Logical, physical security integration challenges


This article can also be found in the Premium Editorial Download "Information Security magazine: How to dig out rootkits."

Download it now to read this article plus other related content.

8 Convergence Tips
Take these steps for a successful marriage of physical and IT security.

By Mark Diodati

  1. Look before you leap
    Due to the complexity of integrating heterogeneous systems, reorganizing the organization's physical and IT security teams, upgrading physical access systems and reissuing credentials, PL convergence is an ongoing process and can take at least several years to complete. Survey the organizational environment, inventory your systems, and evaluate the benefits of convergence with a healthy sense of skepticism before you consider this effort.

  2. Aim for a single authenticator system
    Many of the benefits of PL convergence result from providing a single authenticator, which enhances usability and reduces management complexity. Before beginning a convergence project, consider reducing the number of authenticators and physical access systems. This reduction may require the replacement of older physical access technologies, including those components at each door. However, multi-technology door readers and smart cards can ease the transition to a single technology.

  3. Invest in a smart card
    management system (CMS) A smart card management system is all but a requirement, unless you want to place significant burden

    Requires Free Membership to View

  1. on your users and administrators. Smart card personalization can be achieved without a CMS, but the process is manually intensive--for example, asking users to manually enroll for an X.509 certificate.

  2. Bring the team together
    Many companies with successful PL convergence deployments have shifted the responsibility for physical and IT security to a single organization, which ensures that the two security teams cooperate and work toward the same goal. Oftentimes, these integrated organizations report to a common leader such as the CSO.

  3. Integrate with identity management systems
    Identity management systems can provide enhanced usability, timely and efficient control of the user identity lifecycle across heterogeneous applications, and ease compliance. Most of the goals of PL convergence relate to identity management, so it makes sense for organizations to integrate the convergence effort into the larger identity management fabric.

    Provisioning systems can help automate the identity lifecycle: new hires, departmental changes, terminations. Without integrating the CMS and provisioning systems, the organization opts to maintain two distinct islands of identity, each with a separate set of management processes.

This was first published in September 2007

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: