welcome to the introduction to physical security my name is Liz Vanderheiden physical security controls is one of the domains of the CISSP common body of knowledge and they consist of three main controls physical access technical and administrative controls physical access controls our systems are used to restrict access to a particular area they provide protection including fencing man-traps security guards guide dogs locks and biometric access controls these are the things that are visible and transparent fencing provides physical access control and could be in the form of fences gates turnstiles and man traps for those of you are studying for this CISSP you have to know the following information fences that are 3 feet to 4 feet tall are used to deter casual intruders fences there are six feet to 7 feet tall are too high to climb and fences that are 8 feet tall are used to determine intruders man traps are another example of a physical access control they consist of a toothed obey set up two doors as you can see from this graph one person must enter the man trap and shut the door behind him before he could open the door in front of him to enter the room man trap controls the flow of individuals in and out of areas to prevent piggybacking and piggybacking happens when an an authorized person enters the building and then a person that is now authorized follows that person and gains access to the system man-traps have sensors that could tell if there's more than one person passing through the man tap at the same time security guards so you would think with all this modern surveillance equipment that we would not need the services of security guards right no on the contrary more than ever we need security guards to implement the technology and provide a sound judgment and having the ability to apply judgment is one of the biggest advantage in hiring security guards in addition security guards provides a visible deterrent and not only could security guards secure your facilities they could also perform different functions such as escorting the visitors to the designated areas guard dog like their human counterparts guard dogs provide a highly visible deterrent and they have more acute and smell and hearing senses however Allah unlike their human counterpart they have a limited judgement ability so let's not forget about locks locks are one example of a physical access control they are simple to use and very inexpensive they provide access point to secure areas and for cissp candidates you have to know that the different types of locks preset programmable and electronic pipes the last one is the biometric access controls biometric access controls are called a type two factors something you are they are very accurate because it is based on a person's unique characteristics and physical attributes such as fingerprint retina and voice so they are very accurate in for use for identification for more information on biometric access control please see our video introduction to access control for cissp candidates you have to know the difference between an F R R and an F er f RR is called the false reject rate this is when authorized persons deny are denied access to the system and an FA R is called the false accept rate it means that people that are not authorised are granted access to the system so this is more critical because you don't want an authorized person gaining access to your system right so when F IR is equal to f AR this is what is called cross / error rate the second control is the technical controls they consist of a surveillance alarms and intrusion detection systems these are technical in nature for example one of the example of a technical control is the closed-circuit TVs CCTVs provide the turrent and detective controls and they also complement the security guards you can use it in conjunction of your security guards and you could record events for later analysis the last main control is administrative controls these are the policies and procedures that accompany develop properly to ensure that the physical access control and the technical controls are implemented so companies must secure the restricted areas and also companies must have a way of recording the ingress and out the ink the out the incoming and outgoing people who are gaining access to the system and companies must make sure that the emergent emergency controls are in place and that they routinely conduct training and fire drills and administrative controls is also about pre and post employment procedures for personnel that are working in the company there should have a background investigation prior to their employment in conclusion we have discussed the three domains of physical security these are the physical access control technical controls and administrative controls and we have also discussed the services that are associated with this control thank you very much for listening for more CISSP videos please visit us as leave a group comm