S 1.23 Locked doors

Initiation responsibility: Head of Site/Bldg Technical Service, Head of IT Section

Implementation responsibility: Site/Bldg Technical Service, staff members

The doors of unoccupied rooms should be locked. This will prevent unauthorised persons from obtaining access to documents and IT equipment in the given room.

In some cases, e.g. open-plan offices, it is not possible to lock the office. Then, as an alternative, each staff member should lock away his/her documents ("clear-desk policy") and secure his/her personal work area: desk, cabinet and PC (lock for floppy disk drive, keyboard lock), telephone.

If the computer is in operation, it is not necessary to lock the doors provided that a safeguarding feature has been installed which allows continued use of the computer only if a password is entered (password-assisted screen saver), the display has been cleared and booting of the computer can be effected only with a password.

When the computer is switched off, the office need not be locked provided that the booting of the computer can be effected only with a password.

If doors are left unlocked in the above cases, it must be ensured that all other objects such as sensitive documents or data media are kept out of general view.

Additional controls:

• Are sporadic checks made of whether offices are locked when they are left?

• Are staff members instructed to lock their offices during their absence?

© Copyright by Bundesamt für Sicherheit in der Informationstechnik 2000

Last Update on 6 April 2000