Properly planned and installed physical network security systems can protect critical telecommunications infrastructure and components from theft, vandalism, intrusions, and unauthorized modifications. It is significantly less expensive and less disruptive to install physical network security systems during the building construction or renovation phase than during the building occupancy phase.
ANSI/TIA-5017 “Telecommunications Physical Network Security Standard ” was developed by the TIA TR-42.1 Commercial Building Cabling Subcommittee and published in February, 2016. This Standard specifies requirements and guidelines to protect and secure the telecommunications infrastructure (e.g. telecommunications cables, pathways, spaces, and other elements of the physical infrastructure) in customer owned premises. It establishes three levels of physical infrastructure security and provides design guidelines, installation practices, administration, management, and other additional considerations to enhance the physical security of the telecommunications infrastructure.
ANSI/TIA-5017 Content
- Security Planning and Risk Assessment
- Design Guidelines
- Installation Guidelines
- Additional Guidelines and Recommendations for Cabling Security Levels
- Physical Network Security Guidelines
- Intelligent Building Systems for Security
- Administration Considerations for Security
Physical Infrastructure Security Levels
TIA-5017 recognizes three levels of cabling infrastructure security for various security needs:
- SL1 – Basic Security Installation
- SL2 – Tamper Resistance Installation
- SL3 – Critical Security Installation
TIA-5017 recommends that an AIM system be considered as an additional means to enhance the security of the cabling infrastructure. The following automated administration capabilities are called out:
- Changes to patch cord connectivity can be detected
- Port availability status on network equipment can be monitored in real time
- Critical network circuits can be identified and breaches reported in real time
- Device connections can be detected and reported and their location identified
- Integration with security cameras can be supported to record events
- Communication and data exchange with other systems and databases is supported
- Emergency call origination location can be identified and reported
- AIM components can be secured