iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST EN 50600-2-5:2021

(Main)

Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems

Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems

This document addresses the physical security of data centres based upon the criteria and classifications for “availability”, “security” and “energy efficiency enablement” within EN 50600 1.
This document provides designations for the data centres spaces defined in EN 50600 1.
This document specifies requirements and recommendations for those data centre spaces, and the systems employed within those spaces, in relation to protection against:
a)   unauthorized access addressing organizational and technological solutions;
b)   intrusion;
c)   fire events igniting within data centres spaces;
d)   other events within or outside the data centre spaces, which would affect the defined level of protection.
NOTE   Constructional requirements and recommendations are provided by reference to EN 50600 2 1.
Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and are covered by other standards and regulations. However, the information given in this document can be of assistance in meeting these standards and regulations.

Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5: Sicherungssysteme

This document addresses the physical security of data centres based upon the criteria and classifications for "availability", "security" and "energy efficiency enablement" within EN 50600 1.
This document provides designations for the data centres spaces defined in EN 50600 1.
This document specifies requirements and recommendations for those data centre spaces, and the systems employed within those spaces, in relation to protection against:
a)   unauthorized access addressing constructional, organizational and technological solutions;
b)   fire events igniting within data centres spaces;
c)   other events within or outside the data centre spaces, which would affect the defined level of protection.

Technologie de l'information - Installations et infrastructures de centres de traitement de données - Partie 2-5: Systèmes de sécurité

Le présent document s'applique à la sécurité physique des centres de traitement de données selon les critères et classifications de « disponibilité », de « sécurité » et de « validation d'efficacité énergétique » de l'EN 50600 1.
Le présent document fournit des désignations pour les espaces de centre de traitement de données définis dans l'EN 50600 1.
Le présent document spécifie les exigences et recommandations relatives à ces espaces de centre de traitement de données, ainsi que les systèmes qui y sont utilisés, par rapport à la protection contre:
a)   les accès non autorisés aux solutions organisationnelles et technologiques;
b)   les intrusions;
c)   les incendies au sein d'espaces de centre de traitement de données;
d)   d'autres événements à l'intérieur ou à l'extérieur des espaces de centre de traitement de données, qui affectent le niveau de protection défini.
NOTE   Les exigences et recommandations de construction sont fournies en référence à l’EN 50600 2 1.
Les exigences relatives à la sécurité et à la compatibilité électromagnétique (CEM) ne relèvent pas du domaine d'application du présent document et sont couvertes par d'autres normes et réglementations. Toutefois, les informations fournies dans le présent document peuvent s'avérer utiles pour satisfaire à ces normes et réglementations.

Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5. del: Varnostni sistemi

General Information

Status
Published
Public Enquiry End Date
30-Jul-2020
Publication Date
05-May-2021
ICS
35.030 - IT Security
Technical Committee
ELI - Electrical and communication installations
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
05-May-2021
Due Date
10-Jul-2021
Completion Date
06-May-2021
Ref Project
EN 50600-2-5:2021 - Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems

Relations

Replaces
SIST EN 50600-2-5:2016 - Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems
Effective Date
01-Jun-2021
Replaces
SIST EN 50600-2-5:2016 - Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems
Effective Date
07-Jun-2022

Buy Standard

EN 50600-2-5:2021EN 50600-2-5:2021
PreviousNext
Standard
EN 50600-2-5:2021
English language
40 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day
prEN 50600-2-5:2020prEN 50600-2-5:2020
PreviousNext
Draft
prEN 50600-2-5:2020
English language
39 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST EN 50600-2-5:2021
01-junij-2021
Nadomešča:
SIST EN 50600-2-5:2016
Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5.
del: Varnostni sistemi
Information technology - Data centre facilities and infrastructures - Part 2-5: Security
systems
Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5:
Sicherungssysteme
Technologie de l'information - Installations et infrastructures de centres de traitement de
données - Partie 2-5: Systèmes de sécurité
Ta slovenski standard je istoveten z: EN 50600-2-5:2021
ICS:
35.030 Informacijska varnost IT Security
SIST EN 50600-2-5:2021 en
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 50600-2-5:2021

---------------------- Page: 2 ----------------------
SIST EN 50600-2-5:2021


EUROPEAN STANDARD EN 50600-2-5

NORME EUROPÉENNE

EUROPÄISCHE NORM
April 2021
ICS 35.020; 35.110; 35.160 Supersedes EN 50600-2-5:2016 and all of its
amendments and corrigenda (if any)
English Version
Information technology - Data centre facilities and infrastructures
- Part 2-5: Security systems
Technologie de l'information - Installations et infrastructures Informationstechnik - Einrichtungen und Infrastrukturen von
de centres de traitement de données - Partie 2-5: Systèmes Rechenzentren - Teil 2-5: Sicherungssysteme
de sécurité
This European Standard was approved by CENELEC on 2021-03-22. CENELEC members are bound to comply with the CEN/CENELEC
Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC
Management Centre or to any CENELEC member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by translation
under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the
same status as the official versions.
CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the
Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.


European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2021 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.
 Ref. No. EN 50600-2-5:2021 E

---------------------- Page: 3 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
Contents Page
European foreword . 5
Introduction . 6
1 Scope . 9
2 Normative references. 9
3 Terms, definitions and abbreviations . 10
3.1 Terms and definitions . 10
3.2 Abbreviations . 11
4 Conformance . 11
5 Physical security . 12
5.1 General . 12
5.2 Risk analysis and management . 12
5.3 Designation of data centre spaces: Protection Classes . 13
6 Protection against unauthorized access . 13
6.1 General . 13
6.1.1 Data centre configuration . 13
6.1.2 Protection Classes . 14
6.1.3 Protection Classes of specific infrastructures . 16
6.1.4 Levels for access control . 16
6.2 Access to the data centre premises . 17
6.2.1 Premises with external physical barriers . 17
6.2.2 Premises without external physical barriers . 18
6.2.3 Roofs . 19
6.2.4 Access routes . 19
6.2.5 Parking . 19
6.2.6 Employees and visitors . 20
6.2.7 Pathways . 20
6.2.8 Cabinets, racks and frames . 21
6.3 Implementation . 21
6.3.1 Protection Class 1 . 21
6.3.2 Protection Class 2 . 22
6.3.3 Protection Class 3 . 22
6.3.4 Protection Class 4 . 23
7 Protection against intrusion to data centre spaces . 24
7.1 General . 24
7.2 Level for the detection of intrusion . 24
7.3 Implementation . 24
7.3.1 Protection Class 1 . 24
7.3.2 Protection Class 2 . 25
7.3.3 Protection Class 3 . 26
7.3.4 Protection Class 4 . 26
2

---------------------- Page: 4 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
8 Protection against fire events igniting within data centre spaces . 27
8.1 General . 27
8.1.1 Protection Classes . 27
8.1.2 Fire compartments and barriers . 28
8.1.3 Fire detection and fire alarm systems . 28
8.1.4 Fixed firefighting systems . 28
8.1.5 Portable firefighting equipment . 30
8.2 Implementation . 31
8.2.1 Protection Class 1 . 31
8.2.2 Protection Class 2 . 31
8.2.3 Protection Class 3 . 31
8.2.4 Protection Class 4 . 31
9 Protection against environmental events (other than fire) within data centre spaces . 31
9.1 General . 31
9.2 Implementation . 32
9.2.1 Protection Class 1 . 32
9.2.2 Protection Class 2 . 32
9.2.3 Protection Class 3 . 32
9.2.4 Protection Class 4 . 32
10 Protection against environmental events outside the data centre spaces . 33
10.1 General . 33
10.2 Implementation . 34
10.2.1 Protection Class 1 . 34
10.2.2 Protection Class 2 . 34
10.2.3 Protection Class 3 . 34
11 Systems to prevent unauthorized access and intrusion . 34
11.1 General . 34
11.2 Technology . 35
11.2.1 Security lighting . 35
11.2.2 Video surveillance systems . 36
11.2.3 Intruder and holdup alarm systems . 37
11.2.4 Access control systems . 37
11.2.5 Event and alarm monitoring . 37
Annex A (informative) Pressure relief: Additional information . 38
A.1 General . 38
A.2 Design considerations . 38
Bibliography . 40

Figures

Figure 1 — Schematic relationship between the EN 50600 standards . 7
Figure 2 — Risk analysis and management concepts . 13
Figure 3 — Protection Classes within the 4-layer physical protection model . 15
3

---------------------- Page: 5 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
Figure 4 — Protection Class islands . 15
Figure 5 — Connections between Protection Class islands . 16
Figure 6 — Example of Protection Classes applied to data centre premises with external barriers18
Figure 7 — Example of Protection Classes applied to data centre premises without external barriers

19

Tables

Table 1 — Protection Classes against unauthorized access. 14
Table 2 — Options for access control . 17
Table 3 — Options for intrusion detection . 24
Table 4 — Protection Classes against internal fire events . 27
Table 5 — Protection Classes against internal environmental events . 31
Table 6 — Protection Classes against external environmental events . 33
Table 7 — Elements of systems for the prevention of unauthorized access . 35
4

---------------------- Page: 6 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
European foreword
This document (EN 50600-2-5:2021) has been prepared by CLC/TC 215 “Electrotechnical aspects of
telecommunication equipment”.
The following dates are fixed:
• latest date by which this document has to be (dop) 2022-03-22
implemented at national level by publication of
an identical national standard or by
endorsement
• latest date by which the national standards (dow) 2024-03-22
conflicting with this document have to be
withdrawn
This document supersedes EN 50600-2-5:2016 and all of its amendments and corrigenda (if any).
This document includes the following significant technical changes with respect to EN 50600-2-5:2016:
a) technical update to all clauses in response to user feedback;
b) new Clause 7 on Protection Classes against intrusion to data centre spaces added and Clause 6
restructured accordingly;
c) references to relevant provisions of EN 50600-2-1:2021 added to highlight the respective links to
constructional requirements;
d) various editorial updates.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. CENELEC shall not be held responsible for identifying any or all such patent rights.
This document has been prepared under a mandate given to CENELEC by the European Commission and
the European Free Trade Association.
5

---------------------- Page: 7 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
Introduction
The unrestricted access to internet-based information demanded by the information society has led to an
exponential growth of both internet traffic and the volume of stored/retrieved data. Data centres are housing
and supporting the information technology and network telecommunications equipment for data processing,
data storage and data transport. They are required both by network operators (delivering those services to
customer premises) and by enterprises within those customer premises.
Data centres usually provide modular, scalable and flexible facilities and infrastructures to easily
accommodate the rapidly changing requirements of the market. In addition, energy consumption of data
centres has become critical both from an environmental point of view (reduction of environmental footprint)
and with respect to economical considerations (cost of energy) for the data centre operator.
The implementation of data centres varies in terms of:
a) purpose (enterprise, co-location, co-hosting, or network operator);
b) security level;
c) physical size;
d) accommodation (mobile, temporary and permanent constructions).
The needs of data centres also vary in terms of availability of service, the provision of security and the
objectives for energy efficiency. These needs and objectives influence the design of data centres in terms of
building construction, power distribution, environmental control, telecommunications cabling and physical
security as well as the operation of the data centre. Effective management and operational information is
important in order to monitor achievement of the defined needs and objectives.
Recognizing the substantial resource consumption, particularly of energy, of larger data centres, it is also
important to provide tools for the assessment of that consumption both in terms of overall value and of
source mix and to provide Key Performance Indicators (KPIs) to evaluate trends and drive performance
improvements.
At the time of publication of this document, the EN 50600 series is designed as a framework of standards,
technical specifications and technical reports covering the design, the operation and management, the key
performance indicators for energy efficient operation of the data centre as well as a data centre maturity
model.
The EN 50600-2 series defines the requirements for the data centre design.
The EN 50600-3 series defines the requirements for the operation and the management of the data centre.
The EN 50600-4 series defines the key performance indicators for the data centre.
The CLC/TS 50600-5 series defines the data centre maturity model requirements and recommendations.
The CLC/TR 50600-99-X Technical Reports cover recommended practices and guidance for specific topics
around data centre operation and design.
This series of documents specifies requirements and recommendations to support the various parties
involved in the design, planning, procurement, integration, installation, operation and maintenance of
facilities and infrastructures within data centres. These parties include:
1) owners, operators, facility managers, ICT managers, project managers, main contractors;
2) consulting engineers, architects, building designers and builders, system and installation designers,
auditors, test and commissioning agents;
3) facility and infrastructure integrators, suppliers of equipment;
4) installers, maintainers.
6

---------------------- Page: 8 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
At the time of publication of this document, the EN 50600-2 series comprises the following documents:
EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building
construction;
EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply
and distribution;
EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental
control;
EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:
Telecommunications cabling infrastructure;
EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security
systems;
CLC/TS 50600-2-10, Information technology — Data centre facilities and infrastructures — Part 2-10:
Earthquake risk and impact analysis;
The inter-relationship of the documents within the EN 50600 series is shown in Figure 1.

Figure 1 — Schematic relationship between the EN 50600 standards
EN 50600-2-X documents specify requirements and recommendations for particular facilities and
infrastructures to support the relevant classification for “availability”, “physical security” and “energy efficiency
enablement” selected from EN 50600-1.
EN 50600-3-X documents specify requirements and recommendations for data centre operations, processes
and management.
EN 50600-4-X documents specify requirements and recommendations for key performance indicators (KPIs)
used to assess and improve the resource usage efficiency and effectiveness, respectively, of a data centre.
This document addresses the physical security of facilities and infrastructure within data centres together
with the interfaces for monitoring the performance of those facilities and infrastructures in line with
EN 50600-3-1 (in accordance with the requirements of EN 50600-1).
This document is intended for use by and collaboration between architects, building designers and builders,
system and installation designers and security managers among others.
7

---------------------- Page: 9 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
This series of documents does not address the selection of information technology and network
telecommunications equipment, software and associated configuration issues.
8

---------------------- Page: 10 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
1 Scope
This document addresses the physical security of data centres based upon the criteria and classifications for
“availability”, “security” and “energy efficiency enablement” within EN 50600-1.
This document provides designations for the data centres spaces defined in EN 50600-1.
This document specifies requirements and recommendations for those data centre spaces, and the systems
employed within those spaces, in relation to protection against:
a) unauthorized access addressing organizational and technological solutions;
b) intrusion;
c) fire events igniting within data centres spaces;
d) environmental events (other than fire) within the data centre spaces which would affect the defined level
of protection;
e) environmental events outside the data centre spaces which would affect the defined level of protection.
NOTE Constructional requirements and recommendations are provided by reference to EN 50600-2-1.
Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and
are covered by other standards and regulations. However, the information given in this document can be of
assistance in meeting these standards and regulations.
2 Normative references
The following documents are referred to in the text in such a way that some or all of their content constitutes
requirements of this document. For dated references, only the edition cited applies. For undated references,
the latest edition of the referenced document (including any amendments) applies.
EN 3 (all parts), Portable fire extinguishers
EN 54 (all parts), Fire detection and fire alarm systems
EN 54-20:2006, Fire detection and fire alarm systems — Part 20: Aspirating smoke detectors
EN 12845, Fixed firefighting systems — Automatic sprinkler systems — Design, installation and maintenance
EN 13565-2, Fixed firefighting systems — Foam systems — Part 2: Design, construction and maintenance
CEN/TS 14816, Fixed firefighting systems — Water spray systems — Design, installation and maintenance
CEN/TS 14972, Fixed firefighting systems — Watermist systems — Design and installation
EN 16750, Fixed firefighting systems — Oxygen reduction systems — Design, installation, planning and
maintenance
EN 50131 (all parts), Alarm systems — Intrusion and hold-up systems
EN 50136 (all parts), Alarm systems — Alarm transmission systems and equipment
EN 50518, Monitoring and Alarm Receiving Centre
EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General concepts
9

---------------------- Page: 11 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
EN 50600-2-1:2021, Information technology — Data centre facilities and infrastructures — Part 2-1: Building
construction
EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply
and distribution
EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental
control
EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:
Telecommunications cabling infrastructure
EN 60839-11-1, Alarm and electronic security systems — Part 11-1: Electronic access control systems -
System and components requirements (IEC 60839-11-1)
EN 60839-11-2, Alarm and electronic security systems — Part 11-2: Electronic access control systems -
Application guidelines (IEC 60839-11-2)
EN 62305 (series), Protection against lightning (IEC 62305 series)
EN 62676-1-1, Video surveillance systems for use in security applications — Part 1-1: System requirements
— General (IEC 62676-1-1)
3 Terms, definitions and abbreviations
3.1 Terms and definitions
For the purposes of this document, the terms and definitions given in EN 50600-1 and the following apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https://www.iso.org/obp
— IEC Electropedia: available at http://www.electropedia.org/
3.1.1
authorized person
person having been assessed and subsequently provided with access credentials to specific areas within the
data centre
3.1.2
forcible threat
threat exhibited by physical force
3.1.3
frame
open construction, typically wall-mounted, for housing closures and other information technology equipment
[SOURCE: EN 50174-1:2018, 3.1.21]
3.1.4
free-standing barrier
wall, fence, gate, turnstile or other similar self-supporting barrier, and their associated foundations, designed
to prevent entry to a space of a given Protection Class
[SOURCE: EN 50600-2-1:2021, 3.1.2]
10

---------------------- Page: 12 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
3.1.5
hold time
time during which a concentration of fire extinguishant is maintained at an effective level with the space
being protected
3.1.6
information technology equipment
equipment providing data storage, processing and transport services together with equipment dedicated to
providing direct connection to core and/or access networks
3.1.7
make-up air
air introduced into a data centre space to replace air that is exhausted through ventilation or combustion
processes
[SOURCE: CLC/TR 50600-99-1:2020, 3.1.18]
3.1.8
rack
open construction, typically self-supporting and floor-mounted, for housing closures and other information
technology equipment
[SOURCE: EN 50174-1:2018, 3.1.34]
3.1.9
residual risk
remaining risk(s) posed to the data centre assets requiring protection following the deployment of appropriate
countermeasures
3.1.10
surreptitious attack
compromise of an asset via logical or physical means with the obj
...

SLOVENSKI STANDARD
oSIST prEN 50600-2-5:2020
01-julij-2020
Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5.
del: Varnostni sistemi
Information technology - Data centre facilities and infrastructures - Part 2-5: Security
systems
Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5:
Sicherungssysteme
Technologie de l'information - Installations et infrastructures de centres de traitement de
données - Partie 2-5: Systèmes de sécurité
Ta slovenski standard je istoveten z: prEN 50600-2-5
ICS:
35.030 Informacijska varnost IT Security
oSIST prEN 50600-2-5:2020 en,fr
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
oSIST prEN 50600-2-5:2020

---------------------- Page: 2 ----------------------
oSIST prEN 50600-2-5:2020


EUROPEAN STANDARD DRAFT
prEN 50600-2-5
NORME EUROPÉENNE

EUROPÄISCHE NORM

May 2020
ICS  Will supersede EN 50600-2-5:2016 and all of its
amendments and corrigenda (if any)
English Version
Information technology - Data centre facilities and infrastructures
- Part 2-5: Security systems
Technologie de l'information - Installations et infrastructures Informationstechnik - Einrichtungen und Infrastrukturen von
de centres de traitement de données - Partie 2-5: Systèmes Rechenzentren - Teil 2-5: Sicherungssysteme
de sécurité
This draft European Standard is submitted to CENELEC members for enquiry.
Deadline for CENELEC: 2020-08-07.

It has been drawn up by CLC/TC 215.

If this draft becomes a European Standard, CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which
stipulate the conditions for giving this European Standard the status of a national standard without any alteration.

This draft European Standard was established by CENELEC in three official versions (English, French, German).
A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to
the CEN-CENELEC Management Centre has the same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the
Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.

Recipients of this draft are invited to submit, with their comments, notification of any relevant patent rights of which they are aware and to
provide supporting documentation.

Warning : This document is not a European Standard. It is distributed for review and comments. It is subject to change without notice and
shall not be referred to as a European Standard.


European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2020 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.
Project: 71007 Ref. No. prEN 50600-2-5 E

---------------------- Page: 3 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
1 Contents Page
2 European foreword . 5
3 Introduction . 6
4 1 Scope . 9
5 2 Normative references. 9
6 3 Terms, definitions and abbreviations . 10
7 3.1 Terms and definitions . 10
8 3.2 Abbreviations . 11
9 4 Conformance . 11
10 5 Physical security . 11
11 5.1 General . 11
12 5.2 Risk analysis and management . 12
13 5.3 Designation of data centre spaces: Protection Classes . 13
14 6 Protection Class against unauthorized access . 13
15 6.1 General . 13
16 6.1.1 Data centre configuration . 13
17 6.1.2 Protection Classes . 13
18 6.1.3 Protection Classes of specific infrastructures . 16
19 6.1.4 Technical solutions to prevent unauthorized access . 16
20 6.2 Access to the data centre premises . 16
21 6.2.1 Premises with external physical barriers . 16
22 6.2.2 Premises without external physical barriers . 17
23 6.2.3 Roofs . 18
24 6.2.4 Access routes . 18
25 6.2.5 Parking . 18
26 6.2.6 Employees and visitors . 19
27 6.2.7 Pathways . 19
28 6.2.8 Cabinets, racks and frames . 20
29 6.3 Implementation . 20
30 6.3.1 Protection Class 1 . 20
31 6.3.2 Protection Class 2 . 21
32 6.3.3 Protection Class 3 . 21
33 6.3.4 Protection Class 4 . 22
34 7 Protection Class against intrusion to data centre spaces . 23
35 7.1 General . 23
36 7.2 Technical solutions for the detection of intrusion. 23
37 7.3 Implementation . 23
38 7.3.1 Protection Class 1 . 23
39 7.3.2 Protection Class 2 . 24
40 7.3.3 Protection Class 3 . 24
41 7.3.4 Protection Class 4 . 25
2

---------------------- Page: 4 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
42 8 Protection Class against fire events igniting within data centre spaces . 25
43 8.1 General . 25
44 8.1.1 Protection Classes . 25
45 8.1.2 Fire compartments and barriers . 26
46 8.1.3 Fire detection and fire alarm systems . 27
47 8.1.4 Fixed firefighting systems . 27
48 8.1.5 Portable firefighting equipment . 29
49 8.2 Implementation . 29
50 8.2.1 Protection Class 1 . 29
51 8.2.2 Protection Class 2 . 29
52 8.2.3 Protection Class 3 . 29
53 8.2.4 Protection Class 4 . 29
54 Protection Class against environmental events (other than fire) within data centre spaces . 30
9
55 9.1 General . 30
56 9.2 Implementation . 30
57 9.2.1 Protection Class 1 . 30
58 9.2.2 Protection Class 2 . 30
59 9.2.3 Protection Class 3 . 31
60 9.2.4 Protection Class 4 . 31
61 10 Protection Class against environmental events outside the data centre spaces . 32
62 10.1 General . 32
63 10.2 Implementation . 32
64 10.2.1 Protection Class 1 . 32
65 10.2.2 Protection Class 2 . 32
66 10.2.3 Protection Class 3 . 33
67 11 Systems to prevent unauthorized access and intrusion . 33
68 11.1 General . 33
69 11.2 Technology . 34
70 11.2.1 Security lighting . 34
71 11.2.2 Video surveillance systems . 34
72 11.2.3 Intruder and holdup alarm systems . 35
73 11.2.4 Access control . 36
74 11.2.5 Alarm monitoring . 36
75
Annex A (informative) Pressure relief: Additional information . 37
76 A.1 General . 37
77 A.2 Design considerations . 37
78
Bibliography . 39
79
80 Figures
81 Figure 1 — Schematic relationship between the EN 50600 standards . 7
82 Figure 2 — Risk analysis and management concepts . 12
83 Figure 3 — Protection Classes within the 4-layer physical protection model . 14
3

---------------------- Page: 5 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
84 Figure 4 — Protection Class islands . 15
85 Figure 5 — Connections between Protection Class islands . 15
86 Figure 6 — Example of Protection Classes applied to data centre premises with external barriers . 17
87 Figure 7 — Example of Protection Classes applied to data centre premises without external barriers . 18
88
89 Tables
90 Table 1 — Protection Classes against unauthorized access . 14
91 Table 2 — Technical solutions for access control . 16
92 Table 3 — Technical solutions for intrusion detection . 23
93 Table 4 — Protection Classes against internal fire events . 26
94 Table 5 — Protection Classes against internal environmental events . 30
95 Table 6 — Protection Classes against external environmental events . 32
96 Table 7 — Elements of systems for the prevention of unauthorized access . 33
97
4

---------------------- Page: 6 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
98 European foreword
99 This document (prEN 50600-2-5:2020) has been prepared by CLC/TC 215 “Electrotechnical aspects of
100 telecommunication equipment”.
101 This document is currently submitted to the Enquiry.
102 The following dates are proposed:
• latest date by which the existence of this (doa) dor + 6 months
document has to be announced at national
level
• latest date by which this document has to be (dop) dor + 12 months
implemented at national level by publication of
an identical national standard or by
endorsement
• latest date by which the national standards (dow) dor + 36 months
conflicting with this document have to be (to be confirmed or
withdrawn modified when voting)
103 This document will supersede EN 50600-2-5:2016 and all of its amendments and corrigenda (if any).
104 This document includes the following significant technical changes with respect to EN 50600-2-5:2016:
105 a) technical update to all clauses in response to user feedback;
106 b) new Clause 7 on Protection Classes against intrusion to data centre spaces added and Clause 6
107 restructured accordingly;
108 c) references to relevant provisions of prEN 50600-2-1:2020 added to highlight the respective links to
109 constructional requirements;
110 d) various editorial updates.
5

---------------------- Page: 7 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
111 Introduction
112 The unrestricted access to internet-based information demanded by the information society has led to an
113 exponential growth of both internet traffic and the volume of stored/retrieved data. Data centres are housing
114 and supporting the information technology and network telecommunications equipment for data processing,
115 data storage and data transport. They are required both by network operators (delivering those services to
116 customer premises) and by enterprises within those customer premises.
117 Data centres need to provide modular, scalable and flexible facilities and infrastructures to easily
118 accommodate the rapidly changing requirements of the market. In addition, energy consumption of data
119 centres has become critical both from an environmental point of view (reduction of carbon footprint) and with
120 respect to economical considerations (cost of energy) for the data centre operator.
121 The implementation of data centres varies in terms of:
122 a) purpose (enterprise, co-location, co-hosting, or network operator);
123 b) security level;
124 c) physical size;
125 d) accommodation (mobile, temporary and permanent constructions).
126 The needs of data centres also vary in terms of availability of service, the provision of security and the
127 objectives for energy efficiency. These needs and objectives influence the design of data centres in terms of
128 building construction, power distribution, environmental control and physical security. Effective management
129 and operational information is imperative in order to monitor achievement of the defined needs and
130 objectives.
131 This series specifies requirements and recommendations to support the various parties involved in the
132 design, planning, procurement, integration, installation, operation and maintenance of facilities and
133 infrastructures within data centres. These parties include:
134 1) owners, facility managers, ICT managers, project managers, main contractors;
135 2) architects, consultants, building designers and builders, system and installation designers;
136 3) facility and infrastructure integrators, suppliers of equipment;
137 4) installers, maintainers.
138 At the time of publication of this document, the EN 50600 series currently comprises the following standards:
139 — EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General
140 concepts;
141 — EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building
142 construction;
143 — EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power
144 supply and distribution;
145 — EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3:
146 Environmental control;
147 — EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:
148 Telecommunications cabling infrastructure;
6

---------------------- Page: 8 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
149 — EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security
150 systems;
151 — EN 50600-3-1, Information technology — Data centre facilities and infrastructures — Part 3-1:
152 Management and operational information;
153 — EN 50600-4-1, Information technology — Data centre facilities and infrastructures — Part 4-1: Overview
154 of and general requirements for key performance indicators;
155 — EN 50600-4-2, Information technology — Data centre facilities and infrastructures — Part 4-2: Power
156 Usage Effectiveness;
157 — EN 50600-4-3, Information technology — Data centre facilities and infrastructures — Part 4-3:
158 Renewable Energy Factor;
159 — EN 50600-4-6, Information technology — Data centre facilities and infrastructures — Part 4-6: Energy
160 Reuse Factor;
161 — EN 50600-4-7, Information technology — Data centre facilities and infrastructures — Part 4-7: Cooling
162 Efficiency Ratio;
163 — CLC/TR 50600-99-1, Information technology — Data centre facilities and infrastructures — Part 99-1:
164 Recommended practices for energy management;
165 — CLC/TR 50600-99-2, Information technology — Data centre facilities and infrastructures — Part 99-2:
166 Recommended practices for environmental sustainability;
167 — CLC/TR 50600-99-3, Information technology — Data centre facilities and infrastructures — Part 99-3:
168 Guidance for the application of EN 50600 series.
169 The inter-relationship of the standards within the EN 50600 series is shown in Figure 1.
170
171 Figure 1 — Schematic relationship between the EN 50600 standards
7

---------------------- Page: 9 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
172 EN 50600-2-X standards specify requirements and recommendations for particular facilities and
173 infrastructures to support the relevant classification for “availability”, “physical security” and “energy efficiency
174 enablement” selected from EN 50600-1.
175 EN 50600-3-X documents specify requirements and recommendations for data centre operations, processes
176 and management.
177 EN 50600-4-X documents specify requirements and recommendations for key performance indicators (KPIs)
178 used to assess and improve the resource usage efficiency and effectiveness, respectively, of a data centre.
179 This document addresses the physical security of facilities and infrastructure within data centres together
180 with the interfaces for monitoring the performance of those facilities and infrastructures in line EN 50600-3-1
181 (in accordance with the requirements of EN 50600-1).
182 This document is intended for use by and collaboration between architects, building designers and builders,
183 system and installation designers and security managers among others.
184 This series of documents does not address the selection of information technology and network
185 telecommunications equipment, software and associated configuration issues.
8

---------------------- Page: 10 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
186 1 Scope
187 This document addresses the physical security of data centres based upon the criteria and classifications for
188 “availability”, “security” and “energy efficiency enablement” within EN 50600-1.
189 This document provides designations for the data centres spaces defined in EN 50600-1.
190 This document specifies requirements and recommendations for those data centre spaces, and the systems
191 employed within those spaces, in relation to protection against:
192 a) unauthorized access addressing organizational and technological solutions;
193 b) intrusion;
194 c) fire events igniting within data centres spaces;
195 d) other events within or outside the data centre spaces, which would affect the defined level of protection.
196 NOTE Constructional requirements and recommendations are provided by reference to EN 50600-2-1.
197 Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and
198 are covered by other standards and regulations. However, the information given in this document can be of
199 assistance in meeting these standards and regulations.
200 2 Normative references
201 The following documents are referred to in the text in such a way that some or all of their content constitutes
202 requirements of this document. For dated references, only the edition cited applies. For undated references,
203 the latest edition of the referenced document (including any amendments) applies.
204 EN 3 (all parts), Portable fire extinguishers
205 EN 54 (all parts), Fire detection and fire alarm systems
206 EN 54-20:2006, Fire detection and fire alarm systems — Part 20: Aspirating smoke detectors
207 EN 12845, Fixed firefighting systems — Automatic sprinkler systems — Design, installation and maintenance
208 EN 13565-2, Fixed firefighting systems — Foam systems — Part 2: Design, construction and maintenance
209 CEN/TS 14816, Fixed firefighting systems — Water spray systems — Design, installation and maintenance
210 CEN/TS 14972, Fixed firefighting systems — Watermist systems — Design and installation
211 EN 16750, Fixed firefighting systems — Oxygen reduction systems — Design, installation, planning and
212 maintenance
213 EN 50131 (all parts), Alarm systems — Intrusion and hold-up systems
214 EN 50136 (all parts), Alarm systems — Alarm transmission systems and equipment
215 EN 50518, Monitoring and Alarm Receiving Centre
216 EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General concepts
217 EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building
218 construction
9

---------------------- Page: 11 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
219 EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply
220 and distribution
221 EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental
222 control
223 EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:
224 Telecommunications cabling infrastructure
225 EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security
226 systems
227 EN 60839-11-1, Alarm and electronic security systems — Part 11-1: Electronic access control systems -
228 System and components requirements (IEC 60839-11-1)
229 EN 62305 (series), Protection against lightning (IEC 62305 series)
230 EN 62676-1-1:2014, Video surveillance systems for use in security applications — Part 1-1: System
231 requirements — General (IEC 62676-1-1:2014)
232 3 Terms, definitions and abbreviations
233 3.1 Terms and definitions
234 For the purposes of this document, the terms and definitions given in EN 50600-1 and the following apply.
235 ISO and IEC maintain terminological databases for use in standardization at the following addresses:
236 — ISO Online browsing platform: available at https://www.iso.org/obp
237 — IEC Electropedia: available at http://www.electropedia.org/
238 3.1.1
239 authorized person
240 person having been assessed and subsequently provided with access credentials to specific areas within the
241 data centre
242 3.1.2
243 forcible threat
244 threat exhibited by physical force
245 3.1.3
246 frame
247 open construction, typically wall-mounted, for housing closures and other information technology equipment
248 [SOURCE: EN 50174-1:2018, 3.1.21]
249 3.1.4
250 free-standing barrier
251 wall, fence, gate, turnstile or other similar self-supporting barrier, and their associated foundations, designed
252 to prevent entry to a space of a given Protection Class
253 [SOURCE: prEN 50600-2-1:2020, 3.1.2]
254 3.1.5
255 hold time
256 time during which a concentration of fir
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST EN 50600-2-5:2016(Main)
Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems
EN 50600-2-5:2016

This European Standard addresses the physical security of data centres based upon the criteria and classifications for “availability”, “security” and “energy efficiency enablement” within EN 50600-1.  This European Standard provides designations for the data centres spaces defined in EN 50600-1. This European Standard specifies requirements and recommendations for those data centre spaces, and the security systems employed within those spaces, in relation to protection against: a)   unauthorised access addressing constructional, organisational and technological solutions; b)   fire events internal to the data centre spaces; c)   other environmental events, other than fire, and including electromagnetic interference, vibration, flooding, gas and dust hazards which may exist     internal to the data centre spaces;    external to the data centre spaces. Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this European Standard and are covered by other standards and regulations. However, information given in this European Standard may be of assistance in meeting these standards and regulations.

  • Standard
    38 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    39 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO/IEC 29146:2023(Main)
Information technology - Security techniques - A framework for access management (ISO/IEC 29146:2016, including Amd 1:2022)
EN ISO/IEC 29146:2023

ISO/IEC 29146 defines and establishes a framework for access management (AM) and the secure management of the process to access information and Information and Communications Technologies (ICT) resources, associated with the accountability of a subject within some context. ISO/IEC 29146 provides explanations about related architecture, components and management functions and concepts, terms and definitions applicable to distributed access management. The subjects involved in access management might be uniquely recognized to access information systems, as defined in ISO/IEC 24760.

  • Standard
    48 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    41 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 21177:2023(Main)
Intelligent transport systems - ITS station security services for secure session establishment and authentication between trusted devices (ISO 21177:2023)
EN ISO 21177:2023

This document contains specifications for a set of ITS station security services required to ensure the authenticity of the source and integrity of information exchanged between trusted entities, i.e.:
—    between devices operated as bounded secured managed entities, i.e. "ITS Station Communication Units" (ITS-SCU) and "ITS station units" (ITS-SU) as specified in ISO 21217; and
—    between ITS-SUs (composed of one or several ITS-SCUs) and external trusted entities such as sensor and control networks.
These services include the authentication and secure session establishment which are required to exchange information in a trusted and secure manner.
These services are essential for many intelligent transport system (ITS) applications and services including time-critical safety applications, automated driving, remote management of ITS stations (ISO 24102-2), and roadside/infrastructure-related services.

  • Standard
    114 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    110 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO/IEC 29184:2023(Main)
Information technology - Online privacy notices and consent (ISO/IEC 29184:2020)
EN ISO/IEC 29184:2023

ISO/IEC 29184 specifies controls which shape the content and the structure of online privacy notices as well as the process of asking for consent to collect and process personally identifiable information (PII) from PII principals.
ISO/IEC 29184 is applicable in any online context where a PII controller or any other entity processing PII informs PII principals of processing.

  • Standard
    34 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    31 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 421 V1.2.1:2023(Main)
Electronic Signatures and Infrastructures (ESI) - Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
ETSI EN 319 421 V1.2.1 (2023-05)

The present document specifies policy and security requirements relating to the operation and management practices of
TSPs issuing time-stamps.
These policy requirements are applicable to TSPs issuing time-stamps. Such time-stamps can be used in support of
digital signatures or for any application requiring to prove that a datum existed before a particular time.
The present document can be used by independent bodies as the basis for confirming that a TSP can be trusted for
issuing time-stamps.
The present document does not specify protocols used to access the TSUs.
NOTE 1: A time-stamping protocol is defined in IETF RFC 3161 [i.2] including optional update in IETF
RFC 5816 [i.3] and profiled in ETSI EN 319 422 [5].
The present document does not specify how the requirements identified can be assessed by an independent party,
including requirements for information to be made available to such independent assessors, or requirements on such
assessors.
NOTE 2: See ETSI EN 319 403-1 [i.9] for guidance on assessment of TSP's processes and services.
NOTE 3: The present document references ETSI EN 319 401 [4] for general policy requirements common to all
classes of TSP's services.

  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    33 pages
    English language
    sale 15% off
  • Draft
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO/IEC 19896-3:2023(Main)
IT security techniques - Competence requirements for information security testers and evaluators - Part 3: Knowledge, skills and effectiveness requirements for ISO/IEC 15408 evaluators (ISO/IEC 19896-3:2018)
EN ISO/IEC 19896-3:2023

This document provides the specialized requirements to demonstrate competence of individuals in
performing IT product security evaluations in accordance with ISO/IEC 15408 (all parts) and ISO/IEC
18045.

  • Standard
    42 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    39 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/CLC/TR 17919:2023(Main)
Data protection and privacy by design and by default - Technical Report on applicability to the videosurveillance industry - State of the art
CEN/CLC/TR 17919:2023

This document contains recommendations on how to integrate the principle of ‘data protection and privacy by design’ during the entire lifecycle of video-surveillance products and services, in order to achieve ‘data protection and privacy by default’.

  • Technical report
    15 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO/IEC 19896-2:2023(Main)
IT security techniques - Competence requirements for information security testers and evaluators - Part 2: Knowledge, skills and effectiveness requirements for ISO/IEC 19790 testers (ISO/IEC 19896-2:2018)
EN ISO/IEC 19896-2:2023

This document provides the minimum requirements for the knowledge, skills and effectiveness
requirements of individuals performing testing activities for a conformance scheme using ISO/IEC
19790:2012 and ISO/IEC 24759

  • Standard
    42 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    39 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO/IEC 19896-1:2023(Main)
IT security techniques - Competence requirements for information security testers and evaluators - Part 1: Introduction, concepts and general requirements (ISO/IEC 19896-1:2018)
EN ISO/IEC 19896-1:2023

This document defines terms and establishes an organized set of concepts and relationships to
understand the competency requirements for information security assurance conformance-testing
and evaluation specialists, thereby establishing a basis for shared understanding of the concepts and
principles central to the ISO/IEC 19896 series across its user communities. It provides fundamental
information to users of the ISO/IEC 19896 series

  • Standard
    19 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    16 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/CLC/TS 17880:2023(Main)
Protection Profile for Smart Meter - Minimum Security requirements
CEN/CLC/TS 17880:2022

This Protection Profile describes a set of security requirements for smart meters, based on the ‘minimum security requirements’ for components of AMI infrastructures in [5]. The requirements in [5] were based on the concept that there are a common/generic set of underlying ‘minimum’ security requirements associated with smart metering requirement specifications in a number of EU Member States

  • Technical specification
    72 pages
    English language
    sale 10% off
    e-Library read for
    1 day