How Physical Security Directly Affects Computer and Network Security - Physical access defeats all network security protections.
- Bootdisks allow file system access.
- Drive imaging is simple to accomplish with access.
- Access to the internal network is simple with physical access.
- Theft of hardware can be an attack in and of itself.
Steps that Can Be Taken to Help Mitigate Risks - Removal of floppy drives when they are unnecessary can help mitigate bootdisk attacks.
- Removal of CD-ROM devices also makes physical access attacks more difficult.
- BIOS passwords should be used to protect the boot sequence.
- USB devices are a threat and, if possible, USB drivers should be removed.
- All users need security training.
- Background checks of new hires help ensure security.
- Access controls should have layered areas and electronic access control systems.
- Electronic physical security systems need to be protected from network-based attacks.
- Authentication systems should use multiple factors when feasible.
|