Unit 5: Physical Security




          5.1 Need for Physical Security                                                        Notes

          Physical security is an essential part of a security plan. It forms the basis for all other security
          efforts, including data security. Physical security refers to the protection of building sites and
          equipment (and all other information and software contained therein) from theft, vandalism,
          natural disaster, man-made catastrophes, and accidental damage (e.g., from electrical surges,
          extreme temperatures, and spilled coffee). It requires solid  building construction,  suitable
          emergency preparedness, reliable power supplies, adequate climate control, and appropriate
          protection from intruders. Risk assessment process identifies the organization’s vulnerabilities.
          Then use the vulnerabilities list to set priorities on resources needed. Every enhancement of an
          identified  vulnerability in  the current  system will  generally provide  more  security  than
          previously. Enhance the system to the extent possible, and keep  a list  of improvements still
          needed.




              Task  Write the importance of physical security.

          Self Assessment


          Fill in the blanks:
          1.   ......................... refers to the protection of building sites and equipment from theft, vandalism,
               natural disaster, man-made catastrophes, and accidental damage.

          2.   ......................... process identifies the organization’s vulnerabilities.

          5.2 Physical Security: Meaning

          Physical security is defined as the security of personnel, hardware, programs, networks, and
          data from physical situations and events that could provide severe losses or harm to an enterprise,
          agency,  or organization. This involves security from fire, natural disasters, robbery,  theft,
          destruction, and terrorism.
          Physical  security is frequently unobserved (and its  significance undervalued) in support of
          more technical and dramatic concerns like hacking, virus, such as, Trojans, and spy ware. Though,
          breaches of physical security can be carried out with small or no technical information regarding
          an attacker. Furthermore, accidents and natural disasters are a part of everyday life, and in the
          long term, are unavoidable.
          Physical security should take care of the following elements:
          1.   Unauthorized access may result in lost data, altered data, altered equipment configurations
               (having a wide variety of negative results), physical damage or theft of equipment, or
               even the disclosure of private information. So, hardware should protect against internal
               and external intruders by using authentication factor. Security lock may be used.
          2.   Minimize external access. Secure rooms should only have one or two solid, fireproof, and
               lockable doors. The doors should be observable by security staff. Doors to secure areas
               should never be left open. Windows should be small and have locks.
          3.   Maintain appropriate locks. Keep doors locked when room is not in use. Maintain secure
               system for keys and combinations. If there is a breach, each compromised lock should be
               changed.





                                           LOVELY PROFESSIONAL UNIVERSITY                                   55