Data centre requires double protection

Johannesburg, 02 Jun 2009

The security solution of any IT network should protect the organisation against both digital and physical threats, says Michael Zlatic, senior product manager, APC by Schneider Electric.

While many security solutions focus mainly on the digital threat, the physical threat to the data centre should not be undermined, according to Zlatic. IT assets must be afforded a high level of protection or suffer the same potentially catastrophic fate of a digital threat, he adds.

“Regulations such as Sarbanes-Oxley and HIPAA continue to highlight the importance of a more proactive approach to guarding the physical hardware and the data stored within,” states Zlatic.

Protection from physical threats requires significantly different approaches to security, such as networked appliances, sensors, access controls and cameras designed to eliminate disruption or downtime to the IT infrastructure. Zlatic mentions three main components that comprise security and environmental monitoring in a data centre: environment, surveillance and access control.

Firstly, he says, the measurement of key health and environment variables such as inlet/cold aisle temperature, inlet/cold aisle humidity, airflow, and the presence of foreign fluids, begins to depict the environment that the IT assets currently experience.

“Secondly, by employing a surveillance system that includes an integrated video element, recorded clips can provide proof of who accessed the IT assets, when the event occurred, whether it is human or environmental, and a visual record of what happened,” Zlatic adds.

Thirdly, he explains, electronic systems can limit access to each rack based on the credentials of a proximity card carried by every prospective user. Without proper rights, access can be denied and a log file generated and stored for future reference.

Businesses should carefully consider the implications of downtime, including lost revenue, decreased customer support and reduced confidence, warns Zlatic. “Protecting IT assets from physical threats has become a "must have" for the present and future,” he concludes.