IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection in the Area of Infrastructure
_________________________________________________________________________________________
4.3.2 Server Room
Description
The server room primarily serves to accommodate a server,
e.g. a LAN server, a UNIX host computer or a server for a
PBX facility. In addition, server-specific documentation,
small numbers of data media, additional hardware (star
coupler, logging printer, air conditioning system) may be kept
in that room.
A server room is not occupied by regular staff; it is used only
sporadically and for short-term assignments. However, it must be borne in mind that, on account of the
accumulation of IT devices and data, significantly greater damage may be caused in a server room
than, for instance, in an office room.
Threat Scenario
The following threats (T) are assumed as regards IT baseline protection of a server room:
Force Majeure
- T 1.4 Fire
- T 1.5 Water
- T 1.7 Inadmissible temperature and humidity
Organisational shortcomings:
- T 2.1 Lack of, or insufficient, rules
- T 2.6 Unauthorised admission to rooms requiring protection
Technical Failure:
- T 4.1 Disruption of power supply
- T 4.2 Failure of internal supply networks
- T 4.6 Voltage variations / overvoltage / undervoltage
Deliberate Acts:
- T 5.1 Manipulation/destruction of IT equipment or accessories
- T 5.2 Manipulation of data or software
- T 5.3 Unauthorised entry into a building
- T 5.4 Theft
- T 5.5 Vandalism
Recommended Countermeasures (S)
For the implementation of IT baseline protection, selection of the required packages of safeguards
("modules") as described in chapters 2.3 and 2.4, is recommended.
In the following, the safeguard package for "Server Room" is set out:
_________________________________________________________________________________________
IT-Baseline Protection Manual: Otober 2000