Keeping pace with industry jargons has always been a challenge-and
continues to be. I was taken aback when I was invited recently to talk on the
onset of convergence of physical security and logical security in enterprise
networks. Logical security is the software part of any network, and includes
stuff like passwords, log-in, PKI, biometrics to name a few, and physical
security includes CCTV, log-books, alarms, locks and so on.
Jokes apart, what I discovered as part of my research was that the
convergence of logical and physical security made more sense, and was beginning
to happen. This means that instead of having a sign-in register at the factory
gate, then a card-swipe for attendance, followed by a 2-level log-in password
for getting the desktop on, then a paper coupon for lunch, and a bio-metric
password to enter your clients' server room in the data center, then a
telephonic booking and confirmation for authorizing you to board the office
bus-now there is just one device or solution to take care of all of the above.
Managing disparate security and access systems within an organization is consuming more resources. And exposure to risk remains high |
Convergence of physical and logical security means just this, and is
beginning to happen. The fact is that there is no day when one does not come
across headlines on all sorts of frauds and scams because of breach of networks.
Manning networks is getting complicated now with so many access levels, and
varied systems and processes-physical log books, user ID and passwords, CCTV,
bio-metrics, physical frisking, people working from home, on-line suppliers and
customers. No wonder that it is consuming more resources in terms of time as
well as money. And yet exposure to risk remains high.
There are quite a few other things that are driving this convergence. With a
converged network security system in place, the network can be more functional.
It's easier to open it up to more people, and offer more services, without
jeopardizing security. Therefore, network access is better, and user
productivity goes up. If processes and systems have to be streamlined, a
converged solution is a must, otherwise different departments or units will all
have their own systems.
Beyond this, at this time of globalization, many organizations are demanding
converged network access and security policies as part of compliance
requirements.
One technology that is seriously emerging as a solution to all of the above
is smart cards. The best thing about smart cards is that they can handle all of
the situations discussed so far, and can actually offer much more. And their
prices are falling. According to some estimates, there are more than a billion
of these cards, including smart cards and RFID cards in use today. On top of
this, IT and communications standards and platforms such as Windows, Unix,
Linux, Windows Mobile, Symbian et al are going all out to support smart cards.
And more than anything, with a single smart card the office door opens, the
desktop and network allow log-in, and even the bio-metric hurdle required to
enter the client's data center is taken care of.
However, there are quite a few issues that still pose a challenge to smart
cards working out for enterprise. These include costs, evolving standards, and
level of comfort with giving more access and security control to technical
solutions rather than manual. The vendors on one hand, and the CIOs on the
other, will need to work fast on removing these blocks.