Ease Ease the

Physical Therap Physical Therapy: A Hidd y: A Hidden en Answ Answer to er to Ease Ease the

Physical Therap Physical Therapy: A Hidd y: A Hidden en Answ Answer to er to Ease Ease the Op the Opioi ioid d Epi Epidemi demic 1. What is Physical Therapy? 2. How should injuries be managed to limit opioid use? 3. What steps can

351 views • 20 slides
PhenX Measures: Physical Activity Frailty and Falling Barbara Konkle 4.18 Physical Activity

PhenX Measures: Physical Activity Frailty and Falling Barbara Konkle 4.18 Physical Activity

PhenX Measures: Physical Activity Frailty and Falling Barbara Konkle 4.18 Physical Activity Existing Measures Many require physical activity that could be impacted by joint disease Disability index proprietary for leg/back

132 views • 9 slides

More recommend