How Physical Security Directly Affects Computer and Network Security

• Physical access defeats all network security protections.



• Bootdisks allow file system access.



• Drive imaging is simple to accomplish with access.



• Access to the internal network is simple with physical access.



• Theft of hardware can be an attack in and of itself.

Steps that Can Be Taken to Help Mitigate Risks

• Removal of floppy drives when they are unnecessary can help mitigate bootdisk attacks.



• Removal of CD-ROM devices also makes physical access attacks more difficult.



• BIOS passwords should be used to protect the boot sequence.



• USB devices are a threat and, if possible, USB drivers should be removed.



• All users need security training.



• Background checks of new hires help ensure security.



• Access controls should have layered areas and electronic access control systems.



• Electronic physical security systems need to be protected from network-based attacks.



• Authentication systems should use multiple factors when feasible.