Physical security involves using physical barriers and controls to protect computer hardware and data from physical threats like theft, tampering, or unauthorised access to facilities.
Key points
Definition:Physical Security: barriers and controls used to protect hardware and data from physical threats (theft, tampering, unauthorised physical access).
Protects against: theft of devices, unauthorised physical access to servers, tampering with hardware.
Exam Tip:Physical security is often overlooked but is essential — even the best digital security is useless if someone can walk in and steal the server.
Exam Tip:Physical security examples: locks on doors, keycard entry, biometric entry (e.g. fingerprint), passcode on doors, alarms, security guards, CCTV. Do NOT give 'passwords' — passwords are SOFTWARE-based, not physical.
Exam Example:Common human errors that endanger security: (1) bringing in infected USB devices — prevent by blocking USB ports, (2) downloading infected files — prevent by restricting website access, (3) leaving computers logged in — prevent by auto-lock policies.