A Systematic Approach to Information Security Issues in Automated Physical Protection Systems and Subsystems

Automated physical protection systems and their subsystems must include technology and procedures for protecting information. Information about the physical protection systems and information processed during operation of these systems must be protected from unauthorized disclosure or modification. In addition, information required for realtime operation of the physical protection system must have high integrity and availability. Information security evaluation or accreditation of these systems, subsystems as well as information security evaluation of underlying commercial information technology (IT) products should be based on well defined information security requirements addressing unauthorized disclosure or access to the information and the maintenance of information integrity and availability.