The convergence of physical and information security
In these days of a focus on critical infrastructure protection, there is a strong and accelerating trend toward integrating actions taken from the perspective of physical security with information security. The reasons for this convergence are several: (1) the threats are common, (2) technology has progressed in the physical security world to rely more on IP based connectivity and management, and (3) economies of management and operation favor a shared and systems approach to security.
In an article in ComputerWorld, Mark Willoughby writes about holistic security and asserts that it "is going to have a huge impact on the enterprise, users and vendors." He argures that the stonger authenitcation stemming from an integrated approach will, among other things, promote a more effective integrated incident response.
Jack Graves talks about the synergy between physical security and IT security which can lead to reduced costs and a protection system where the total system is indeed greater than the sum of its part, in his article in CyberDefense Magazine about security system integration.
The driving force in technology toward the use of a common protocol for networking and the emegence of standards for building a bridge for integrating physical and information security have made this convergence more possible. As sensors and biometric devices more frequently have IP addresses and can be part of an integrated network, this will increase the liklihood of convergence.
Law enforcement and justice communications and data centers are perfect places to explore this convergence. For too long, it has been assumed by many that the terminal or workstation inside a police department is protected because of its location, when in fact the physical access to the workstation is not well protected, or not secured from use by those who have been granted access to the premises. As more and more sensitive data and access to multiple networks are provided to any workstation user, the physical as well as the logical access needs a new level of protection. System integrators as well as smart card makers are going to develop new solutions to make this convergence easier. Many examples already exist.
8:45:27 PM 
|
