classic | mobile
Follow us on:
Follow us on Facebook  Share via Twitter  Share via LinkedIn
 

Search...
Hi-Tech Security Solutions Business Directory


Convergence of physical and IT security
October 2004, Cyber Security

Electronic security and information security as individual, non-integrated sub-systems can create security gaps in your organisation. It is commonly acknowledged that 30% of intrusions within a company's computer system are from outside hackers; 70% are from people associated with the company, so finding the common ground where physical security and IT security systems meet will undoubtedly bring significant enterprise-wide benefits by leveraging areas of similarities within the two domains.

Identifying and exploiting these similarities can bring substantial cost-savings while streamlining your security policies. In a typical business environment, physical and IT security meet in any number of ways, including:

* The use of 'doors' to control access to restricted areas (physical and logical).

* Administrators managing PC-based network applications.

* The use of credentials (physical badges or PIN/passwords).

* Same users: company employees, contractors, visitors, etc.

* The same person to access a restricted area in the facility is accessing a restricted area in the network, PC and other IT applications.

* The use of a common network infrastructure.

Whilst not routinely done, integration can be as simple as sharing common cardholder data between physical security and IT systems. Integration can extend far beyond this, to tighter seamless integration with many of the sub-systems shown above, such that events in one domain create actions and alarms in the other domain.

Solutions through integration

Of course the real beauty of integration is that a single solution can be utilised for managing people, assets and information. Lenel has pioneered this market for convergence in the security industry, most notably with its intro-duction in 2002 of OnGuard OpenIT, which has long offered an advanced application integration service that allows realtime, bidirectional data exchange and seamless integration between OnGuard and external IT applications. As the diagram (Figure 1) shows, OpenIT is designed as the foundation for many of the integration points between physical and IT security.

Figure 1. Typical integration points between physical and IT security
Figure 1. Typical integration points between physical and IT security

This flexibility allows many unique business applications to be solved by leveraging existing available data. The integration possibilities are endless. Some of the more important areas include:

* LDAP/active directory linkages.

* Integration with SNMP.

* Digital certificate management services through PKI integration.

* OPC - OLE process control, and more.

LDAP application examples

Using OpenIT type solutions, system administrators can develop scripts and applications that allow events in one domain (security or IT) to cause appropriate actions in the other. For example:

* Login access (activation of LDAP accounts) to computers in a lab can be controlled based on whether that person's card was used to access the lab. If they did not use their card to access the lab they will be denied access to computers within the lab.

* Leaving the building by swiping the person's credential at a building egress reader will automatically deactivate the person's LDAP account; thus, preventing unauthorised use of that account.

SNMP application examples

Using SNMP, system administrators can automate delivery of alarms to e-mail systems, pagers, PDAs, etc; when any number of network-based activities occur, including notifications to the security solution of:

* A DDOS attack on the corporate network.

* A virus detection on a PC or LAN segment.

* An access denial into the company's virtual private network (VPN).

PKI application example: smartcards

Administrators can now issue smartcard logon certificates (which provide authentication) from a single cardholder enrolment workstation. Employees do not need to type CTRL+ALT+DEL and remember a user name/password. They simply insert their smartcard into a smartcard reader attached to (or integrated into) the keyboard or PC, and they are prompted for their personal identification number (PIN), thus providing a more secure way for system logon. Removing the smartcard from its reader will automatically log out the existing user.

OPC - application example

Using an integrated security solution as an OPC Client, administrators can automate their response procedures based on an alarm generated from their building automation system. For example, in a multitenant property environment, where the tenants are not managing or monitoring the activity at the premises, property managers can be notified if there is a change in the room temperature in a server room. An automatic page or e-mail can be sent to the officer in charge of the area so immediate action can take place. The system can link video to provide live surveillance, and in sophisticated environments, where wireless networks are in place, it can be sent to the officer's wireless PDA device. Because the system provides a comprehensive audit trail, critical events can be quickly investigated; thus, a consolidated report could be run showing all activity in the server room including all credential holder activity prior to the alarm.

The bottom line: finding the common ground where physical security and IT security systems meet will bring significant enterprise-wide benefits by leveraging areas of similarities within the two domains, and identifying and exploiting these similarities can bring substantial cost-savings while streamlining your security policies. In other words, the bottom line is that true convergence will have a positive impact on your bottom line.

Figure 2. The business security management process
Figure 2. The business security management process

The value of true integration with IT convergence

* Centralised physical and logical identity management.

* Unified security policies for physical and IT systems.

* IT and security departments maintain control over their domains.

* Eliminates the need for multiple credentials/tokens.

* Decrease chance for errors during enrolment/termination.

* Automate business processes.

* Reduced total cost of ownership.

* Comprehensive audit trail for investigations.

* Increase return on investment.

* Realtime monitoring of disparate systems using one user interface.

For more information contact Phil Mailes, Lenel Systems International, 0944 1483 815230, phil@lenel.com, www.lenel.com


  Share via Twitter   Share via LinkedIn      

Further reading:

  • Accessing cyber security
    November 2016, Tyco Security Products, This Week's Editor's Pick, Access Control & Identity Management, Cyber Security, Security Services & Risk Management
    Tyco Security Products is taking a proactive role in securing its range of physical security products by developing its Cyber Protection Programme.
  • Control your own privacy
    November 2016, Technews Publishing, Cyber Security
    Whether you know it or not, or whether you care or not, everything you do online is being tracked. TrackOFF protects you digital identity from fingerprinting and other nefarious online spies.
  • The app effect on security
    November 2016, Cyber Security
    While security teams focus on patching operating systems and web browsers, vulnerabilities in those two types of software typically account for a small amount of publicly disclosed vulnerabilities.
  • Datacentrix revamps Security Operations Centre
    November 2016, News, Cyber Security, Security Services & Risk Management
    Datacentrix, a provider of high performing and secure ICT solutions, has officially launched its overhauled Security Operations Centre (SOC), unveiling a highly intelligent service that provides actionable information to help organisations respond to attacks faster and more efficiently.
  • IT security drives business growth
    November 2016, This Week's Editor's Pick, Access Control & Identity Management, Cyber Security
    South African businesses highlight a 30% percent increase in revenue from new business, while almost three-quarters agree identity-centric security is critical to the business.
  • King IV looks at your data
    November 2016, J2 Software, Cyber Security, Security Services & Risk Management
    The launch of the King IV Report on Corporate Governance by the Institute of Directors in Southern Africa on 1 November provides a wake-up call for South African organisations.
  • Multi-modal security best for registered financial service providers
    October 2016, Technews Publishing, This Week's Editor's Pick, CCTV, Surveillance & Remote Monitoring, Access Control & Identity Management, Cyber Security, Integrated Solutions, Financial (Industry)
    The financial sector faces a number of security challenges that range from outright banking hall robberies, through theft of money at ATMs, internal and external fraud, as well as phishing and similar cyber threats.
  • After the data breach
    October 2016, This Week's Editor's Pick, Cyber Security, Security Services & Risk Management, Financial (Industry)
    Lifars and Fortress Strategic Communications outline steps companies need to take after they contain the data breach and initiate the process of normalising business operations.
  • Biometric skimmers are here
    October 2016, News, Cyber Security
    According to a Kaspersky Lab investigation into underground cybercrime, there are already at least twelve sellers offering skimmers capable of stealing victims’ fingerprints.
  • Great cyber security needs great people
    October 2016, This Week's Editor's Pick, Cyber Security, IT infrastructure, Training, Conferences & Events
    Solutions are not reaching their full potential thanks to a dire shortage of cyber security professionals to harness them.
  • Tyco strengthens reader-to-panel communications
    October 2016, Tyco Security Products, Access Control & Identity Management, Cyber Security
    C•CURE 9000 v2.50 event management platform now supports Open Supervised Device Protocol (OSDP), developed by the Security Industry Association (SIA) to allow for enhanced interoperability among security devices.
  • New Milestone VMS
    October 2016, Milestone Systems, CCTV, Surveillance & Remote Monitoring, Cyber Security, Integrated Solutions, Products
    Milestone XProtect 2016 R3 Advanced VMS announced with focus on total cost of ownership, performance and cyber security – making video solutions more cost-effective through innovative new features.

 
 
         
Contact:
Technews Publishing (Pty) Ltd
1st Floor, Stabilitas House
265 Kent Ave, Randburg, 2194
South Africa
Publications by Technews
Dataweek Electronics & Communications Technology
Electronic Buyers Guide (EBG)

Hi-Tech Security Solutions
Hi-Tech Security Business Directory (HSBD)

Motion Control in Southern Africa
Motion Control Buyers’ Guide (MCBG)

South African Instrumentation & Control
South African Instrumentation & Control Buyers’ Guide (IBG)
Other
Terms & conditions of use, including privacy policy
PAIA Manual
         
    Mobile | Classic

Copyright © Technews Publishing (Pty) Ltd. All rights reserved.