Page 687 - (ISC)² CISSP Certified Information Systems Security Professional Official Study Guide
P. 687
space with limited access and then to establish serious hurdles to
entry (especially unauthorized entry). CCTV monitoring on the
door and motion detectors inside the space can also help maintain
proper attention to who is coming and going.
For many organizations their datacenter and their server room are one
and the same. For some organizations, a datacenter is an external
location used to house the bulk of their backend computer servers,
data storage equipment, and network management equipment. This
could be a separate building nearby the primary offices or it could be a
remote location. A datacenter might be owned and managed
exclusively by your organization, or it could be a leased service from a
datacenter provider. A datacenter could be a single-tenant
configuration or a multitenant configuration. No matter what the
variation, in addition to the concerns of a server room, many other
concepts are likely relevant.
In many datacenters and server rooms, a variety of technical controls
are employed as access control mechanisms to manage physical
access. These include, but are not limited to: smart/dumb cards,
proximity readers, biometrics, intrusion detection systems (IDSs), and
a design based around defense in depth.
Smartcards
Smartcards are credit-card-sized IDs, badges, or security passes with
an embedded magnetic strip, bar code, or integrated circuit chip. They
contain information about the authorized bearer that can be used for
identification and/or authentication purposes. Some smartcards can
even process information or store reasonable amounts of data in a
memory chip. A smartcard may be known by several phrases or terms:
An identity token containing integrated circuits (ICs)
A processor IC card
An IC card with an ISO 7816 interface
Smartcards are often viewed as a complete security solution, but they
should not be considered complete by themselves. As with any single
