HID Global

Who is accessing company’s most sensitive data? Where? When? And if someone without authorisation did, how would one know?

Some of the world’s best-known companies have succumbed to data breaches that proved expensive—in terms of both cost and reputation. The focus, usually, is on a digital attack. Passwords and anti-hacking procedures come under scrutiny, particularly in a world where so much of information lives in the cloud.

But there is another way that company data can fall into unauthorised hands: someone could walk right up to the server and access it physically, with equally disruptive results.

Shared data centres may increase risk for data security

The risks increase when companies use shared data centres — or “colocation” — which has become an increasingly popular option. According to 451 Research KnowledgeBase, the global colocation market could grow from $23 billion in 2014 to $37 billion by 2017. All the “big data” has to go somewhere, and shared data centres provide a cost-effective solution, even for information of the most sensitive kind.

Data centres have stringent security procedures, of course. But is it wise to fully entrust the valuable data, sensitive customer information, to a third party? Can one be certain that a third party’s security procedures meet the legal compliance commitments, to the European Data Protection Directive, the Sarbanes–Oxley Act, the PCI Data Security Standard and other personal and commercial data protection regulations?

And do the company even know who they share server space with? It could be a direct competitor.

Data centre security management - A must for any company’s agenda

Disruption of physical security and potential breach as a result may not even be deliberate or malicious. Server rooms have a steady flow of authorised traffic: cleaners, maintenance staff, repair technicians and more. Unfortunately, accidents happen.

For these reasons, data centre security management needs to be high on any company’s agenda. As high as cyber-security. In an interview with datacenterknowledge.com, Jason Cook, CTO of BT Americas, suggested: “Physical security is still one of the easiest ways to get access to data. With all of the sophistication in current technology, what’s the point, if someone can walk in and open the door?”

IBM estimates the average cost of a single data breach at $3.79 million. Fortunately, technologies that can help secure servers—even in colocation data centres—cost a lot less than that.

A mechanical-key audit trail not enough for investigation in event of breach

A high-security mechanical lock might seem like a solution. But a mechanical system can be expensive to run, due to the costs of secure key management and replacement when keys go missing. Once issued, there’s no way to change a physical key’s user rights. A mechanical-key audit trail — who had access to your servers, when, for how long — will probably not be enough to conduct a proper investigation in the event of any type of breach. Even high-security perimeter doors and CCTV-powered server room security will not suffice, if the server rack has an old-fashioned mechanical lock.

Server cabinet locks are the last line of defence against a physical breach, yet mechanical keys are still a common sight in data centres. This is becoming increasingly unsatisfactory, especially when that server could hold the key to the business success.

ASSA ABLOY Aperio® KS100 Server Cabinet Lock with real-time access control capabilities

One solution is ASSA ABLOY’s Aperio® KS100 Server Cabinet Lock. The KS100 adds real-time access control capabilities to a server cabinet, drawer or rack. It brings server racks into an existing third-party access control system, without breaking the bank. KS100 electronic locks work with smartcards using all standard RFID technologies, including iCLASS® from HID, Seos™, MIFARE® and DESFire.

Installation is quick and easy, with power coming via a Power over Ethernet (PoE) connection. Once installed, KS100 locks integrate with your access control system and communicate wirelessly through an Aperio® Communication Hub. With online integration, when any of your smart credentials is presented to the lock, access decisions are communicated from and recorded by the system wirelessly.

With Aperio®, lost cabinet keys no longer compromise server security: smart credentials are simply de-authorised and a valid replacement can be quickly re-issued. The current status of any lock can be revealed with the click of a mouse. Generating detailed audit trails is straightforward, making the KS100 invaluable for incident investigation. With Aperio® server cabinet locks, businesses have the freedom to manage access to their own equipment and data, even in colocation data centres.

Do one know exactly who last had access to the servers, and when? Install Aperio®, and next time the data manager asks, the answer is yes.

Key facts

  • The data centre colocation market could be worth $37 billion by 2017
  • Companies have a legal requirement to protect sensitive customer data, under the European Data Protection Directive and other regulations
  • Investigating any breach properly requires detailed audit trails, which mechanical keys cannot provide
  • An Aperio® KS100 Server Cabinet Lock can integrate with an installed access control system, boosting security wirelessly and adding full audit trail capabilities to server space, even in shared data centres
Share with LinkedIn Share with Twitter Share with Facebook Share with What's App Share with Facebook
Download PDF version Download PDF version

HID Global news

Which security markets are embracing touchless and contactless systems?

The idea of touchless systems has gained new levels of prominence during the last year, driven by the global COVID-19 pandemic. Contactless systems have been part of the industry’s toolbox for decades, while technologies like facial and iris recognition are finding new uses every day. We asked this week’s Expert Panel Roundtable: Which security markets are embracing touchless, contactless systems and why? 

HID Global expands RFID tag family with HID SlimFlex Ultra technical label and HID Seal Tag edTamper Aura RFID tags

HID Global, a globally renowned company in trusted identity solutions, has announced two new additions to its broad family of RFID asset-tracking tags. The HID SlimFlex Ultra technical label is optimised for the strongest durability compared to other labels, and the HID Seal Tag edTamper Aura is designed to securely track and trace highly sensitive materials and digitally detects unauthorised access to sealed containers like boxes or crates. “We continue to solve customer challenges acros...

HID Global expands physical access control credential choice with MIFARE DESFire product-based credential

Users of secure credential technologies increasingly want more choices so they can meet the specific needs of a growing variety of applications. Continuing its commitment to providing these options, HID Global, the provider of trusted identity solutions, announces the most feature-rich implementation of the latest MIFARE DESFire EV3 credential. Identifying data protection “Our credential based on NXP MIFARE DESFire EV3 delivers this technology’s full range of advanced security and...

HID Global case studies

Arcos Bosques Tower 1 selects HID Mobile access solution and readers for secure, touchless access control

HID Global, a pioneer in trusted identity solutions announced that the Arcos Bosques Torre 1 (Tower 1) has deployed its access control solutions to heighten security and better manage visitor entry.  Located in the Bosques de las Lomas neighborhood of Mexico City, the center is comprised of six buildings. The complex includes two skyscrapers and is home to high-profile law firms, industrial, mining, media, and technology companies, and one of the city’s most recognised shopping cente...

HID provides their FARGO DTC4500e High Capacity Card Printer and Encoder to enhance Attica Group’s loyalty programme

HID Global, a pioneer in trusted identity solutions, announces that maritime company Attica Group has selected its HID® FARGO® DTC4500e High Capacity Card Printer & Encoder to optimise its loyalty programme kiosks. The solution improves the user experience by instantly personalising high-quality full-colour membership cards and supports the continuous issuance needs of the loyalty programme. Attica Group is engaged in passenger shipping through SUPERFAST FERRIES, BLUE STAR FERRIES,...

Attica Group selects HID FARGO DTC4500e card printer & encoder to optimise its Seasmiles loyalty kiosks

HID Global, a globally renowned company in trusted identity solutions, has announced that maritime company, Attica Group has selected its HID FARGO DTC4500e high capacity card printer & encoder to optimise its loyalty programme. The solution improves the user experience by instantly personalising high-quality, full-colour membership cards and supports the continuous issuance needs of the loyalty programme. Seasmiles loyalty scheme Attica Group is engaged in passenger shipping through SUPE...