AP Cybersecurity Unit 2

Securing Physical Spaces

This unit shifts security from accounts to rooms, devices, entry points, storage areas, visitor flow, and evidence from physical access controls.

Defender Lens

Think like a site planner: who needs to enter, what they need to use, what could be taken or altered, and which control creates accountability without blocking legitimate work.

Detailed Study Notes

What to understand before practice

Read these notes slowly, then connect each idea to the topic panels below.

Physical access can become digital compromise

Cybersecurity is not limited to screens and networks. If someone can enter a room, view a password, take a laptop, plug into a network port, or use an unlocked device, they may gain digital access without attacking software at all.

Physical spaces contain assets and pathways. A classroom, lab, server closet, front desk, or storage cabinet has different people, devices, records, and visitor patterns. Good security fits the space instead of applying the same control everywhere.

The strongest recommendations often combine people, process, and technology: visitor badges, escort rules, locked storage, screen locks, sign-out records, and awareness about shoulder surfing or tailgating.

Exam Connection

When the prompt describes a room or device location, do not jump straight to encryption or firewall answers unless the physical access path is also addressed.

Controls can prevent, deter, detect, or document

A lock or badge reader can prevent unauthorized access. A camera may deter behavior and help investigate later. A sign-out sheet documents who had responsibility. A tamper-evident seal shows that something may have been opened.

Detection controls are only useful when someone reviews them and knows what action follows. A camera that no one checks or an inventory record that is never reconciled provides weak operational value.

A control should match the asset. A visitor sign-in process may be enough for a public lobby, while a server closet requires stricter access control and better audit evidence.

Exam Connection

Identify whether the question asks for prevention, detection, accountability, or recovery. The best control depends on that verb.

Usability matters in physical security

Physical controls fail when they make normal work too difficult. If a policy causes students or staff to prop open doors, share badges, or skip sign-out steps, the real system is less secure than the written rule.

Good designs make the secure action the easy action. Examples include a convenient visitor desk, clear badge expectations, automatic screen locks, labeled storage, and simple reporting for missing devices.

Security tradeoffs should be named. A stricter access rule may improve accountability but slow movement; more cameras may improve investigation but create privacy concerns.

Exam Connection

For free-response questions, a short tradeoff sentence can strengthen the answer when the recommendation affects school operations or privacy.

Physical evidence should be correlated

A missing device, unknown visitor, or open cabinet should not be investigated from one clue alone. Useful evidence may include badge logs, camera footage, sign-out sheets, Wi-Fi connection logs, device management records, and staff schedules.

Evidence has limits. Badge logs show a credential was used, not always the person holding it. Camera footage may have blind spots. A sign-out sheet can be wrong or incomplete.

A careful analyst builds a timeline: when the asset was last known safe, who had access, what changed, what logs support that story, and what action should happen next.

Exam Connection

Avoid claiming certainty from one physical clue. Phrase conclusions as supported by evidence and recommend the next record to check.

Assets, Spaces, and Exposure

A physical space contains assets: laptops, servers, badges, paper records, network ports, cameras, storage cabinets, and people.

Apply It

Map where an asset lives, who touches it, what happens if it is lost or changed, and whether the space supports that risk level.

Avoid This Trap

A locked door does not protect data if credentials are taped to the monitor or devices remain signed in.

Study Move

Sketch a room and mark assets, entrances, blind spots, shared equipment, and visitor paths.

Preventive Physical Controls

Locks, badges, sign-in processes, visitor escorts, cable locks, storage cabinets, and restricted areas reduce unauthorized physical access.

Apply It

Match control strength to the asset. A public classroom printer needs different protection than an administrator laptop cart.

Avoid This Trap

Security that blocks normal school operations may be ignored. AP answers should balance protection and usability.

Study Move

Rank three controls by strength, cost, friction, and evidence value.

Detection and Accountability

Cameras, door logs, checkout sheets, tamper-evident seals, and inventory records help investigate what happened after an incident.

Apply It

Detection controls are strongest when they are reviewed and correlated with user schedules or device records.

Avoid This Trap

A camera is not a mitigation for every risk. It detects or deters, but it may not prevent access by itself.

Study Move

Given a missing device, list the first five records you would check and what each could prove.

Tailgating, Shoulder Surfing, and Device Handling

Physical attacks often use ordinary behavior: following someone through a door, watching a code entry, borrowing an unlocked device, or plugging into an exposed port.

Apply It

Use awareness, badges, clean-desk habits, screen locks, port control, and escort rules as layered defenses.

Avoid This Trap

Do not focus only on burglars. A student, visitor, contractor, or former staff member can create physical risk.

Study Move

Write a one-paragraph policy for shared tablets that covers storage, sign-out, screen lock, and incident reporting.

Evidence Drill

Practice the AP Cyber evidence habit

A laptop cart is missing one device after a robotics meeting. Decide which evidence matters more: badge logs, sign-out sheet, camera view, Wi-Fi association logs, or teacher schedule. Explain why.

Review Questions

1Why can physical access become a cybersecurity issue?
2What is one control that prevents access and one control that helps investigate after access?
3How would you reduce tailgating without making every student late to class?

Can-Do Checklist

Can distinguish preventive, detective, and deterrent physical controls.
Can explain tailgating and shoulder surfing in school-friendly terms.
Can recommend controls that preserve normal learning workflows.
Can connect physical access to digital account and data risk.

Key Terms

physical controltailgatingdeterrencebadge loginventorychain of custodyvisitor accessclean desk

Exam Moves

Underline the protected asset and the suspicious signal before looking at choices.
Reject answers that change the scenario, overreact without evidence, or solve a different risk.
Write in the order: evidence, risk, recommendation, reason the recommendation works.
Do not claim certainty from one clue. Use language such as suggests, indicates, or should be investigated when evidence is partial.

Practice This Unit