Information technology - Data centre facilities and infrastructures - Part 2-5: Security systems

This document addresses the physical security of data centres based upon the criteria and classifications for “availability”, “security” and “energy efficiency enablement” within EN 50600 1.
This document provides designations for the data centres spaces defined in EN 50600 1.
This document specifies requirements and recommendations for those data centre spaces, and the systems employed within those spaces, in relation to protection against:
a)   unauthorized access addressing organizational and technological solutions;
b)   intrusion;
c)   fire events igniting within data centres spaces;
d)   other events within or outside the data centre spaces, which would affect the defined level of protection.
NOTE   Constructional requirements and recommendations are provided by reference to EN 50600 2 1.
Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and are covered by other standards and regulations. However, the information given in this document can be of assistance in meeting these standards and regulations.

Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5: Sicherungssysteme

This document addresses the physical security of data centres based upon the criteria and classifications for "availability", "security" and "energy efficiency enablement" within EN 50600 1.
This document provides designations for the data centres spaces defined in EN 50600 1.
This document specifies requirements and recommendations for those data centre spaces, and the systems employed within those spaces, in relation to protection against:
a)   unauthorized access addressing constructional, organizational and technological solutions;
b)   fire events igniting within data centres spaces;
c)   other events within or outside the data centre spaces, which would affect the defined level of protection.

Technologie de l'information - Installations et infrastructures de centres de traitement de données - Partie 2-5: Systèmes de sécurité

Le présent document s'applique à la sécurité physique des centres de traitement de données selon les critères et classifications de « disponibilité », de « sécurité » et de « validation d'efficacité énergétique » de l'EN 50600 1.
Le présent document fournit des désignations pour les espaces de centre de traitement de données définis dans l'EN 50600 1.
Le présent document spécifie les exigences et recommandations relatives à ces espaces de centre de traitement de données, ainsi que les systèmes qui y sont utilisés, par rapport à la protection contre:
a)   les accès non autorisés aux solutions organisationnelles et technologiques;
b)   les intrusions;
c)   les incendies au sein d'espaces de centre de traitement de données;
d)   d'autres événements à l'intérieur ou à l'extérieur des espaces de centre de traitement de données, qui affectent le niveau de protection défini.
NOTE   Les exigences et recommandations de construction sont fournies en référence à l’EN 50600 2 1.
Les exigences relatives à la sécurité et à la compatibilité électromagnétique (CEM) ne relèvent pas du domaine d'application du présent document et sont couvertes par d'autres normes et réglementations. Toutefois, les informations fournies dans le présent document peuvent s'avérer utiles pour satisfaire à ces normes et réglementations.

Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5. del: Varnostni sistemi

General Information

Status
Published
Public Enquiry End Date
30-Jul-2020
Publication Date
05-May-2021
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
05-May-2021
Due Date
10-Jul-2021
Completion Date
06-May-2021

RELATIONS

Buy Standard

Standard
SIST EN 50600-2-5:2021
English language
40 pages
sale 10% off
Preview
sale 10% off
Preview

e-Library read for
1 day
Draft
oSIST prEN 50600-2-5:2020
English language
39 pages
sale 10% off
Preview
sale 10% off
Preview

e-Library read for
1 day

Standards Content (sample)

SLOVENSKI STANDARD
SIST EN 50600-2-5:2021
01-junij-2021
Nadomešča:
SIST EN 50600-2-5:2016
Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5.
del: Varnostni sistemi

Information technology - Data centre facilities and infrastructures - Part 2-5: Security

systems

Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5:

Sicherungssysteme

Technologie de l'information - Installations et infrastructures de centres de traitement de

données - Partie 2-5: Systèmes de sécurité
Ta slovenski standard je istoveten z: EN 50600-2-5:2021
ICS:
35.030 Informacijska varnost IT Security
SIST EN 50600-2-5:2021 en

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 50600-2-5:2021
---------------------- Page: 2 ----------------------
SIST EN 50600-2-5:2021
EUROPEAN STANDARD EN 50600-2-5
NORME EUROPÉENNE
EUROPÄISCHE NORM
April 2021
ICS 35.020; 35.110; 35.160 Supersedes EN 50600-2-5:2016 and all of its
amendments and corrigenda (if any)
English Version
Information technology - Data centre facilities and infrastructures
- Part 2-5: Security systems

Technologie de l'information - Installations et infrastructures Informationstechnik - Einrichtungen und Infrastrukturen von

de centres de traitement de données - Partie 2-5: Systèmes Rechenzentren - Teil 2-5: Sicherungssysteme

de sécurité

This European Standard was approved by CENELEC on 2021-03-22. CENELEC members are bound to comply with the CEN/CENELEC

Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.

Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC

Management Centre or to any CENELEC member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by translation

under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the

same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,

Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the

Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,

Turkey and the United Kingdom.
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels

© 2021 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.

Ref. No. EN 50600-2-5:2021 E
---------------------- Page: 3 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
Contents Page

European foreword ...................................................................................................................................... 5

Introduction .................................................................................................................................................. 6

1 Scope .................................................................................................................................................. 9

2 Normative references........................................................................................................................ 9

3 Terms, definitions and abbreviations ........................................................................................... 10

3.1 Terms and definitions ........................................................................................................................ 10

3.2 Abbreviations ..................................................................................................................................... 11

4 Conformance ................................................................................................................................... 11

5 Physical security ............................................................................................................................. 12

5.1 General .............................................................................................................................................. 12

5.2 Risk analysis and management ......................................................................................................... 12

5.3 Designation of data centre spaces: Protection Classes .................................................................... 13

6 Protection against unauthorized access ...................................................................................... 13

6.1 General .............................................................................................................................................. 13

6.1.1 Data centre configuration .................................................................................................................. 13

6.1.2 Protection Classes ............................................................................................................................ 14

6.1.3 Protection Classes of specific infrastructures ................................................................................... 16

6.1.4 Levels for access control ................................................................................................................... 16

6.2 Access to the data centre premises .................................................................................................. 17

6.2.1 Premises with external physical barriers ........................................................................................... 17

6.2.2 Premises without external physical barriers ...................................................................................... 18

6.2.3 Roofs ................................................................................................................................................. 19

6.2.4 Access routes .................................................................................................................................... 19

6.2.5 Parking .............................................................................................................................................. 19

6.2.6 Employees and visitors ..................................................................................................................... 20

6.2.7 Pathways ........................................................................................................................................... 20

6.2.8 Cabinets, racks and frames .............................................................................................................. 21

6.3 Implementation .................................................................................................................................. 21

6.3.1 Protection Class 1 ............................................................................................................................. 21

6.3.2 Protection Class 2 ............................................................................................................................. 22

6.3.3 Protection Class 3 ............................................................................................................................. 22

6.3.4 Protection Class 4 ............................................................................................................................. 23

7 Protection against intrusion to data centre spaces .................................................................... 24

7.1 General .............................................................................................................................................. 24

7.2 Level for the detection of intrusion ..................................................................................................... 24

7.3 Implementation .................................................................................................................................. 24

7.3.1 Protection Class 1 ............................................................................................................................. 24

7.3.2 Protection Class 2 ............................................................................................................................. 25

7.3.3 Protection Class 3 ............................................................................................................................. 26

7.3.4 Protection Class 4 ............................................................................................................................. 26

---------------------- Page: 4 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)

8 Protection against fire events igniting within data centre spaces ............................................. 27

8.1 General .............................................................................................................................................. 27

8.1.1 Protection Classes ............................................................................................................................ 27

8.1.2 Fire compartments and barriers ........................................................................................................ 28

8.1.3 Fire detection and fire alarm systems ............................................................................................... 28

8.1.4 Fixed firefighting systems .................................................................................................................. 28

8.1.5 Portable firefighting equipment ......................................................................................................... 30

8.2 Implementation .................................................................................................................................. 31

8.2.1 Protection Class 1 ............................................................................................................................. 31

8.2.2 Protection Class 2 ............................................................................................................................. 31

8.2.3 Protection Class 3 ............................................................................................................................. 31

8.2.4 Protection Class 4 ............................................................................................................................. 31

9 Protection against environmental events (other than fire) within data centre spaces ............ 31

9.1 General .............................................................................................................................................. 31

9.2 Implementation .................................................................................................................................. 32

9.2.1 Protection Class 1 ............................................................................................................................. 32

9.2.2 Protection Class 2 ............................................................................................................................. 32

9.2.3 Protection Class 3 ............................................................................................................................. 32

9.2.4 Protection Class 4 ............................................................................................................................. 32

10 Protection against environmental events outside the data centre spaces ............................... 33

10.1 General .............................................................................................................................................. 33

10.2 Implementation .................................................................................................................................. 34

10.2.1 Protection Class 1 ............................................................................................................................. 34

10.2.2 Protection Class 2 ............................................................................................................................. 34

10.2.3 Protection Class 3 ............................................................................................................................. 34

11 Systems to prevent unauthorized access and intrusion ............................................................ 34

11.1 General .............................................................................................................................................. 34

11.2 Technology ........................................................................................................................................ 35

11.2.1 Security lighting ................................................................................................................................. 35

11.2.2 Video surveillance systems ............................................................................................................... 36

11.2.3 Intruder and holdup alarm systems ................................................................................................... 37

11.2.4 Access control systems ..................................................................................................................... 37

11.2.5 Event and alarm monitoring .............................................................................................................. 37

Annex A (informative) Pressure relief: Additional information ............................................................. 38

A.1 General ............................................................................................................................................. 38

A.2 Design considerations .................................................................................................................... 38

Bibliography ............................................................................................................................................... 40

Figures

Figure 1 — Schematic relationship between the EN 50600 standards .................................................. 7

Figure 2 — Risk analysis and management concepts .......................................................................... 13

Figure 3 — Protection Classes within the 4-layer physical protection model .................................... 15

---------------------- Page: 5 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)

Figure 4 — Protection Class islands ....................................................................................................... 15

Figure 5 — Connections between Protection Class islands ................................................................. 16

Figure 6 — Example of Protection Classes applied to data centre premises with external barriers18

Figure 7 — Example of Protection Classes applied to data centre premises without external barriers

19
Tables

Table 1 — Protection Classes against unauthorized access................................................................ 14

Table 2 — Options for access control ..................................................................................................... 17

Table 3 — Options for intrusion detection .............................................................................................. 24

Table 4 — Protection Classes against internal fire events ................................................................... 27

Table 5 — Protection Classes against internal environmental events ................................................ 31

Table 6 — Protection Classes against external environmental events ............................................... 33

Table 7 — Elements of systems for the prevention of unauthorized access ...................................... 35

---------------------- Page: 6 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
European foreword

This document (EN 50600-2-5:2021) has been prepared by CLC/TC 215 “Electrotechnical aspects of

telecommunication equipment”.
The following dates are fixed:
• latest date by which this document has to be (dop) 2022-03-22
implemented at national level by publication of
an identical national standard or by
endorsement
• latest date by which the national standards (dow) 2024-03-22
conflicting with this document have to be
withdrawn

This document supersedes EN 50600-2-5:2016 and all of its amendments and corrigenda (if any).

This document includes the following significant technical changes with respect to EN 50600-2-5:2016:

a) technical update to all clauses in response to user feedback;

b) new Clause 7 on Protection Classes against intrusion to data centre spaces added and Clause 6

restructured accordingly;

c) references to relevant provisions of EN 50600-2-1:2021 added to highlight the respective links to

constructional requirements;
d) various editorial updates.

Attention is drawn to the possibility that some of the elements of this document may be the subject of patent

rights. CENELEC shall not be held responsible for identifying any or all such patent rights.

This document has been prepared under a mandate given to CENELEC by the European Commission and

the European Free Trade Association.
---------------------- Page: 7 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
Introduction

The unrestricted access to internet-based information demanded by the information society has led to an

exponential growth of both internet traffic and the volume of stored/retrieved data. Data centres are housing

and supporting the information technology and network telecommunications equipment for data processing,

data storage and data transport. They are required both by network operators (delivering those services to

customer premises) and by enterprises within those customer premises.

Data centres usually provide modular, scalable and flexible facilities and infrastructures to easily

accommodate the rapidly changing requirements of the market. In addition, energy consumption of data

centres has become critical both from an environmental point of view (reduction of environmental footprint)

and with respect to economical considerations (cost of energy) for the data centre operator.

The implementation of data centres varies in terms of:
a) purpose (enterprise, co-location, co-hosting, or network operator);
b) security level;
c) physical size;
d) accommodation (mobile, temporary and permanent constructions).

The needs of data centres also vary in terms of availability of service, the provision of security and the

objectives for energy efficiency. These needs and objectives influence the design of data centres in terms of

building construction, power distribution, environmental control, telecommunications cabling and physical

security as well as the operation of the data centre. Effective management and operational information is

important in order to monitor achievement of the defined needs and objectives.

Recognizing the substantial resource consumption, particularly of energy, of larger data centres, it is also

important to provide tools for the assessment of that consumption both in terms of overall value and of

source mix and to provide Key Performance Indicators (KPIs) to evaluate trends and drive performance

improvements.

At the time of publication of this document, the EN 50600 series is designed as a framework of standards,

technical specifications and technical reports covering the design, the operation and management, the key

performance indicators for energy efficient operation of the data centre as well as a data centre maturity

model.
The EN 50600-2 series defines the requirements for the data centre design.

The EN 50600-3 series defines the requirements for the operation and the management of the data centre.

The EN 50600-4 series defines the key performance indicators for the data centre.

The CLC/TS 50600-5 series defines the data centre maturity model requirements and recommendations.

The CLC/TR 50600-99-X Technical Reports cover recommended practices and guidance for specific topics

around data centre operation and design.

This series of documents specifies requirements and recommendations to support the various parties

involved in the design, planning, procurement, integration, installation, operation and maintenance of

facilities and infrastructures within data centres. These parties include:

1) owners, operators, facility managers, ICT managers, project managers, main contractors;

2) consulting engineers, architects, building designers and builders, system and installation designers,

auditors, test and commissioning agents;
3) facility and infrastructure integrators, suppliers of equipment;
4) installers, maintainers.
---------------------- Page: 8 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)

At the time of publication of this document, the EN 50600-2 series comprises the following documents:

EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building

construction;

EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply

and distribution;

EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental

control;

EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:

Telecommunications cabling infrastructure;

EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security

systems;

CLC/TS 50600-2-10, Information technology — Data centre facilities and infrastructures — Part 2-10:

Earthquake risk and impact analysis;

The inter-relationship of the documents within the EN 50600 series is shown in Figure 1.

Figure 1 — Schematic relationship between the EN 50600 standards

EN 50600-2-X documents specify requirements and recommendations for particular facilities and

infrastructures to support the relevant classification for “availability”, “physical security” and “energy efficiency

enablement” selected from EN 50600-1.

EN 50600-3-X documents specify requirements and recommendations for data centre operations, processes

and management.

EN 50600-4-X documents specify requirements and recommendations for key performance indicators (KPIs)

used to assess and improve the resource usage efficiency and effectiveness, respectively, of a data centre.

This document addresses the physical security of facilities and infrastructure within data centres together

with the interfaces for monitoring the performance of those facilities and infrastructures in line with

EN 50600-3-1 (in accordance with the requirements of EN 50600-1).

This document is intended for use by and collaboration between architects, building designers and builders,

system and installation designers and security managers among others.
---------------------- Page: 9 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)

This series of documents does not address the selection of information technology and network

telecommunications equipment, software and associated configuration issues.
---------------------- Page: 10 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
1 Scope

This document addresses the physical security of data centres based upon the criteria and classifications for

“availability”, “security” and “energy efficiency enablement” within EN 50600-1.

This document provides designations for the data centres spaces defined in EN 50600-1.

This document specifies requirements and recommendations for those data centre spaces, and the systems

employed within those spaces, in relation to protection against:
a) unauthorized access addressing organizational and technological solutions;
b) intrusion;
c) fire events igniting within data centres spaces;

d) environmental events (other than fire) within the data centre spaces which would affect the defined level

of protection;

e) environmental events outside the data centre spaces which would affect the defined level of protection.

NOTE Constructional requirements and recommendations are provided by reference to EN 50600-2-1.

Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and

are covered by other standards and regulations. However, the information given in this document can be of

assistance in meeting these standards and regulations.
2 Normative references

The following documents are referred to in the text in such a way that some or all of their content constitutes

requirements of this document. For dated references, only the edition cited applies. For undated references,

the latest edition of the referenced document (including any amendments) applies.

EN 3 (all parts), Portable fire extinguishers
EN 54 (all parts), Fire detection and fire alarm systems

EN 54-20:2006, Fire detection and fire alarm systems — Part 20: Aspirating smoke detectors

EN 12845, Fixed firefighting systems — Automatic sprinkler systems — Design, installation and maintenance

EN 13565-2, Fixed firefighting systems — Foam systems — Part 2: Design, construction and maintenance

CEN/TS 14816, Fixed firefighting systems — Water spray systems — Design, installation and maintenance

CEN/TS 14972, Fixed firefighting systems — Watermist systems — Design and installation

EN 16750, Fixed firefighting systems — Oxygen reduction systems — Design, installation, planning and

maintenance
EN 50131 (all parts), Alarm systems — Intrusion and hold-up systems
EN 50136 (all parts), Alarm systems — Alarm transmission systems and equipment
EN 50518, Monitoring and Alarm Receiving Centre

EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General concepts

---------------------- Page: 11 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)

EN 50600-2-1:2021, Information technology — Data centre facilities and infrastructures — Part 2-1: Building

construction

EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply

and distribution

EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental

control

EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:

Telecommunications cabling infrastructure

EN 60839-11-1, Alarm and electronic security systems — Part 11-1: Electronic access control systems -

System and components requirements (IEC 60839-11-1)

EN 60839-11-2, Alarm and electronic security systems — Part 11-2: Electronic access control systems -

Application guidelines (IEC 60839-11-2)
EN 62305 (series), Protection against lightning (IEC 62305 series)

EN 62676-1-1, Video surveillance systems for use in security applications — Part 1-1: System requirements

— General (IEC 62676-1-1)
3 Terms, definitions and abbreviations
3.1 Terms and definitions

For the purposes of this document, the terms and definitions given in EN 50600-1 and the following apply.

ISO and IEC maintain terminological databases for use in standardization at the following addresses:

— ISO Online browsing platform: available at https://www.iso.org/obp
— IEC Electropedia: available at http://www.electropedia.org/
3.1.1
authorized person

person having been assessed and subsequently provided with access credentials to specific areas within the

data centre
3.1.2
forcible threat
threat exhibited by physical force
3.1.3
frame

open construction, typically wall-mounted, for housing closures and other information technology equipment

[SOURCE: EN 50174-1:2018, 3.1.21]
3.1.4
free-standing barrier

wall, fence, gate, turnstile or other similar self-supporting barrier, and their associated foundations, designed

to prevent entry to a space of a given Protection Class
[SOURCE: EN 50600-2-1:2021, 3.1.2]
---------------------- Page: 12 ----------------------
SIST EN 50600-2-5:2021
EN 50600-2-5:2021 (E)
3.1.5
hold time

time during which a concentration of fire extinguishant is maintained at an effective level with the space

being protected
3.1.6
information technology equipment

equipment providing data storage, processing and transport services together with equipment dedicated to

providing direct connection to core and/or access networks
3.1.7
make-up air

air introduced into a data centre space to replace air that is exhausted through ventilation or combustion

processes
[SOURCE: CLC/TR 50600-99-1:2020, 3.1.18]
3.1.8
rack

open construction, typically self-supporting and floor-mounted, for housing closures and other information

technology equipment
[SOURCE: EN 50174-1:2018, 3.1.34]
3.1.9
residual risk

remaining risk(s) posed to the data centre assets requiring protection following the deployment of appropriate

countermeasures
3.1.10
surreptitious attack
compromise of an asset via logical or physical means with the obj
...

SLOVENSKI STANDARD
oSIST prEN 50600-2-5:2020
01-julij-2020
Informacijska tehnologija - Naprave in infrastruktura podatkovnih centrov - 2-5.
del: Varnostni sistemi

Information technology - Data centre facilities and infrastructures - Part 2-5: Security

systems

Informationstechnik - Einrichtungen und Infrastrukturen von Rechenzentren - Teil 2-5:

Sicherungssysteme

Technologie de l'information - Installations et infrastructures de centres de traitement de

données - Partie 2-5: Systèmes de sécurité
Ta slovenski standard je istoveten z: prEN 50600-2-5
ICS:
35.030 Informacijska varnost IT Security
oSIST prEN 50600-2-5:2020 en,fr

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
oSIST prEN 50600-2-5:2020
---------------------- Page: 2 ----------------------
oSIST prEN 50600-2-5:2020
EUROPEAN STANDARD DRAFT
prEN 50600-2-5
NORME EUROPÉENNE
EUROPÄISCHE NORM
May 2020
ICS Will supersede EN 50600-2-5:2016 and all of its
amendments and corrigenda (if any)
English Version
Information technology - Data centre facilities and infrastructures
- Part 2-5: Security systems

Technologie de l'information - Installations et infrastructures Informationstechnik - Einrichtungen und Infrastrukturen von

de centres de traitement de données - Partie 2-5: Systèmes Rechenzentren - Teil 2-5: Sicherungssysteme

de sécurité
This draft European Standard is submitted to CENELEC members for enquiry.
Deadline for CENELEC: 2020-08-07.
It has been drawn up by CLC/TC 215.

If this draft becomes a European Standard, CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which

stipulate the conditions for giving this European Standard the status of a national standard without any alteration.

This draft European Standard was established by CENELEC in three official versions (English, French, German).

A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to

the CEN-CENELEC Management Centre has the same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,

Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the

Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,

Turkey and the United Kingdom.

Recipients of this draft are invited to submit, with their comments, notification of any relevant patent rights of which they are aware and to

provide supporting documentation.

Warning : This document is not a European Standard. It is distributed for review and comments. It is subject to change without notice and

shall not be referred to as a European Standard.
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels

© 2020 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.

Project: 71007 Ref. No. prEN 50600-2-5 E
---------------------- Page: 3 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
1 Contents Page

2 European foreword ...................................................................................................................................... 5

3 Introduction .................................................................................................................................................. 6

4 1 Scope .................................................................................................................................................. 9

5 2 Normative references........................................................................................................................ 9

6 3 Terms, definitions and abbreviations ........................................................................................... 10

7 3.1 Terms and definitions ........................................................................................................................ 10

8 3.2 Abbreviations ..................................................................................................................................... 11

9 4 Conformance ................................................................................................................................... 11

10 5 Physical security ............................................................................................................................. 11

11 5.1 General .............................................................................................................................................. 11

12 5.2 Risk analysis and management ......................................................................................................... 12

13 5.3 Designation of data centre spaces: Protection Classes .................................................................... 13

14 6 Protection Class against unauthorized access ........................................................................... 13

15 6.1 General .............................................................................................................................................. 13

16 6.1.1 Data centre configuration .................................................................................................................. 13

17 6.1.2 Protection Classes ............................................................................................................................ 13

18 6.1.3 Protection Classes of specific infrastructures ................................................................................... 16

19 6.1.4 Technical solutions to prevent unauthorized access ........................................................................ 16

20 6.2 Access to the data centre premises .................................................................................................. 16

21 6.2.1 Premises with external physical barriers ........................................................................................... 16

22 6.2.2 Premises without external physical barriers ...................................................................................... 17

23 6.2.3 Roofs ................................................................................................................................................. 18

24 6.2.4 Access routes .................................................................................................................................... 18

25 6.2.5 Parking .............................................................................................................................................. 18

26 6.2.6 Employees and visitors ..................................................................................................................... 19

27 6.2.7 Pathways ........................................................................................................................................... 19

28 6.2.8 Cabinets, racks and frames .............................................................................................................. 20

29 6.3 Implementation .................................................................................................................................. 20

30 6.3.1 Protection Class 1 ............................................................................................................................. 20

31 6.3.2 Protection Class 2 ............................................................................................................................. 21

32 6.3.3 Protection Class 3 ............................................................................................................................. 21

33 6.3.4 Protection Class 4 ............................................................................................................................. 22

34 7 Protection Class against intrusion to data centre spaces .......................................................... 23

35 7.1 General .............................................................................................................................................. 23

36 7.2 Technical solutions for the detection of intrusion............................................................................... 23

37 7.3 Implementation .................................................................................................................................. 23

38 7.3.1 Protection Class 1 ............................................................................................................................. 23

39 7.3.2 Protection Class 2 ............................................................................................................................. 24

40 7.3.3 Protection Class 3 ............................................................................................................................. 24

41 7.3.4 Protection Class 4 ............................................................................................................................. 25

---------------------- Page: 4 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)

42 8 Protection Class against fire events igniting within data centre spaces .................................. 25

43 8.1 General .............................................................................................................................................. 25

44 8.1.1 Protection Classes ............................................................................................................................ 25

45 8.1.2 Fire compartments and barriers ........................................................................................................ 26

46 8.1.3 Fire detection and fire alarm systems ............................................................................................... 27

47 8.1.4 Fixed firefighting systems .................................................................................................................. 27

48 8.1.5 Portable firefighting equipment ......................................................................................................... 29

49 8.2 Implementation .................................................................................................................................. 29

50 8.2.1 Protection Class 1 ............................................................................................................................. 29

51 8.2.2 Protection Class 2 ............................................................................................................................. 29

52 8.2.3 Protection Class 3 ............................................................................................................................. 29

53 8.2.4 Protection Class 4 ............................................................................................................................. 29

54 Protection Class against environmental events (other than fire) within data centre spaces . 30

55 9.1 General .............................................................................................................................................. 30

56 9.2 Implementation .................................................................................................................................. 30

57 9.2.1 Protection Class 1 ............................................................................................................................. 30

58 9.2.2 Protection Class 2 ............................................................................................................................. 30

59 9.2.3 Protection Class 3 ............................................................................................................................. 31

60 9.2.4 Protection Class 4 ............................................................................................................................. 31

61 10 Protection Class against environmental events outside the data centre spaces .................... 32

62 10.1 General .............................................................................................................................................. 32

63 10.2 Implementation .................................................................................................................................. 32

64 10.2.1 Protection Class 1 ............................................................................................................................. 32

65 10.2.2 Protection Class 2 ............................................................................................................................. 32

66 10.2.3 Protection Class 3 ............................................................................................................................. 33

67 11 Systems to prevent unauthorized access and intrusion ............................................................ 33

68 11.1 General .............................................................................................................................................. 33

69 11.2 Technology ........................................................................................................................................ 34

70 11.2.1 Security lighting ................................................................................................................................. 34

71 11.2.2 Video surveillance systems ............................................................................................................... 34

72 11.2.3 Intruder and holdup alarm systems ................................................................................................... 35

73 11.2.4 Access control ................................................................................................................................... 36

74 11.2.5 Alarm monitoring ............................................................................................................................... 36

Annex A (informative) Pressure relief: Additional information ............................................................. 37

76 A.1 General ............................................................................................................................................. 37

77 A.2 Design considerations .................................................................................................................... 37

Bibliography ............................................................................................................................................... 39

80 Figures

81 Figure 1 — Schematic relationship between the EN 50600 standards ......................................................... 7

82 Figure 2 — Risk analysis and management concepts ................................................................................ 12

83 Figure 3 — Protection Classes within the 4-layer physical protection model ............................................. 14

---------------------- Page: 5 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)

84 Figure 4 — Protection Class islands ........................................................................................................... 15

85 Figure 5 — Connections between Protection Class islands ....................................................................... 15

86 Figure 6 — Example of Protection Classes applied to data centre premises with external barriers .......... 17

87 Figure 7 — Example of Protection Classes applied to data centre premises without external barriers ..... 18

89 Tables

90 Table 1 — Protection Classes against unauthorized access ...................................................................... 14

91 Table 2 — Technical solutions for access control ....................................................................................... 16

92 Table 3 — Technical solutions for intrusion detection ................................................................................. 23

93 Table 4 — Protection Classes against internal fire events .......................................................................... 26

94 Table 5 — Protection Classes against internal environmental events ........................................................ 30

95 Table 6 — Protection Classes against external environmental events ....................................................... 32

96 Table 7 — Elements of systems for the prevention of unauthorized access .............................................. 33

---------------------- Page: 6 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
98 European foreword

99 This document (prEN 50600-2-5:2020) has been prepared by CLC/TC 215 “Electrotechnical aspects of

100 telecommunication equipment”.
101 This document is currently submitted to the Enquiry.
102 The following dates are proposed:
• latest date by which the existence of this (doa) dor + 6 months
document has to be announced at national
level
• latest date by which this document has to be (dop) dor + 12 months
implemented at national level by publication of
an identical national standard or by
endorsement
• latest date by which the national standards (dow) dor + 36 months
conflicting with this document have to be (to be confirmed or
withdrawn modified when voting)

103 This document will supersede EN 50600-2-5:2016 and all of its amendments and corrigenda (if any).

104 This document includes the following significant technical changes with respect to EN 50600-2-5:2016:

105 a) technical update to all clauses in response to user feedback;

106 b) new Clause 7 on Protection Classes against intrusion to data centre spaces added and Clause 6

107 restructured accordingly;

108 c) references to relevant provisions of prEN 50600-2-1:2020 added to highlight the respective links to

109 constructional requirements;
110 d) various editorial updates.
---------------------- Page: 7 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)
111 Introduction

112 The unrestricted access to internet-based information demanded by the information society has led to an

113 exponential growth of both internet traffic and the volume of stored/retrieved data. Data centres are housing

114 and supporting the information technology and network telecommunications equipment for data processing,

115 data storage and data transport. They are required both by network operators (delivering those services to

116 customer premises) and by enterprises within those customer premises.

117 Data centres need to provide modular, scalable and flexible facilities and infrastructures to easily

118 accommodate the rapidly changing requirements of the market. In addition, energy consumption of data

119 centres has become critical both from an environmental point of view (reduction of carbon footprint) and with

120 respect to economical considerations (cost of energy) for the data centre operator.

121 The implementation of data centres varies in terms of:
122 a) purpose (enterprise, co-location, co-hosting, or network operator);
123 b) security level;
124 c) physical size;
125 d) accommodation (mobile, temporary and permanent constructions).

126 The needs of data centres also vary in terms of availability of service, the provision of security and the

127 objectives for energy efficiency. These needs and objectives influence the design of data centres in terms of

128 building construction, power distribution, environmental control and physical security. Effective management

129 and operational information is imperative in order to monitor achievement of the defined needs and

130 objectives.

131 This series specifies requirements and recommendations to support the various parties involved in the

132 design, planning, procurement, integration, installation, operation and maintenance of facilities and

133 infrastructures within data centres. These parties include:

134 1) owners, facility managers, ICT managers, project managers, main contractors;

135 2) architects, consultants, building designers and builders, system and installation designers;

136 3) facility and infrastructure integrators, suppliers of equipment;
137 4) installers, maintainers.

138 At the time of publication of this document, the EN 50600 series currently comprises the following standards:

139 — EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General

140 concepts;

141 — EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building

142 construction;

143 — EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power

144 supply and distribution;

145 — EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3:

146 Environmental control;

147 — EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:

148 Telecommunications cabling infrastructure;
---------------------- Page: 8 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)

149 — EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security

150 systems;

151 — EN 50600-3-1, Information technology — Data centre facilities and infrastructures — Part 3-1:

152 Management and operational information;

153 — EN 50600-4-1, Information technology — Data centre facilities and infrastructures — Part 4-1: Overview

154 of and general requirements for key performance indicators;

155 — EN 50600-4-2, Information technology — Data centre facilities and infrastructures — Part 4-2: Power

156 Usage Effectiveness;

157 — EN 50600-4-3, Information technology — Data centre facilities and infrastructures — Part 4-3:

158 Renewable Energy Factor;

159 — EN 50600-4-6, Information technology — Data centre facilities and infrastructures — Part 4-6: Energy

160 Reuse Factor;

161 — EN 50600-4-7, Information technology — Data centre facilities and infrastructures — Part 4-7: Cooling

162 Efficiency Ratio;

163 — CLC/TR 50600-99-1, Information technology — Data centre facilities and infrastructures — Part 99-1:

164 Recommended practices for energy management;

165 — CLC/TR 50600-99-2, Information technology — Data centre facilities and infrastructures — Part 99-2:

166 Recommended practices for environmental sustainability;

167 — CLC/TR 50600-99-3, Information technology — Data centre facilities and infrastructures — Part 99-3:

168 Guidance for the application of EN 50600 series.

169 The inter-relationship of the standards within the EN 50600 series is shown in Figure 1.

170
171 Figure 1 — Schematic relationship between the EN 50600 standards
---------------------- Page: 9 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)

172 EN 50600-2-X standards specify requirements and recommendations for particular facilities and

173 infrastructures to support the relevant classification for “availability”, “physical security” and “energy efficiency

174 enablement” selected from EN 50600-1.

175 EN 50600-3-X documents specify requirements and recommendations for data centre operations, processes

176 and management.

177 EN 50600-4-X documents specify requirements and recommendations for key performance indicators (KPIs)

178 used to assess and improve the resource usage efficiency and effectiveness, respectively, of a data centre.

179 This document addresses the physical security of facilities and infrastructure within data centres together

180 with the interfaces for monitoring the performance of those facilities and infrastructures in line EN 50600-3-1

181 (in accordance with the requirements of EN 50600-1).

182 This document is intended for use by and collaboration between architects, building designers and builders,

183 system and installation designers and security managers among others.

184 This series of documents does not address the selection of information technology and network

185 telecommunications equipment, software and associated configuration issues.
---------------------- Page: 10 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020(E)
186 1 Scope

187 This document addresses the physical security of data centres based upon the criteria and classifications for

188 “availability”, “security” and “energy efficiency enablement” within EN 50600-1.

189 This document provides designations for the data centres spaces defined in EN 50600-1.

190 This document specifies requirements and recommendations for those data centre spaces, and the systems

191 employed within those spaces, in relation to protection against:

192 a) unauthorized access addressing organizational and technological solutions;

193 b) intrusion;
194 c) fire events igniting within data centres spaces;

195 d) other events within or outside the data centre spaces, which would affect the defined level of protection.

196 NOTE Constructional requirements and recommendations are provided by reference to EN 50600-2-1.

197 Safety and electromagnetic compatibility (EMC) requirements are outside the scope of this document and

198 are covered by other standards and regulations. However, the information given in this document can be of

199 assistance in meeting these standards and regulations.
200 2 Normative references

201 The following documents are referred to in the text in such a way that some or all of their content constitutes

202 requirements of this document. For dated references, only the edition cited applies. For undated references,

203 the latest edition of the referenced document (including any amendments) applies.

204 EN 3 (all parts), Portable fire extinguishers
205 EN 54 (all parts), Fire detection and fire alarm systems

206 EN 54-20:2006, Fire detection and fire alarm systems — Part 20: Aspirating smoke detectors

207 EN 12845, Fixed firefighting systems — Automatic sprinkler systems — Design, installation and maintenance

208 EN 13565-2, Fixed firefighting systems — Foam systems — Part 2: Design, construction and maintenance

209 CEN/TS 14816, Fixed firefighting systems — Water spray systems — Design, installation and maintenance

210 CEN/TS 14972, Fixed firefighting systems — Watermist systems — Design and installation

211 EN 16750, Fixed firefighting systems — Oxygen reduction systems — Design, installation, planning and

212 maintenance
213 EN 50131 (all parts), Alarm systems — Intrusion and hold-up systems

214 EN 50136 (all parts), Alarm systems — Alarm transmission systems and equipment

215 EN 50518, Monitoring and Alarm Receiving Centre

216 EN 50600-1, Information technology — Data centre facilities and infrastructures — Part 1: General concepts

217 EN 50600-2-1, Information technology — Data centre facilities and infrastructures — Part 2-1: Building

218 construction
---------------------- Page: 11 ----------------------
oSIST prEN 50600-2-5:2020
prEN 50600-2-5:2020 (E)

219 EN 50600-2-2, Information technology — Data centre facilities and infrastructures — Part 2-2: Power supply

220 and distribution

221 EN 50600-2-3, Information technology — Data centre facilities and infrastructures — Part 2-3: Environmental

222 control

223 EN 50600-2-4, Information technology — Data centre facilities and infrastructures — Part 2-4:

224 Telecommunications cabling infrastructure

225 EN 50600-2-5, Information technology — Data centre facilities and infrastructures — Part 2-5: Security

226 systems

227 EN 60839-11-1, Alarm and electronic security systems — Part 11-1: Electronic access control systems -

228 System and components requirements (IEC 60839-11-1)
229 EN 62305 (series), Protection against lightning (IEC 62305 series)

230 EN 62676-1-1:2014, Video surveillance systems for use in security applications — Part 1-1: System

231 requirements — General (IEC 62676-1-1:2014)
232 3 Terms, definitions and abbreviations
233 3.1 Terms and definitions

234 For the purposes of this document, the terms and definitions given in EN 50600-1 and the following apply.

235 ISO and IEC maintain terminological databases for use in standardization at the following addresses:

236 — ISO Online browsing platform: available at https://www.iso.org/obp
237 — IEC Electropedia: available at http://www.electropedia.org/
238 3.1.1
239 authorized person

240 person having been assessed and subsequently provided with access credentials to specific areas within the

241 data centre
242 3.1.2
243 forcible threat
244 threat exhibited by physical force
245 3.1.3
246 frame

247 open construction, typically wall-mounted, for housing closures and other information technology equipment

248 [SOURCE: EN 50174-1:2018, 3.1.21]
249 3.1.4
250 free-standing barrier

251 wall, fence, gate, turnstile or other similar self-supporting barrier, and their associated foundations, designed

252 to prevent entry to a space of a given Protection Class
253 [SOURCE: prEN 50600-2-1:2020, 3.1.2]
254 3.1.5
255 hold time
256 time during which a concentration of fir
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.