Attacking with Brute Force

(OBJ 2.4)

Brute Force

• Type of attack where access to a system is gained by simply trying all of the possibilities until you break through
• Example: try every possible combination of a 4-digit password to brake it
  • Eventually you will be able to guess that 4-digit pin

Brute Force in terms of Physical Security

In terms of physically security, brute force focuses on the following

• Forcible Entry

  • Act of gaining unauthorized access to a space by physically breaking or bypassing its barriers, such as windows, doors, or fences
  • Example: Use a rock to shatter the glass in order to get access, kick the door
  • Prevention: Use high-strength doors with deadbolt locks, metal frames, or a solid core

• Tampering with security devices

  • Involves manipulating security devices to create new vulnerabilities that can be exploited
  • Example: Use mirrors to create a redirection of the line of sight of a surveillance camera
  • Prevention: To protect against tampering with security devices, have redundancy in physical security measures

• Confronting security personnel

  • Involves the direct confrontation or attack of your organization's security personnel
  • Prevention: Security personnel should undergo rigorous conflict resolution and self-defense training to mitigate risks
    • Security staff need fast communication for backup and to signal potential security breach or attack

• Ramming barriers with vehicles

  • Uses a car, truck, or other motorized vehicle to ram into the organization's physical security barriers, such as a fence, a gate, or even the side of your building
    • Most organizations are subject to this attack except for government or banks
  • Prevention: Install bollards or reinforced barriers to prevent vehicles from driving into your facilities