Physical security

PHY027

Alarm system and other building management systems interoperability

Interoperable systems must be designed carefully to avoid creating vulnerabilities.

Implementing interoperability between security alarm systems (SASs) and other building management systems can increase the threat of unauthorised system access and penetration.

Examples of other building management systems or external integrated systems (EISs) are:

  • building management systems (BMSs)
  • closed-circuit television (CCTV)
  • electronic access control systems (EACS).

When you interconnect systems, ensure your SAS cannot be controlled or disabled by any of your interconnected systems.

Your IT security team should review the implementation of any interconnection.


Interoperability in security zones 1 and 2

SASs suitable for Zone 1 and Zone 2 applications may include fully integrated EACSs as a single system.


Interoperability in security zones 3 and above

For zone 3 and higher, your SAS and EISs must be separate and independent from each other. Any interoperability must not allow the SAS to be controlled or disabled by the EIS.


Interoperability with EISs

Designers of EIS or sub-systems need to secure the EIS to prevent unauthorised access or manipulation, especially when it is interconnected with an SAS. EISs should be designed with appropriate logical and physical controls.

 

Page last modified: 2/10/2018