Execution: My final task was to tailgate someone at work without having them ask for my badge. I was able to accomplish it, but only after a few attempts; it was not that easy.
Narrative/method: The way I approached my task was to walk behind someone as they are going into a restricted area and keep my badge hidden from site while attempting to follow them in. I wanted to see if people would pay no mind to someone walking in behind them, or if they would stop and make sure the person had proper ID/access to the area.
Application: In a real life situation, if a threat agent wanted to try and get physical access to a device, but the area was restricted, they might try and wait for someone who has access to open the door and casually follow them in. Once inside, they might have access to sensitive information, physical devices, and they could try to leave a way open so they can come and go as they please. It's a simple move that can lead to disastrous results.
Ethical reflection: If a person forgot their badge in the office and they are indeed an employee of the company, they might wait for someone they recognize and ask them to let them in/permission to follow them in. In that case, tailgating can be morally right, but it would still probably be against company policies. The company probably has rules in place should an employee ever forget their badge. As for how can a person use tailgating in a way that might be morally wrong? Well, as detailed above, they might want access to a restricted area where they would have the opportunity to do harm.
No comments:
Post a Comment