Cameras in a server room are standard. They are visible, familiar and easy to understand. But what if you could detect an intruder using only WiFi waves?

That is where advanced WiFi Sensing, often based on Channel State Information (CSI), becomes interesting.

Instead of using WiFi only for data transmission, CSI-based sensing looks at how radio waves behave inside a physical space. When a person moves through the room, the signal changes. Waves reflect, scatter and fade differently depending on the body, position, movement and walking pattern.

With specialized hardware and trained models, those changes can become a kind of biometric fingerprint.

The idea

A human body affects radio waves in a measurable way. Body mass, shape, posture and gait all influence how the WiFi signal reflects through the environment.

That means a system can potentially learn the normal signature of an authorized person and distinguish it from an unknown presence.

In a server room, the use case is clear:

  1. Train the model on the authorized IT administrator.
  2. Learn the expected WiFi reflection pattern.
  3. Keep monitoring the room passively.
  4. Stay quiet when the known admin enters.
  5. Raise an alert when the detected signature does not match.

The difference could be body mass, movement style, speed, posture or another characteristic visible in the radio-wave pattern.

Why it matters for server rooms

Server rooms and datacenters already use access control, cameras, logs and sometimes motion sensors. But every technology has limits.

Cameras can have blind spots. They depend on light, placement and visibility. Motion sensors may detect movement but not identity. Access cards prove that a credential was used, not always that the right person entered.

WiFi sensing could add another layer:

  • it works in darkness,
  • it can cover areas without direct line of sight,
  • it is passive from the user’s perspective,
  • it can detect movement through radio-wave changes,
  • it can potentially distinguish known and unknown physical signatures.

That makes it especially interesting for critical infrastructure, where physical access is part of the security boundary.

Not a replacement, but another signal

I would not treat WiFi sensing as a replacement for cameras, locks or access control. It is better to think of it as another signal in a layered physical-security model.

A useful system could combine:

  • door access logs,
  • camera events,
  • WiFi sensing signatures,
  • time-based access rules,
  • administrator schedules,
  • alert correlation.

If the door says one person entered, the camera sees motion and the WiFi signature does not match the expected admin, that becomes a stronger reason to investigate.

The difficult questions

There are also real questions to solve before this becomes ordinary infrastructure security:

  • How accurate is the model in a changing room?
  • What happens when equipment racks move or new devices are installed?
  • How well does it distinguish similar body types?
  • How many samples are needed for reliable training?
  • How do we handle privacy and consent?
  • How do we prevent spoofing or adversarial behavior?

The technology is promising, but operational reliability matters more than the demo.

The direction

Still, the idea is powerful: zero blind spots, working in pitch black, completely passive and based on the radio environment already present in many buildings.

For critical infrastructure, the future of physical security may not be only more cameras. It may also be better sensing from signals we already use every day.

Is WiFi sensing the next layer of server-room security? I think it is worth watching.