2542

Get a Live Demo

You need to see DPS gear in action. Get a live demo with our engineers.

White Paper Series

Check out our White Paper Series!

A complete library of helpful advice and survival guides for every aspect of system monitoring and control.

DPS is here to help.

1-800-693-0351

Have a specific question? Ask our team of expert engineers and get a specific answer!

Learn the Easy Way

Sign up for the next DPS Factory Training!

DPS Factory Training

Whether you're new to our equipment or you've used it for years, DPS factory training is the best way to get more from your monitoring.

Reserve Your Seat Today

How to Monitor Physical Threats in Your Data Center

By Morgana Siggins

March 4, 2021

Share: 

As data centers evolve with more sophisticated processes and technologies that are driving up physical demands, their environments need to be looked at more closely. Safeguarding against digital threats only is not enough - the surrounding environment must be watched proactively for threats and intrusions.

Remote network locations further highlight the need for an automated monitoring system. After all, at those sites, it's impractical and unreliable to have people physically present to check conditions such as temperature and humidity. It's critical for you, as a network technician or manager, to have an efficient system in place to know what's going on.

With today's technologies, monitoring systems can be configured to a level of detail that meets the data center's particular environmental and security demands. Each equipment rack can be considered a "mini data center" with its own requirements, so you need to a have monitoring strategy in place that supports multiple data collection points.

In this article, we'll talk more about how physical threats can be mitigated by monitoring strategies. You'll also learn guidelines and best practices for implementing monitoring devices in your facility. So, let's dive in.

DPS monitoring solutions

Which Threats Can Be Present at Data Centers?

Dangers and problems found at data centers can be classified into two main categories, depending on whether they are in the area of software and networking (digital threats) or in the realm of the physical support infrastructure (physical threats).

Data center threats

Digital Threats

When we talk about digital threats, we are referring to things such as hackers, viruses, network bottlenecks, and other accidental or malicious assaults on the security or flow of data. These issues have a high profile in the industry, and most companies have robust and actively maintained systems to defend against them.

Physical Threats

Physical problems are the ones related to your IT equipment and to your data center infrastructure. These threats can potentially be distributed anywhere throughout your data center, at variable locations that are particular to room layout and equipment positioning.

Some of the distributed physical problems fall into the following general categories:

  • Air quality threats to your equipment (temperature, humidity)
  • Liquid leaks
  • Human presence or unusual activities
  • Smoke and fire from data center hazards

Deploying Sensors

The first step to start monitoring your data center is to deploy sensors throughout the facility to gather information.

There are multiple types of sensors that can be used to provide early warning of trouble from the threats described above. While the specific types and number of sensors will vary depending on your unique scenario (in terms of what you need to monitor, budget, threat risk, etc.), there is a minimum essential set of sensors that makes sense for most data centers. They are:

  • Temperature
  • Humidity
  • Video cameras
  • Door sensors
D-Wire sensors

Aggregating Sensor Data

With the sensors selected and in place, the next step is the collection and analysis of the information received by the sensors. This is will be done by an RTU (or by multiple RTUs, depending on your needs). It will be an aggregation point where sensor data will be gathered and processed.

If your network is large enough, the RTU unit will send all the information to a central master station (that will manage the information brought by multiple units). If that's not your case, and all you need is a couple of RTUs, then your unit can be used as a single central collection point with alert and notification capabilities.

Individual sensors don't usually connect individually to the IP network. Instead, the RTU interprets the sensor information and sends alerts to the central master station and/or directly to you and your team. This distributed monitoring architecture drastically simplifies your network monitoring and reduces the management burden.

RTUs are typically deployed at the facilities your equipment is located and when paired with D-Wire sensors there will be no wiring complexity.

Physical monitoring system
Example of DPS physical sites monitoring solution.

Intelligent Action

Sensors supply the raw data, but equally important is the interpretation of this data to perform alerting, notification, and correction. As networks become more and more sophisticated, having an efficient monitoring strategy with intelligent processing of large amounts of data is critical.

The most effective and efficient way to collect and analyze sensor data and trigger appropriate action is through the RTUs as described above.

It's essential to be able to filter, correlate, and evaluate the data to determine the best course of action when out-of-bounds events happen. Effective action means alerting the right people, via the right method, with the right information.

Action is taken in one of three ways:

  • Alerting on out-of-bounds conditions that could threaten specific devices, racks, or the data center as a whole.
  • Automatic action based on specified alerts and thresholds.
  • Analysis and reporting to facilitate improvements, optimization, and fault/failure measurements.

Alerting

There are three things to establish when setting alerts: alarm thresholds (at what values should an alarm be triggered), alerting methods (how the alert should be sent and to whom), and escalation (do certain types of alarms require a different level of escalation to resolve?).

  • Alarm thresholds
    For each sensor, acceptable operating conditions should be determined and thresholds configured to produce alarms when readings exceed the limits. Our RTUs give you the flexibility to configure multiple thresholds per sensor in order to alert at informational, warning, critical, and failure levels.
    Thresholds must be set carefully to ensure maximum usefulness. There may be different thresholds that cause different alerts based on the severity of the incident. For example, a humidity threshold event might result in an email to a network tech, whereas a smoke sensor might trigger an automatic call to the fire department.
    Similarly, different threshold levels will warrant different escalation paths. For example, an unauthorized rack access event might escalate to the network tech whereas a forced entry event might escalate to the network manager.
    DPS D-Wire sensors are pre-configured with default values. When you're installing them on your network, you can adjust these values based on your equipment specifications and the sensor's location.
  • Alerting methods
    Alert information can be dispatched in multiple different ways, such as email, text messages, and SNMP traps. It's important that your alerting system is flexible and customizable so that the right amount of information is successfully delivered to the intended recipient.
    Alert notifications should include information such as the user-defined name of the sensor, sensor location, and date/time of the alarm.
    Useful monitoring alerts
  • Alert escalation
    Some alarms may require immediate attention. An intelligent monitoring system should be able to escalate specific alarms to higher levels of authority if the issue is not resolved within a specified amount of time.
    Alert escalation helps to ensure that problems are addressed on a timely basis before small issues cascade into larger problems.

Action on data

Collecting sensor data is only the first step, and if you, as the network technician, rely on user responses alone, the information will not be leveraged to maximum advantage. There are systems available that act automatically based on user-specified alerts and thresholds. For our devices, these automated responses are called derived controls.

In order to implement such smart automation, the following must be assessed:

  • Alert actions
    Based on the severity level of an alert, what automated actions should take place? These automated actions could be personnel notifications, or they could be corrective actions such as triggering dry contact points to turn on or off devices such as fans or pumps.
  • Ongoing real-time visibility of sensor data
    The ability to view individual sensor "snapshot" readings is a basic requirement. However, the ability to view individual sensor trends in real-time provides a much better picture of the situation. Interpretation of these trends allows technicians to detect broader issues and correlate data from multiple sensors.

Alerting systems should provide more than just basic threshold violation notifications. For example, our monitoring systems allow you to include additional data with the alerts. This additional information might be things like instructions on how to fix the issue, graphs, or maps. A rich alerting system of this type allows you to make more informed decisions because of the contextual data included with the alert.

In some cases, too much information may need to be filtered to be useful. For example, if you're responsible for a high-traffic data center, it would be a nuisance to have an alert every time a motion is detected in the facility. There may be instances where critical information will be lost in a sea of nuisance alerts. Thinking about this issue, our monitoring devices are equipped with the nuisance alarm filtering capability.

Now, here are some examples of intelligent interpretation and action:

  • On a temperature threshold breach, automatically turn on a fan or AC.
  • When water is detected in your remote data center, automatically turn on a sump pump.
  • When motion is detected inside your facility after normal business hours, automatically capture video and alert the security guards.
  • When a door switch indicates that a door has been open for more than 30 minutes (indicating that the door was not closed properly), send an alarm to a technician so he can check on that door.

Analysis and reporting

Intelligent monitoring systems should include not only short-term trending of sensor data but also long-term historical data as well. The best monitoring solutions should have sensor readings from weeks, months, or even years past and provide the ability to produce graphs and reports of this data.

The graphs should be able to present multiple types of sensors on the same report of comparison and analysis. The reports should be able to provide low, high, and average sensor readings in the selected time frame across various groups of sensors.

Long-term historical sensor information can be used in a variety of ways. For example, to illustrate that the data center is at capacity not because of physical space, but due to inadequate cooling, Such information could be used to extrapolate future trends as more and more equipment is added to your data center, and could help predict when the data center will reach capacity. Long-term trending analysis could be used at the rack-level to compare how equipment from different manufacturers in different racks produce more heat or run cooler, which may influence future purchases.

Sensor readings captured by the monitoring system should be exportable to open-standard protocols, allowing interoperability between your devices.

The Bottom Line

Protecting your data center against physical threats is crucial to a comprehensive security strategy. But, you need to find the proper devices that will provide you with real-time monitoring, data logging, trend analysis, intelligent alert notifications, and automated corrective actions where possible.

While the placement and methodology of monitoring equipment require assessment, decision, and design, at DPS we provide tools that follow the industry's best practices and that are available to help you in an effective monitoring system deployment.

Understanding the techniques for monitoring physical threats will enable you, as the network technician, to fill critical gaps in your overall data center security. Ultimately, you'll be able to help your company have a better ROI and achieve its business goals.

For more information about our physical monitoring equipment, send us a message.

Share: 
Morgana Siggins

Morgana Siggins

Morgana Siggins is a marketing writer, content creator, and documentation specialist at DPS Telecom. She has created over 200 blog articles and videos sharing her years of experience in the remote monitoring industry.