Browse Definitions :
Definition

tailgating (piggybacking)

Tailgating, sometimes referred to as piggybacking, is a physical security breach in which an unauthorized person follows an authorized individual to enter a secured premise. 

Tailgating provides a simple social engineering-based way around many security mechanisms one would think of as secure. Even retina scanners don't help if an employee holds the door for an unknown person behind them, out of misguided courtesy.

People who might tailgate include disgruntled former employees, thieves, vandals, mischief makers people with issues with employees or the company. Any of these have the potential to disrupt business, cause damage, create unexpected costs and lead to further safety issues.

Methods to protect your premises from tailgating include:

  • Employee education.
  • Ensuring that doors close swiftly and securely.
  • Photo ID presented on entrance.
  • Video surveillance.
  • Smart cards housing multiple credentials.
  • Multifactor authentication.
  • Security guards.
  • Biometrics.
  • Photosensors, turnstiles, laser sensors or mantraps to limit entry to a single person at a time.

The presence of security measures can lead to a false sense of security, which can make people ignore simple and non-technical methods of subverting security. Although simple, tailgating can be very effective and educating employees to recognize and resist social engineering attempts is the single-most effective way to prevent it.

This was last updated in January 2017

Continue Reading About tailgating (piggybacking)

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • email spam

    Email spam, also known as junk email, refers to unsolicited email messages, usually sent in bulk to a large list of recipients.

  • security policy

    A security policy is a document that states in writing how a company plans to protect its physical and information technology (IT...

  • shadow password file

    A shadow password file, also known as /etc/shadow, is a system file in Linux that stores encrypted user passwords and is ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • bare-metal restore

    A bare-metal restore (also referred to as bare-metal recovery or bare-metal backup) is a data recovery and restoration process ...

  • mSATA SSD (mSATA solid-state drive)

    An mSATA SSD is a solid-state drive (SSD) that conforms to the mSATA interface specification developed by the Serial ATA (SATA) ...

  • network-attached storage (NAS)

    Network-attached storage (NAS) is dedicated file storage that enables multiple users and heterogeneous client devices to retrieve...

Close