Author(s)

V. Pothamsetty

Abstract

Physical security systems and the corresponding networks that the systems run on form a vital component of infrastructure security. The physical security world is embracing Ethernet at a tremendous pace, and yet there has not been much focus on the security aspects of different physical security systems. In this paper, we analyze the security posture of physical security systems and present the corresponding defense mechanisms. First, we present the anatomy for the most common physical security systems: the building control and automation system (system which controls heating, ventilation, life-safety, etc in a building), the video surveillance system (video monitoring, video storage, video access etc) and the access control system (system which controls and monitors physical entry into or exit from a building such door entry, door alarm etc).We document various device components used in each of these systems, the protocols that they employ for communication, and finally layout their typical deployment network architecture. We then move on to present a detailed analysis of the defense posture of these systems using well known attack techniques and corresponding tools. Finally, we will present our findings, analyze the underlying causes of the corresponding vulnerabilities and recommend best practice counter measures to mitigate the vulnerabilities found during the analysis. 1 Introduction The physical security systems automate and/or control the access, monitoring and general operations of a physical location. Vulnerabilities in these security systems

Keywords