Limit Physical Access
Limit physical access to organizational information systems, equipment, and the respective operating environments to authorized individuals.
Use fences, walls, barriers to prevent unauthorized access to an area. Make sure the people with physical access to machines need to have access to complete their job. An office worker does not need access to a fennec arm. Require key card access, pin access, or fingerprint scanner to allow access
Example
You manage a DoD project that requires special equipment used only by project team members [b,c]. You work with the facilities manager to put locks on the doors to the areas where the equipment is stored and used [b,c,d]. Project team members are the only individuals issued with keys to the space. This restricts access to only those employees who work on the DoD project and require access to that equipment.
References
-NIST SP 800-171r2 3.10.1
https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-171r2.pdf
-ANSI/ISA-62443-3-2-2020 3.1.16,3.1.25,4.4.3.1,4.7.5.1,4.76
-ANSI/ISA-62443-4-1-2018 3.1.7, 6.2.2, 6.5,7.2.1
-NIST SP 800-82r3 2.3.6. Physical Access Control Systems
https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-82r3.pdf
-NIST SP 800-82r3 6.2.1.1 Least Privilege
https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-82r3.pdf