Case Study

Bollards

Bollards are another line of defense, protecting Joe's Office from accidental or intentional structural damage.

July 21, 2008CSO — Having passed the gatehouse, Joe comes to a fork in the road and goes left to end his commute in the parking lot, passing over a second retractable GRAB-sp system. Delivery trucks take the right fork; any truck that takes the left fork despite clear instructions at the gatehouse runs the risk of being grabbed.

(An aside: This approach is what James M. Atkinson, president and senior engineer at Granite Island Group, a security consultancy in Gloucester, Mass., calls "avocado" security. In his world, there's onion security, layers of defenses that are independent of each other, and avocado security, which has closely intertwined levels. Avocado is better, though not foolproof, says Atkinson. His mantra: If one man can build it, one man can break it, and he says that holds true for every aspect of security. "A clever new toy doesn't make you more secure," he says. "A high-security lock may mean it takes 15 minutes to pick a lock instead of 15 seconds, so you have to exploit the 15 minutes to do something to get in their way.")

Here, if his mind isn't already too engaged in the day's research, Joe might recall the dispute he had with his CSO during the headquarters planning and selection phase. The CSO had lobbied hard for an underground employee parking lot with its own access control system, surveillance, attendants and so forth. For cost reasons, Joe settled for a more conventional office parking arrangement, with a well-lit lot separated from the building by a row of bollards.

Bollards are a fine technology, and time-tested, too. Pop-up bollards have been around since the 1100s, says Atkinson. "There is really nothing new in security under the sun. Everything is just clever new packaging," he says. Atkinson notes that bollards have weak points—he has tied bomb-tipped broomsticks to a pickup truck, blown up a bollard and then driven his truck to the target area.

Another issue they could have is that even if someone hits the bollard, the force of the explosion will carry past the bollard, potentially causing serious damage if the bollards are set too close to the building.

Nevertheless, they provide an additional buffer against intentional or accidental damage to the building. -Michael Fitzgerald

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WEBCAST
The Surest Path to Effective and Efficient Compliance

VeriSignIn this webcast, we explore why and how — with best practices, practical tips and solutions that work — to ease your compliance challenge.

» View the webcast

Featured Sponsors
Sponsored Links

Think your data is safe? Think again. It's time to Outthink the Threat. Get eBook now

Prepare for (ISC)2® Certification With Villanova - Online

Rolling the dice with your security? Take the Self-Assessment Test now

Diebold: Frost & Sullivan Global Physical Security Systems Integrator of the Year

Revolutionizing Endpoint Security with a Single Agent

Envision Identity-Based Access Control for the Datacenter

IT Service Management: Metrics That Matter

ITCi White Paper: Challenges and Opportunities of PCI

Effective Security with a Continuous Approach to ISO 27001 Compliance

E-LOAN Maintains Reputation as a Privacy Leader with Symantec

Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands

Prudential Financial Protects its Brand with Symantec

Envision Identity-Based Access Control for the Datacenter

Digital Identity Protection and Data Security Get Personal

Welcome to the age of Service-Oriented Security (SOS)

Enabling Compliance with Converged Mainframe Security and Storage

The Case for Business Software Assurance ~ Securing Your Applications

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Learn how the new Quad-Core AMD Opteron™ processor improves performance

Configuration Audit and Control for Virtualized Environments

Take our CSO role survey and receive a copy of the results

Ponemon Study: How Much Does a Data Breach "Cost"?

Data Protection: Challenges for the Traveling User

Key strategies for C-level executives and security staff

Configuration Assessment: Choosing the Right Solution

The PCI Data Security Standard

Configuration Audit and Control for Virtualized Environments

7 Requirements of Data Loss Prevention

Information Security: Data Drains and How to Prevent Loss

How Are Open Source Development Communities Embracing Security Best Practices?

IDC Defines an Identity and Access Management Submarket

Using Likewise to Comply with PCI Data Security Standard

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

Solving Online Credit Fraud Using Device Reputation