2.7 Physical Safety
In the discussion of information security, physical security is sometimes ignored by some people. Physics
All is to protect computer network equipment, facilities, and other media from environmental accidents such as earthquake, floods, fires and others.
Operational errors or errors and damage processes caused by various computer crime. Ensure various equipment of computer information systems
Physical security is the premise of ensuring the safety of the entire network system.
Obviously seismic, floods, operational mistakes, etc. are unpredictable, so there is no absolute physical security.
Generalized security also includes electromagnetic interference and electromagnetic information disclosure of equipment entities.
2.7.1 Environmental Safety
Environmental safety emphasizes the security protection of the environment, such as regional protection and disaster protection. Specific terms
Take the national standard GB50173-93 "Electronic Computer Room Design Specification", National Standard GB2887-89 "Calculation Station Site
Technical Conditions ", GB9361-88" Computer Space Safety Requirements ".
The location of the computer room requires quiet environment, reasonable coverage, convenient geographical channel; keep the computer room clean; use air conditioning
The system maintains constant temperature and humidity, usually requires about 22 degrees Celsius, about 50% in the room temperature. Temperature and humidity factors must
Pay attention, because the temperature and humidity has a large impact on computer components, it will change the parameters of the components, and the connector contact is not
Good, oxidative break, producing static electricity.
2.7.2 Equipment Security
Equipment security includes anti-theft, destruction, and power protection, etc.
Distribution and power supply will affect power reliability, including transient, power off, undervoltage, overvoltage, frequency stability and electricity
Source interference, etc., voltage and frequencies can be solved by various steady frequency regulating equipment, and power interference can be solved by good grounding.
Decided.
Voltage transients will produce positive and negative voltage spikes and current surges, frequent power-off and sudden power outages will cause very sensitive components.
Big influence, the continued occurrence will damage the parts. Extravalation and overvoltage will have an important impact on the load. Generally important system
It is equipped with a backup power system to deal with unpredictable power outages.
It must be paid enough for the device grounding problem. Generally, metal conductors is electrically connected to the ground to make
Preparation is in an equal potential. All devices in the computer room must be grounded. The grounding resistance must be less than the specified value,
General <3W, precision equipment must <0.1 W. Grounding includes two types, environment ground: floor grid ground, water pipe, copper plate or
Grid grounding, etc., not allowed to use lightning line, gas pipeline, etc. to be connected; equipment grounding: various electrical and electronic equipment
The grounding of the line. The grounding resistance changes with the season and considers it. See "Electronic Computer Linear Filter Setting Standard
".
2.7.3 Media Security
Media security is concerned about the safety of media data and the safety of the media itself.
Since important data from the information system needs to be saved on a variety of media, it must ensure the media and its data
Safety. It is generally provided with reliability by redundant and fault tolerance, providing availability by fault recovery.
Commonly used two-machine duplex thermal backup, the master-tolerant method such as thermal backup. For the safety of computer disk, disk overcover
The remaining array has an irreplaceable role in the best choice after comprehensively considering cost and performance, which passes data redundancy and
Check the reliability and availability of disk data.
2.7.4 Common measures
The purpose of physical security strategy is to protect hardware entities and communication links such as computer systems, web servers, printers.
From natural disasters, artificial destruction and deck attacks; ensure that the computer system has a good electromagnetic compatibility work environment;
Establish a complete safety management system to prevent illegal access to computer control rooms and various stealing, and damage activities. Matter
Safety is the guarantee of information security, and the system is not lack of or ignored. Physical security precautions are mainly reflected in the machine room
Environmental requirements, equipment physics prevention and media safety. In addition to secure server room, high reliability server
In addition, internal and external networks should be physically isolated, and the disk array should be used to perform data backups such as data to solve physical security.
Physical security is not entirely the responsibility of the system or administrator, but also the company's other departments such as administration, security, etc.
Collaborate together. To especially ensure that all important devices and servers are in the machine room, and formulate a computer room related system, unrelated personnel shall not enter the computer room. System administrators do not enter the machine room without special circumstances, if you need it from outside
The designated terminal is managed. If important server exposes everyone can be close to the outside, then no matter your mouth
What is much power set is useless, and all kinds of operating systems can be used to crack the password with a floppy disk. Assurance calculation
Physical security of various devices of machine information systems is the premise of the safety of the entire computer information system.
NSUN 2004
