Network security and Smart Building systems: an important relationship
VINCI’s future “Archipel” will be an iconic Smart Building head office in which temperature and lighting can be directly adjusted via smartphone and meeting rooms reserved by geolocation.
However, the distribution of such connected objects throughout the building raises a number of network IT security issues.
By definition, a Smart Building creates connections between IT and ELV infrastructure and these connections generate potential intrusion points and security breaches within the VINCI IT system.
Merge the systems to provide better protection?
“In our discussions with the Group’s IT Department, we identified this vulnerability, which is unavoidable since it is inherent in the Smart Building” says Building Solutions Engineering and Works Director, Aymeric Tissandier.
“The Department asked us to merge the IP infrastructure of the IT and the ELV systems to take control of the all networks and thus ensure a high level of security in both.”
Incompatibility and the risk of a general breakdown
A study of this solution rapidly showed that ELV network operation could not meet IT requirements.
ELV application servers, for example, require extensive unrestricted administrator rights that are incompatible with the secure administration practices of IS departments. Pooling the two networks and their security systems would have generated excessive exposure to a general ELV system breakdown (technical management, access control, safety, etc.). The approach was therefore ruled out.
Two distinct systems for optimised security and operations
Ultimately the decision was to implement two distinct systems, one for ELV and the other for IT, protected from each other by suitable firewalls.
ELV system administration will be compatible with existing ELV practice, but less extensive than IT system administration.
This will maintain security at all levels while ensuring a genuine revolution in the end-user experience.
Did you like the article ?
