Jan 072010
Jeromie Jackson excellent blog, Harmonizing Regulatory Compliance and Risk Management has a great article about Mr Jackson’s physical penetration test of a data center. After failing to pick the Schlage lock to the data center, the team noticed a window which could be unmounted from the side of the door they were on. After hurdling that barrier, it was just a matter of evading the other security layers until their objective (simply leaving a note, in this case) was accomplished. An excellent overview of how even a layered security system can be compromised if the physical aspects of security are ignored.
