Hardware SecurityFor a proper discussion of computer hardware security to be done, it is important to mention some hardware components of a computer.Hardware security amongst other things will focus on the following: 1) Hard drives 2) The Central Processing Unit (CPU) 3) the monitor 4) the mouse 5) the speakers 6) the scanners 7) the key board
(i) Hard drives are the storage area of the computer system, where all programs and applications are stored written to. The hard drive works in parallel with the memory (RAM) and the motherboard to read and write through the system. (ii) The Central Processing Unit on the other hand is the brain of the computer. This is where computer processes the data. It is connected to the motherboard and works alongside other components processing strings of data which allows for data and applications to render and run. (iii) The monitor is where the results of the activities going on within the computer is displayed in a readable form for the users. They are of different colours and resolution.
8) printer
Hardware Security - What to do to secure your hardware The major goal of hardware security is that of availability. There are three major types of security controls that must be put in place to ensure effective hardware security. They are:
1) Physical Security These can be analysed as follows:-
a) Locate computer and facilities such that it will not be open to direct physical attack.
b) In the building where the computer and facilities are located: i) provide good gate at the entrance of the building, ii) provide secure locks iii) provide security guards
c) Within the building where the facilities are installed i) provide swipe card or personnel identification cards. ii) Install closed-circuit television (CCTV) where necessary.
d) Provide protection against the cables and communication systems by:- i) implementing concealed installation ii) use armoured conduit iii) avoid routes which is exposed or through public access areas iv) Alternative feeds or routing in case of any incident
e) Desktops and Laptops and their components should be protected against theft by using physical locks.
2) Maintain a good back up policy There must be provision for RAID (Redundant Array of Inexpensive Disc) within the system so that a failure of , for example, a disk will automatically switch over to another previously redundant disk. Also, the systems must be backed up at regular intervals, daily or weekly, as the case may be . The backed up media must be sent to an off-site location in order to preserve it. There must be adequate provision for business recovery. This can be in the form of a cool site or hot site depending on the criticality of the information we are protecting.
3) Environmental Security This covers areas like Power, Humidity, Flood e.t.c i) provide equipment which can prevent natural hazards like fire (i.e smoke detector) and flood i) install Intruders Alarms ii) provide against power failure by installing Uninterrupted Power Supply (UPS) or power surge (power stabiliser)
|
We will also discuss first three items mentioned above (i.e. hard drives which is inside the black object standing between the scanner and the monitor, samse with the CPU and the monitor in the photograph is also black in colour when not in use but it brings out beatiful colours when in use) in more details.
