Penetrační test fyzických přístupů vybraného objektu

Abstract

The submitted thesis addresses the issue of penetration testing of physical accesses for the selected object. The goal of the work is to test the current state of security by using a penetration test aimed at physical entrances, supplemented by a parallel risk assessment, and to design appropriate security measures in response to identified deficiencies. The first part of the thesis defines the concepts of general theory of physical safety penetration testing, detailed typing and testing methodology. The second part of the work describes the course of the penetration test, where the author, by simulating a security incident, tested the physical access of the selected real object from the inside and outside. The practical penetration test is effectively divided into four phases, namely the preparation phase, the preliminary research associated with the preparation of test scenarios, the description of the course of the test and the reporting, where the vulnerabilities identified are assessed. To achieve more objective and comprehensive information about the existing level of security, the penetration test was appropriately complemented by a risk analysis using a comparative two methods with a different perspective. In conclusion, the results of both methods are unified and evaluated. The most basic detected shortcomings of the current security status are addressed by the design of innovative security measures, taking into account the recommended security level.