As recent as early 2023, data center (DC) security breaches were frequently making headlines. In one case, 2,000 user accounts were compromised, affecting global organizations such as Alibaba, Amazon and Apple.

The data center (DC) industry is no exception to the increasing importance of security. IBM’s Cost of a Data Center Breach 2023 report estimates that a data center security breach now costs businesses USD 4.45 million, up 27% from 2014.

Let’s examine some key security challenges DCs face today and how intelligent PDUs can support improved security and compliance for operating teams.

Physical Security in DCs refers to protecting the physical premises from theft, vandalism, unauthorized entry, and environmental hazards. Physical security controls begin with access control systems, which include anything from visitor management systems, access logs, access badges, and biometric authentication.

Other physical security measures a DC can have are surveillance cameras, alarms, and environmental controls.

This story about Tiktok's DCs in Virginia provides real-life examples of physical security challenges larger DC facilities face - unescorted visitors, unlogged or unticketed server modifications, and even accusations of staff mining.

Network Security protects data center networks and communications infrastructure against unauthorized access. Network security controls include firewalls, intrusion detection/prevention systems (IDS/IPS), virtual private networks (VPNs), SSL encryption, data encryption, network segmentation, and traffic monitoring.

With the APAC region receiving the highest number of cyber-attacks worldwide in 2022 according to IBM's X-Force Threat Intelligence Index 2023,  APAC-based companies and DCs should pay special attention to network/cybersecurity measures

To detect, investigate, and respond quickly to security incidents or breaches, data center operators need incident response and forensics procedures. All steps, roles, and responsibilities outlined in incident response plans will help minimize the impact and restore normal operations as soon as possible after security incidents have occurred.

Intelligent PDU features for a more secure DC
What makes an intelligent PDU? Besides power distribution, intelligent PDUs (iPDUs) should include a "brain" - a controller that connects to a facility's networks and systems and allows teams to make informed decisions with data and/or information.

Power Quality Measurement, Monitoring, Safeguards and Auditing
Some iPDU models may have branch circuit protection and serve as a central connection point for environmental monitoring, asset location, physical access, and other monitoring and security sensors. Other features that contribute to DC safety include outlet lockout and control, power-up sequencing to reduce power-up inrushes, the ability to remotely reboot critical equipment, and optional smart load shedding.

Additionally, Raritan’s PX series include circuit breaker trip alarms and/or forensics, and 0.5% accuracy for inlet and outlet measurements. The PX4 also has an in-built Residual Current Monitoring (RCM) option to detect current leakage.

iPDUs may allow teams to measure, monitor, and report power down at the outlet/device level by offering outlet control, device-level output measurement, and on/off reboot control. The system may even be able to send email alerts for power and environmental anomalies to enable proactive troubleshooting.

Compatibility and interoperability with monitoring and management assets
Raritan’s iPDUs come with the proprietary Xerus firmware, which empowers compatibility with most DCIMs and accessories like intelligent door access and control systems, asset tags, cameras and environmental sensors.

Here’s an example of how all these can support the physical security of the DC via timely alerts and tracking, allowing teams to respond or pre-empt potential physical security breaches:
1.       When someone approaches a cabinet and tries to unlock it, the door access system logs the access attempt and an installed camera can capture an image of the person. Depending on access permissions, the DC team may get an alert about the cabinet access.
2.       If the individual successfully opens the cabinet, and moves a rack, the DC team can receive a real-time alert of the asset removal (asset tag).
3.       If the individual leaves a door open or makes changes to environmental controls, causing fluctuations to the temperature, a leakage of fluid or other conditions, linked environmental sensors will be able to detect the anomalies and notify the team as well, allowing for prompt corrective action if necessary.

Rack-Level Security Measures
Built-in security features must be a top consideration when selecting one for a modern DC setup, the amount of connectivity an iPDU has to a DC's systems. Look for security suites that include recognized worldwide certifications which are valid and updated, encryption for PDU data and communications, password policies to control user access, firewalls and other measures that ensure the PDUs are protected from network breaches.

Regular firmware updates like those offered by Raritan for its PDUs are also important to keep iPDU setups up to date against vulnerabilities and evolving threats, especially in a fast-evolving digital landscape.