Physical Security Guide

Physical Security Guide Lead Agency Publication G1-013

Security Control Centre Space Requirements

Technical Security Branch

Technical Operations Royal Canadian Mounted Police

Revised: September 2006

Lead agency publication G1-013

RCMP Technical Security Branch September 2006

Any suggestions, revisions and comments regarding this guide should be directed to the Officer in Charge, Technical Security Branch (TSB), Technical Operations,

Royal Canadian Mounted Police, 1426 St. Joseph Blvd., Ottawa ON K1A 0R2

The development of this guide is based on the RCMP Security Control Centre Space Requirements,

formerly guide SSB-SG-7, issued November 1981, revised July 1987.

Acknowledgements

Committee members: Canadian Nuclear Security Commission (CNSC); Canadian Security Intelligence Service (CSIS);

Public Works and Government Services Canada (PWGSC); Industry Canada (IC);

Transport Canada (TC); and Treasury Board Secretariat (TBS)

© (2006) HER MAJESTY THE QUEEN IN RIGHT OF CANADA

as represented by the Royal Canadian Mounted Police (RCMP), Ottawa Canada K1A 0R2

This publication may be reproduced verbatim, in its entirety, without charge, for educational and personal purposes only. However, written permission from the RCMP is required for use of the material in edited

or excepted form, or for any commercial purpose.


RCMP Technical Security Branch September 2006

i

TABLE OF CONTENTS

1 Introduction .......................................................................................................................... 1

2 Scope ..................................................................................................................................... 1

3 Application ............................................................................................................................ 1

4 Definitions ............................................................................................................................. 2

5 Design Requirements........................................................................................................... 2

6 Operational Requirements ................................................................................................... 3

7 Environmental Requirements .............................................................................................. 4

8 Systems Design Approach .................................................................................................. 5

8.1 Understanding the requirements ...................................................................................... 5

8.2 Defining the requirements ................................................................................................ 5

8.3 Allocating resources ........................................................................................................ 6

8.4 Human-machine interface considerations ........................................................................ 6

8.5 Security Control Centre .................................................................................................... 6

8.6 Room for rack-mounted alarm equipment ....................................................................... 6

8.7 Room for wall-mounted alarm equipment ........................................................................ 7

8.8 Washroom facilities .......................................................................................................... 7

8.9 Emergency power supply ................................................................................................. 7

8.10 Telephone equipment room (or closet) ......................................................................... 7

9 References ............................................................................................................................ 7

APPENDIX A - Typical Office Space Configurations ............................................................... 1

APPENDIX B - Performance Limits for Cabinet Cooling Blowers (Informative) ................... 1

APPENDIX C - Alarm Monitoring Space Planning Factors ..................................................... 1

APPENDIX D - Ergonomic Functional Models .......................................................................... 1


RCMP Technical Security Branch 1 September 2006

1 Introduction In accordance with the Treasury Board Secretariat’s Operational Security Standard on Physical Security, a Security Control Centre (SCC), whether proprietary or off-site, is a focal point for monitoring various systems such an electronic access control system (EAC), an electronic intrusion detection system (EID) and closed-circuit video equipment (CCVE), environmental processes (EP) and industrial processes (IP). This centre will typically include other personal or life safety equipment such as a fire alarm panel. A control centre of this nature would typically only be used in larger facilities.

2 Scope This revised guide supersedes the previously published guide of the same name. It has been developed to serve as a reference which can be used in determining minimum space requirements and ergonomic Human-Machine Interface (HMI) conceptual designs when planning or designing a SCC (see Appendix A - Sample Office Space Configurations). This guide is not intended to be a design standard nor a specification for a particular location, system or network. It is intended to be a reference for use in the development of local space requirements; therefore, it should identify all areas to accommodate personnel, equipment and supplies associated with control, alarm and event monitoring activities.

3 Application The SCC should be located in a security zone. A SCC is used to monitor and control the status of equipment or systems such as electronic access control (EAC), electronic intrusion detection systems (EID), duress alarms systems, biometric identification systems, closed circuit video equipment (CCVE), emergency communications systems (911), fire alarms systems, elevators control systems, etc. Refer to RCMP security guide G1-026, Guide to the Application of Physical Security Zones for more detailed information. The SCC must have some form of mechanical or electrical control of access into the security zone and must not contravene the life safety requirements of the National Building Code of Canada, the National Fire Code of Canada and related codes, standards and guidelines administered by the Federal Fire Protection Association (FFPA). Refer to RCMP security guide G1-010, Security Connotations of the 1995 National Building Code for more detailed information on typical National Building Code security-related issues and to RCMP security guide G1-024, Control of Access for control of access issues.



4 Definitions

Control Room - core functional entity, and its associated physical structure, where control room operators are stationed to carry out centralized control, monitoring and administrative responsibilities [source: ISO 11064-3]. Control Suite - group of functionally related rooms, co-located with the control room, and including it, which house the supporting functions to the control room, such as related offices, equipment rooms, rest areas and training rooms [source: ISO 11064-3]. Control Centre - combination of control rooms, control suites and local control stations which are functionally related and all on the same site [source: ISO 11064-3]. Control Room Operator - an individual whose primary duties relate to the conduct of monitoring and control functions, usually at a control workstation, either on their own or in conjunction with other personnel both within the control room or outside [source: ISO 11064-3]. Control Workstation - single or multiple working position, including all equipment such as computers and communication terminals and furniture at which control and monitoring functions are conducted [source: ISO 11064-3]. Local Control Station - operator interface that is located near the equipment or system being monitored and/or controlled [source: ISO 11064-3].

5 Design Requirements The following issues should be taken into consideration:



a. The operator and equipment should be out of the sight and audible range of the general public. The doors, door frames and locking hardware should provide protection against force attack. Refer to RCMP security guides G1-017, Hardware and G1-018, Doors and Frames.

b. In some cases, a Sensitive Discussion Area (SDA) within the SCC needs to be designed and

managed to prevent the overhearing of protected and classified information at various levels of sound attenuation. Refer to PWGSC, Speech Security: A Best Practice Guide (2002) for more detailed information.

c. The National Building Code requires that a room to house fire alarm controls and public address

systems for evacuation purposes be set aside on the main entrance level of high-rise buildings. Such rooms must be readily accessible to firefighters during fires. The building alarm monitors, fire alarms and evacuation systems should be located in the same room.

d. In developing this guide, possible layouts with nominal clearance for the equipment were

considered. These were drawn to scale under each of the room categories then the space allocations were calculated.

e. Growth was based on identification of the key element that dictated the size of the room, e.g.

equipment racks for the equipment room, consoles for the security control room. The size of each room is therefore dependent on the number of these key elements to be housed in that room for the planned life of the building.

It is also important to acknowledge that, with the design of this type of specialized environment, it is necessary to involve specialists who are familiar with this type of project. Departments must review their existing facilities including the SCC as part of their threat and risk assessment activity to determine whether remedial measures are required.

6 Operational Requirements It is important to consider the operational requirements of the SCC before, during and after completion. Awareness of how a control center functions once the processes are defined is vital to the success of the project. Operational issues to consider include:

monitoring 24/7 operation or intermittent, operator population, job aids and working documents, fields (information, people, facilities, material, etc.), operators’ security clearance (Top Secret where required), real-time and online requirements, emergency/fire/alarm procedures, operator/task rotation, personnel’s qualification/communication skills/experiences, equipment maintenance, backup/redundancy of critical equipment, start-up/shutdown of equipment, and training programs.



7 Environmental Requirements The design specifications must include ergonomic considerations in order to provide comfort and reduce the physical stress of the operators, namely (see Appendix B - Performance Limits for Cabinet Cooling Blowers and Appendix D - Ergonomic Functional Models):

thermal environment, human factors/posture variation/body size, air distribution, lighting type (space, task and emergency) and control, acoustical environment, access flooring (optional) for easy installation and access to cables, vertical, horizontal space provision, exit, entrance, egress, walkway, flow of circulation, horizontal, vertical viewing distances, flexibility of equipment and accessory mounting, room layout flexibility to cater to any constraint, modularity to allow for future expansion, maintenance access, wheelchair clearance, identity and image must reflect corporate/departmental values, fire protection system, intrusion alarm system, anti-explosion measures, anti-seismic protection measures (Refer to National Building Code of Canada, Part 4 and CSA-S832, Seismic Risk Reduction of Operational and Functional Components in Building-2006 for more detailed information), international/federal/provincial/local codes/regulations/standards, and special standards.



8 Systems Design Approach

8.1 Understanding the requirements It is important to consider the scope of the work being undertaken (why, where, what, when and who) in order to modify the existing SCC or create a new one. There is a real need to clarify the scope, the context, the resources as well as the constraints of the project before starting the design process. It is also vital that the SCC be investigated, audited and analyzed to ensure a good and clear understanding of what needs to be integrated in the new design. This work can be done in several ways, such as:

visiting the existing SCC or a similar SCC (if possible), reviewing existing procedures, liaising with users, guards, operators and supervisors to obtain information pertinent to the SCC, consulting with other existing SCCs, and consulting with suppliers and consultants who can provide information about their own

experience. 8.2 Defining the requirements Define how the SCC should be designed to meet the needs of the organization as well as the identified scope of work by conducting a Threat and Risk Assessment (TRA) of the site, the assets, the existing



systems and the vulnerabilities. This will identify the areas that need the most protection. Defining the requirements will help prevent unnecessary expenditures. 8.3 Allocating resources Once the needs are well identified and defined, it is important that the appropriate resources be assigned at different levels. It is important to define the specific job descriptions for the centre and the tasks associated with each job. It is also essential to go through the expectations of the individual job descriptions using real life scenarios to ensure the expectations of the individuals - or the systems - are clearly understandable and feasible. Functions should be allocated to equipment or personnel in order to achieve reliable system performance with the needed sensitivity, accuracy, time, security and safety at minimum cost and with the minimum skill sets required to maintain and operate the system. 8.4 Human-machine interface considerations Human-Machine Interface (HMI) factors must be utilized in the initial design stages and should be tested with actual users in a real environment when possible. The focus should be on the needs and requirements of the users throughout the design phase. Users should strive to provide informative feedback. Minimize human errors through the use of intuitive messages, selective terminology and straightforward graphics. The design should be done with a view to requiring a minimum number of personnel for operations, maintenance and training without compromising security and performance. 8.5 Security Control Centre The SCC is a room dedicated to alarm monitoring systems. The alarm equipment should be provided in appropriate consoles that are laid out in a manner such that the operator can easily recognize an alarm condition and react to it as efficiently as possible. If the SCC is to accommodate the building’s fire alarm and evacuation systems, these systems should be housed in consoles with other monitoring and peripheral equipment such as intrusion alarm displays and controls, CCVE monitors and controls, radio equipment, telephones and intercoms. The electrical distribution panel, standby power panels or supplies, the telephone interconnecting panel, washroom and kitchen facilities shall all be located in the operating area. When two (2) or more operators are continuously on duty, the washroom and kitchen facilities may be located outside the operating area. The size of the room will depend on the number of positions the console contains. Three- and four-position alarm consoles are the most common. Five-position consoles are the maximum an operator can handle efficiently. The selection of SCC space must be based on the usable area. When planning floor space the usable area should be a minimum of 9 m², and a maximum of 15 m² per working position. Square, circular and hexagonal space arrangements are recommended for functional groups in order to maximize communications links between operators. Finally, it is recommended that additional space (up to 25%) be reserved for future expansion (see Appendix C - Alarm Monitoring Space Planning Factors for details). 8.6 Room for rack-mounted alarm equipment This room is required to accommodate alarm equipment and associated wiring. The alarm equipment is contained in racks which must be accessible from both sides for maintenance purposes. The number of racks and the size of the room will depend on the amount of equipment to be rack mounted. In addition, there may be a requirement to wall-mount equipment such as individual zone wiring.



8.7 Room for wall-mounted alarm equipment These rooms are required when all the alarm equipment is designed to be wall mounted. When multiplex systems are used, small equipment rooms will be required throughout the building and a larger one in the vicinity of the SCC. The size of these rooms will depend on the amount of equipment to be installed. In many cases, this equipment may be housed in telephone closets (recommended in restricted areas). 8.8 Washroom facilities Security is greatly enhanced by providing washroom facilities within the SCC complex. This makes it unnecessary for security personnel to leave the immediate vicinity of the SCC. 8.9 Emergency power supply There is a requirement for an emergency power supply to support the SCC. An Uninterrupted Power Supply (UPS) is mandatory for computerized alarm systems. A UPS is normally provided as part of building services, with space provided as part of the building’s mechanical/electrical room. Alternatively, a UPS could be provided as part of the alarm system, with space being provided in the equipment room. 8.10 Telephone equipment room (or closet) These are required to provide for the building’s private branch exchange (PBX) (usually one per building) and for distribution panels. The distribution panel accommodation provides space for the termination points of all communications cabling on each floor of the building. This includes both interior alarm zone wiring and remote site wiring. Termination points on each floor facilitate cabling changes and maintenance. No accommodation for a PBX is required in smaller buildings. Instead, accommodation for a main distribution point is required. These rooms may also be a convenient place to accommodate the data gathering panels for automated or multiplexed alarm systems. Refer to RCMP security guide G1-005, Guide to the Preparation of Physical Security Briefs, section A.1.2, Emergency Power - Minimum Safeguards and Examples of enhanced Safeguards, for more detailed information.

9 References

Bodyspace: Anthropometry, Ergonomics and Design, by S. Pheasant, Taylor & Francis, 1986

Evaluation of Human Work, by J.R. Wilson and N.E. Corlett, Taylor & Francis, 1995

Fitting the Task to the Man, by Etienne Grandjean, Taylor& Francis, 1988

Handbook of Control Room Design and Ergonomics, by T. Ivergard, Taylor & Francis, 1989

ISO/DIS draft standard 11064-1, “The Ergonomic Design of Control Centres - Part 1: Principles for the Design of Control Centres”, 1998

ISO/DIS draft standard 11064-3, “The Ergonomic Design of Control Centres - Part 3: Control Room Layout”, 1996 RCMP physical security guide G1-029 “Secure Rooms” http://www.rcmp-grc.gc.ca/ts-st/pubs/phys-sec/index-eng.htm

Treasury Board Secretariat’s security policies and publications



http://publiservice.tbs-sct.gc.ca/pubs_pol/gospubs/TBM_12A/siglist_e.asp


RCMP Technical Security Branch A-1 September 2006

APPENDIX A - Typical Office Space Configurations



Each additional 480 mm (19 in) equipment rack / Area: 1.4 m² (15 ft²)



Each additional 480 mm (19 in) equipment rack / Area: 2.3 m² (25 ft²)


RCMP Technical Security Branch B-1 September 2006

APPENDIX B - Performance Limits for Cabinet Cooling Blowers (Informative)

75 C

FM

150

CF

M

300

CF

M

500

CFM

800

CFM

1200 CFM

Air

(Deg

ree

Fah

renh

eit)

Heat dissipation (Kilowatts)

0 1 2 3 4 8765 9 10

40

36

32

28

24

20

16

12

8

4

CFM (cubic feet per minute) - measures the air volume movement in one minute. It is used to compare the efficiency of fans designed to cool computers or computer components. The higher the CFM rate the better.


RCMP Technical Security Branch C-1 September 2006

APPENDIX C - Alarm Monitoring Space Planning Factors

ITEM SPACE REQ.

REMARKS m2 ft2

General Office Standalone Units

Desktop equipment 1.9 20.45 Space accommodates workstation only.

Desktop equipment 2.3 24.75 Clearance for internal circulation not included.

Automated Alarm Systems Components

Keyboard printer unit 1.8 19.37

Many locations require additional space for peripherals.

Keyboard display unit 2.3 24.75

Extended keyboard display unit

3.3 35.50

Standalone printer 1.3 14

Security Control Centre

Three-position console 16.3 175

Space requirements dependent on the number of consoles. Minimum space requirements for three-position 480 mm (19 in.) cabinets.

Four-position console 18.7 201 Add 2.4 m² (26 ft²) per each additional 480 mm (19 in.) cabinet.

Equipment Rooms

Rack-mounted alarm equipment

10.5 113

Space is dependent on the number of equipment racks. Minimum to accommodate two 480 mm (19 in.) equipment racks. Add 2.3 m² (25 ft²) for each additional 480 mm (19 in.) equipment rack.

Wall-mounted alarm equipment

6.3 68 Add 1.4 m² (15 ft²) for each additional 480 mm (19 in.) equipment rack.

Washrooms 2.3 25 Provide washroom facilities for security control personnel within the SCC.

Telephone Equipment Room 2.3 25 Provide washroom facilities for security control personnel within the SCC.

Emergency Power Supply 9.3 100 Normally part of building mechanical/electrical room.


RCMP Technical Security Branch D-1 September 2006

APPENDIX D - Ergonomic Functional Models



H1

Eye position

D2

D1

d

H2

H1 = H2 – (D1 + d) H3 – H2

D2 + d

H3

Legend: H1 - the lowest height at which the visual display can be seen H2 - the height of the console H3 - the design-eye-position, measured from the floor to the outer corner of the eye the height of the console D1 - the horizontal distance between the front edge of the console and the surface of the wall panel D2 - the depth of the console d - horizontal distance between the design-eye-position and the front edge of the console (Source: I SO 11064-3)



The comfortable angles for human vision are 45 degrees horizontal and 30 degrees vertical. The quick formula to calculate the distance of operator from monitor, the height of view and the width of view are:

w : width of view h : height of view d : distance of operator from monitor

w = 2 x d x tan 22.5º = 0.8284 x d

h = 2 x d x tan 15º = 0.5354 x d



Optimal Viewing Distance

(Informative)

Monitor

Size Description

Resolu-tion

Aspect Ratio

Pixel Size (mm)

Pixel Density

(pixels/in2)

Optimal Viewing Distance

LA

RG

E

GR

OU

P

67” XGA

Ultra High Performance XGA

1024 x 768 4:3 1.33 365 13’ 11”

40” SVGA

Ultra-Low Profile POLY-Si

800 x 600 4:3 1 645 10’ 6”

50” XGA

Ultra High Performance XGA

1024 x 768 4:3 1 645 10’ 6”

67” SXGA+

Ultra High Resolution DLP

1400 x 1050 4:3 1.3 365 13’ 11”

SM

AL

L

GR

OU

P

50” SXGA+

Ultra High Resolution DLP

1400 x 1050 4:3 1 645 10’ 6”

40” WXGA

High Performance Standalone wall display

1200 x 708 15:9 0.681 1391 7’ 2”

SIN

GL

E

US

ER

30” QSGA-W

Super High Performance Desktop Display

2600 x 1600 16:10 0.250 10323 2’ 10”

22” QUXGA

Ultra High Performance Desktop Display

3800 x 2400 16:10 0.124 41959 1’ 4”

The appropriate display pixel size (or density) depends on the intended viewing distance. Furthermore, pixel size is a function of component display resolution and component display size. For example, the following have a virtually identical pixel size:

40” SVGA cube, 50” XGA cube, and 67” SXGA cube.

(Source: Activu)



(Source: I SO 11064-3)

Physical Security Guide

Documents

Transcript of Physical Security Guide