Hello. Sign In
Standards Store




FIPS PUB 31

1974 Edition, June 1, 1974

Complete Document

GUIDELINES FOR AUTOMATIC DATA PROCESSING PHYSICAL SECURITY AND RISK MANAGEMENT



View Abstract
Product Details
Document History

Detail Summary

Not Active, See comments below

EN
Additional Comments:
W/D NO S/S
Format
Details
Price (USD)
PDF
Single User
Call for Quote
Print
In Stock
Call for Quote
PDF + Print
In Stock
$0.00 You save 30%
Add to Cart

Product Details:

  • Revision: 1974 Edition, June 1, 1974
  • Published Date: June 1974
  • Status: Not Active, See comments below
  • Document Language: English
  • Published By: National Technical Information Service (NTIS)
  • Page Count: 95
  • ANSI Approved: No
  • DoD Adopted: No

Description / Abstract:

The scope of the handbook is defined in detail in section 1.2, but generally speaking, it is concerned with physical effects or situations which affect the ADP facility. Measures to achieve controlled accessibility, a term defined in the "Controlled Accessibility Bibliography" [46]1 as the use of technological measures of hardware and software in a computer system to protect data against unauthorized access, have been excluded from this handbook. Privacy and confidentiality are defined as concepts which have to do with the nature of the data and who is authorized to have access. It should be understood, however, that it is difficult to place rigid boundaries on the various aspects of ADP security. A given measure will often achieve more than one objective. More than one discipline or function often will be required to deal effectively with a particular requirement, and so it is important to take a broad view of the subject during the study and planning stages.

The term ADP security planner is used here as a convenient title for the person(s) responsible for ADP security planning, but this should not be taken to mean that any one person can be expected to be competent in every area. Indeed, at each appropriate point sources of special knowledge are recommended. The manager of an ADP facility will derive the most from this handbook if he designates security as an on-going operational function, and provides adequate staff and budget to support the function.

The procedure suggested here for developing and implementing a physical security program can be summarized as follows:

• Analyze risk as the basis for development of a security policy.

• Select and implement appropriate security measures to reduce exposure to losses.

• Develop contingency plans for back-up operation, disaster recovery and emergencies.

• Provide indoctrination and training for personnel.

• Plan and conduct continuing tests and audits and adjust security measures and contingency plans as needed.