Physical risks

Information security encompasses various aspects, including physical risks that can threaten the integrity, confidentiality, and availability of data and systems.

Physical risks in information security refer to the potential harm that can arise from the physical environment or actions impacting the hardware and infrastructure used to store, process, and transmit information. Data loss of computer systems occurs without the intervention of hackers or malware.

Here are some key physical risks in information security:

• Natural disasters. Earthquakes, floods, fires, hurricanes, and other natural disasters can damage or destroy physical infrastructure such as data centers, servers, and network devices.
• Theft and vandalism. Unauthorized physical access can lead to theft of equipment like laptops, hard drives, or servers containing sensitive data. Vandalism can also disrupt operations and cause data loss.
• Power failures and interruptions. Power outages or surges can damage hardware, lead to data loss, and disrupt operations. Lack of proper power backup systems can exacerbate these issues.
• Environmental hazards. Poor environmental controls (like inadequate cooling or humidity control) can lead to hardware malfunction or damage, potentially causing data loss and downtime.
• Surveillance and eavesdropping. Unauthorized physical surveillance or eavesdropping can compromise sensitive information. This includes listening to conversations, shoulder surfing, or using devices to intercept data.
• Equipment failure. Hardware can fail due to age, manufacturing defects, or lack of maintenance, leading to data loss or system unavailability.

To mitigate these risks, organizations implement various physical security measures such as data backup, and disk mirroring. Regular audits and security training for employees are also crucial in minimizing the impact of these physical risks.

Example protection against theft or vandalism:

• Lock the room when not in use
• Use cards or keyboards to activate locks
• Screw computers to the table
• Keep windows closed, especially if you are on the ground floor. 
• CCTV video cameras
• In large firms, security guards

Questions:

1. Name the physical risks of losing computer data and explain how one of them can be prevented.

2. Explain why corporate servers are located in separate closed rooms

Exercises:

Ex. 1 (Prepared by Temirlan, Jangir, Milana, grade 12, group 1, 2021)

Exam questions: