From the AEGIS e-Journal, Volume 7 Number 6, June 2004
KEYController KeySure PO Box 362 Hudson NY 12534-0362 http://www.keysure.net/ 1-518-828-5337 Some time ago we took responsibility for the protection of an apartment that contained several million dollars worth of art. The first thing we did was change the alarm codes, with re-keying of the locks scheduled for day two. At 3 a.m. the alarm went off, and the front door was discovered to be unlocked and open. Upon re-keying the locks, one of our concerns became the keys that had to be, by law, left with the building. Traditionally, in most apartment buildings, the super puts a label on each set of keys and tosses them all into a drawer. Since the super’s office is generally less than fort- like, the keys are vulnerable, and it is easy for someone to take a key, rob an apartment, and then return the key. One approach commonly used is to put the keys in an envelope, seal it, and sign the back. This allows you to see whether the envelope has been opened. Unfortunately, envelopes are relatively fragile, and over time keys sometimes poke their way through. KEYController allows keys to be sealed in a small plastic box that can only be open by breaking, which removes all question as to whether the key has been accessed. Obviously, other things, like passwords, or access control
ÆGIS, June 2004 11 cards, could just as easily be stored. And if neighbors give you keys to hold – particularly sensitive keys, like gun-lock keys – sealing them this way should give everyone a higher level of comfort: The keys are either there and sealed, or missing, or broken-into. KeySure’s recommendation for setting up a system for a building is: 1. CODING: The KEYSURE system is based on a consecutive numbering system. Example: Numbering 1 through 100 if it is a 100 unit building. These numbers then become the code number for each apartment unit. 2. MASTER CODE LIST: Since most buildings have a computer print out tenant list or rent roll, we suggest you use this already existing list and simply consecutively number it. Exercise caution, and do not keep the list with the keys. 3. KEY TAGS: Each key will be put on a numbered key tag corresponding to the apartment code established above. Key tags are an integral part of the system and serve to organize and identify individual keys. The last thing you want, is to be seen trying keys in tenants doors to identify random keys. 4. APPLYING CODE NUMBER: Number the outside of the KEYController container with the same number that is on the key tag. 5. SIGNATURES: The tenant signs a signature on both inside surfaces where indicated. The signatures must be applied before the container is closed. The signatures on the inside insure the tenants Anonymity 6. CLOSING THE KEYController: After the signatures are applied and the key with tag is placed inside. close the container with a squeezing action, until a snap is heard. Caution: Once closed, the KEYController will have to be broken to gain access to the key. 7. MOTHER’S MAIDEN NAME: Have the tenant sign mother’s maiden name on the outside of the container. This will allow a tenant to check up on a key without breaking the container. It also serves to confuse anyone with criminal intent. [NOTE: Since this is a common measure used by banks and others, a middle name, or a pet’s name, could be used instead.] 8. STORAGE WALL CABINETS DRAWERS: Carefully load the containers keeping them in numerical order. Good order will make it ÆGIS, June 2004 12 that much easier to retrieve keys. Audit the key boxes on a scheduled basis to insure that they are all there and in order. 9. SECURITY POLICY: Security of any kind is only strengthened by having a well thought out written security policy. This written policy should be distributed to every tenant so that each tenant understands it and feels as though he or she is involved in the process of creating a more secure and safe environment. We think the system is worth considering for your coop or condo, if you have concerns regarding the security of your keys. And for the storage of other items where you need to be able to confirm if they have been accessed. 7. Free-Subscription/Unsubscription/Copyright Information •• ÆGIS e-journal is supported and maintained by voluntary efforts. This publication is owned, published, and copyright © 2004 by The LUBRINCO Group Ltd, Inc. and Financial Examinations and Evaluations, Inc. It is edited jointly by Richard Isaacs (RBIsaacs@lubrinco.com) and L. Burke Files (LBFiles@lubrinco.com). The LUBRINCO Group provides services in three high-threat areas, too specialized to be dealt-with in-house, that can adversely affect domestic and international bottom lines. • Protection of trade secrets and intellectual assets. o Anti-economic espionage. o OPSEC: The identification and protection of information that would give your competitors and adversaries an advantage. • International financial investigations and due diligence consulting. o Location and recovery of missing and hidden assets. o Establishing business relationships and strategic partnerships in Central and Eastern Europe, the offshore financial centers, Beijing and Shanghai, Central Asia, and Latin America and the Caribbean. o Anti-money laundering and financial fraud requirements under the International Money Laundering Abatement and Anti-Terrorist Financing Act of 2004 and the EU Revised Money Laundering Directive of 2004. • Protection of management, staff, and families. o In the high-threat environments of Latin America, Africa, the Mid- East, and Southeast Asia. ÆGIS, June 2004 13 o When traveling and living overseas. o When transporting items of substantial value. LUBRINCO identifies and quantifies threats and vulnerabilities, and their associated risk, then manages the vulnerabilities so you can transfer or live with the residual risk. We prevent disastrous financial loss to your company, and physical harm to you, your family, and your staff. For information on The LUBRINCO Group and its services, or for the archive of all past issues of ÆGIS e-journal in PDF format, please go to http://www.lubrinco.com/. To sign up for a complimentary subscription to ÆGIS e-journal or the ÆGIS e- journal PDF notification list, go to http://lb.bcentral.com/ex/manage/subscriberprefs?customerid=7768 or send an email to ejournal@lubrinco.com. To subscribe to our AvantGo channel, go to http://avantgo.com/channels/_add_channel.pl?cha_id=1773 To be removed from the subscription list, follow the instructions on the mailing you received, or send an e-mail to ejournal@lubrinco.com. If you know of anyone else who should be receiving ÆGIS e-journal, please send their e-mail address to ejournal@lubrinco.com. If there is a topic that you would like to know more about, send it to ejournal@lubrinco.com and the editors will consider it as the topic for an article in an upcoming issue. If you would like to submit an article for publication in ÆGIS e-journal, send it as an attachment to an e-mail to ejournal@lubrinco.com. Submission of an article certifies that (a) all information in the article is in the public record, or (b) that you are authorized to release any personal or corporate proprietary information contained in the article, and (c) that none of the article has previously been copyrighted. The submission of materials for publication in ÆGIS e-journal constitutes a license to The LUBRINCO Group Ltd, Inc., and/or Financial Examinations and Evaluations, Inc, their assigns, associates, or affiliates, to abridge and/or edit said submission, and to copyright and publish/republish any submitted materials in whatever written and/or electronic form they may choose. If you would like to go beyond normal fair-use in reproducing articles from this issue of ÆGIS e-journal, you may do so freely as long as appropriate source, copyright, accreditation, and link to the LUBRINCO website is ÆGIS, June 2004 14 included. This should be in the form
Article Title, from the June 2004 ÆGIS e-journal (© 2004 LUBRINCO & FEE), to be found at http://www.lubrinco.com/. ÆGIS e-journal is a forum for the exchange of information, ideas, operating styles, theories, and related topics for corporate managers who make decisions about threats typically outside the expertise available in-house, yet which have the potential to affect their company’s domestic and international bottom lines. Nothing appearing in ÆGIS e-journal should be construed as legal advice. The information provided is “general information,” not “specific advice.” The solution to any problem is highly dependent upon the precise facts involved. Thus, before making any reliance upon anything said here, you should consult with an appropriately skilled professional. Opinions expressed by contributors are not necessarily endorsed by the publisher, and may be presented to encourage a dialogue among subscribers. The publisher and any re-publisher cannot be held responsible for any loss incurred as a result of the application of any information published in ÆGIS e-journal. Please be safe, and be smart.