Sy0 601 21

Lesson 21
Explaining Physical Security

Topic 21A
Explain the Importance of Physical Site Security
Controls
CompTIA Security+ Lesson 21 | Copyright © 2020 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org 2
Syllabus Objectives Covered
• 1.2 Given a scenario, analyze potential indicators to determine the type of

attack
• 2.7 Explain the importance of physical security controls
Physical Security Controls
• Authentication
• Create access lists and identification mechanisms to allow approved persons
through barriers
• Authorization
• Create barriers around a resource so that access can be controlled through
defined entry and exit points
• Accounting
• Keep a record of when entry/exit points are used and detect security breaches
Site Layout, Fencing, and Lighting
• Site layout
• Zone-based design to accommodate traffic flows and surveillance
• Signage
• Industrial camouflage
• Barricades and entry/exit points
• Bollards
• Fencing
• Lighting
• Make staff feel secure
• Assist surveillance
Gateways and Locks
• Lock types
• Physical (conventional/deadbolt)
• Electronic
• Cipher/combination
• Magnetic swipe card
• Smart card/proximity reader
Images from user macrovector © 123RF.com.
• Biometric
• Access control
vestibules/mantraps and turnstiles
• Cable locks
Images from user macrovector © 123RF.com.
Physical Attacks Against Smart Cards and USB
• Smart card attacks

• Cloning
• Skimming
• Card types and vulnerability level
• Malicious USB/juice-jacking
• USB data blocker
Alarm and Sensor Systems
• Circuit
• Open or closed
• Detect intrusion through a barrier
• Motion detection
• Radar or infrared
• Detect intrusion in a space
• Noise detection
• Proximity readers
• Duress
• Fixed or mobile
Security Guards and Cameras
• Security guards
• Police entry points
• Operate surveillance mechanisms
• Respond to alarms
• Remote surveillance and
monitoring
• Video/CCTV
• Motion recognition
• Object detection
Image by Dario Lo Presti © 123RF.com.
• Robot sentries
• Drones/UAV
Reception Personnel and ID Badges
• Challenge policy
• Reception personnel and visitor logs
• Sign-in/sign-out
• Visitor information
• Two-person integrity/control
• ID badges
Topic 21B
Explain the Importance of Physical Host Security
Controls
Syllabus Objectives Covered
• 2.7 Explain the importance of physical security controls

• 4.1 Given a scenario, use the appropriate tool to assess organizational
security (Data sanitization only)
Secure Areas
• Server rooms and data centers

• Lockable cabinets
• Colocation cages
• Air gaps and demilitarized zones
Image © 123RF.com.
• Safes
• Vaults
Image © Chris Dag and shared with CC BY 2.0

Image © 123RF.com. flickr.com/photos/chrisdag/865711871.
Protected Distribution and Faraday Cages
• Protected cable distribution/protected distribution system (PDS)

• Prevent eavesdropping
• Prevent/delay cable cutting DoS
• Faraday cage
• Transient Electromagnetic Pulse Emanation Standard (TEMPEST)
Heating, Ventilation, Air Conditioning
• Cooling/warming, humidity, dust control

• Optimum temperature and humidity levels
• Moisture detection sensors
• Temperature detection sensors
• HVAC sizing
• Equipment wattage
• British Thermal Units (BTU)/hour
• Air flow
• Positive air pressure to remove contaminants
Hot and Cold Aisles
• Optimize air flow

• Place servers back-to-back
• Hot aisle/cold aisle
• Do not allow contamination of
cooled air by warmed air
Image © 123RF.com.
Fire Detection and Suppression
• Fire safety
• Fire exits and evacuation procedures
• Fire-resistant building design
• Smoke/flame detectors/alarms
• Personal fire extinguishers
• Class C for use around electrical hazard
• Sprinklers
• Dry pipe
• Pre-action
• Halon
• Clean Agent
Secure Data Destruction
• Media sanitization/remnant
removal
• Physical destruction
• Burning/incineration
• Shredding/pulping
• Pulverizing
• Degaussing
Photo by monsterkoi on Pixabay.
• Use of third-parties and
certificates of destruction
Data Sanitization Tools
• Secure disposal of electronic data

remnants
• Overwriting/disk wiping
• Zero filling
• Multiple passes
• Secure Erase (SE)
• Hard disk drives (HDD)
• Solid state drives (SSD)/flash media
• Instant Secure Erase (ISE)/crypto
erase
• Self-encrypting drives (SED)
• Delete media encryption key
Screenshot used with permission from LSoft Technologies, Inc.
Lesson 21
Summary

Sy0 601 21

Uploaded by

Copyright:

Available Formats

Sy0 601 21

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Sy0 601 21

Uploaded by

Copyright:

Available Formats

What are some physical security controls discussed?

What types of locks and access control methods are mentioned?

Lesson 21

Explaining Physical Security

• 1.2 Given a scenario, analyze potential indicators to determine the type of

Images from user macrovector © 123RF.com.

• Smart card attacks

• 2.7 Explain the importance of physical security controls

• Server rooms and data centers

Image © Chris Dag and shared with CC BY 2.0

• Protected cable distribution/protected distribution system (PDS)

• Cooling/warming, humidity, dust control

• Optimize air flow

• Secure disposal of electronic data

Screenshot used with permission from LSoft Technologies, Inc.

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.