Basically, there are four common threats which are hardware threats, environmental threats, electrical threats and maintenance threats.
There are a few steps which can be taken for mitigation for hardware threats. The room must be locked with only authorized personnel allowed access. The room should not be accessible via a dropped ceiling, raised floor, window, ductwork, or any point of entry other than the secured access point.
If possible, use electronics access control with all entry attempts logged by security systems and monitored by security personnel. If possible, security personnel should monitor activity via security cameras with automatic recording.
Electrical threats include irregular fluctuations in voltage, such as brownouts and voltage spikes, Electrical threats, such as voltage spikes, insufficient supply voltage (brownouts), unconditioned power (noise), and total power loss can be mitigated by installing uninterruptible power supply (UPS) systems for mission-critical Cisco network devices, installing backup generator systems for mission-critical supplies, plannings for and initiate regular UPS or generator testing and maintenance procedures based on the manufacturer-suggested preventative maintenance schedule, installing redundant power supplies on critical devices, monitoring and alarm power-related parameters at the power supply and device levels.
Environment threats include very low and high temperature, moisture, electrostatic, and magnetic Interference. Threats like this should be mitigated by supplying the room with dependable temperature and humidity control systems. Always verify the recommended the recommended environmental parameters of the Cisco equipment with the supplied product documentation, removing any source of electrostatic and magnetic interference in the room. Equipping remotely monitor and alarm the environment parameters of the room would also ensure mitigation.
Maintenance threats include not having backup parts or components for critical network components, not labeling components and their cabling correctly Maintenance threats including poor handling of key electronic components, electrostatic discharge (ESD), lack of critical spares, poor cabling , poor labeling, and many more. Steps can be taken for mitigation such as label clearly all equipment cabling and secure the cabling to equipment racks to prevent accidental damage, disconnection, or incorrect termination, use cable runs, raceways, or both to traverse rack-to-ceiling or rack-to-rack connections, always follow ESD procedure when replacing or working with internal router and switch device components, maintaining a stock of critical spares for emergency use, logged off administrative interfaces when leaving a station, and use more locks on each door as no room is totally secure. When the intruders are insider secure room, nothing is left to stop them from connecting a terminal to the console port of the Cisco router or switch.
No comments:
Post a Comment