Showing posts with label Intrusion. Show all posts
Showing posts with label Intrusion. Show all posts

Saturday, April 1, 2023

Pros and cons of using drones for perimeter security

Pros and Cons of using Drones for Perimeter security

Physical intrusion in private properties still remains a major concern today. To counter this, people generally resort to video surveillance in combination with other hardware.

According to a report from Markets and Markets, the video surveillance market, which includes both hardware and software, is presently at USD 45.5 billion and is expected to reach USD 74.6 billion by 2025.

These unmanned aerial vehicles (UAVs) offer a range of benefits over traditional security measures, including improved coverage, faster response times, and reduced costs. For physical security installers, integrating drones into their security solutions can provide a significant competitive advantage and open up new business opportunities.

Perimeter security is an active barrier or fortification around a defined area to prevent all forms of intrusion. Modern security systems are an amalgamation of sophisticated hardware and software that generally include cameras, motion sensors, electric fencing, high-intensity lights, and a command center to manage them all.

Challenges with conventional security systems (without drones) for perimeter security

Below are some of the drawbacks and limitations that are inherent in a conventional security system:

·        CCTV cameras and motion detectors are stationary, thus leaving plenty of room for blind spots.

·        Patrolling requires human guards – for larger areas, this is the least efficient way of securing a premise.

·        Response to an intrusion is delayed since a human responder has to reach the location.

 

5 advantages of using drones for perimeter security

While there are several advantages to using perimeter security drones, customers must know that not every benefit may apply to every vertical. For example, drones may offer better coverage in some cases, but if a site is riddled with obstacles in the form of complex buildings, UAVs may find it difficult to operate. Having said that, here are five benefits:

1. Improved coverage

One of the most significant advantages of using drones for perimeter security is the ability to provide wider coverage of the area being monitored. Drones can fly at various heights and angles, enabling them to capture footage from locations that may be difficult or impossible to reach using traditional security measures. As a result, drones can provide a more comprehensive view of the perimeter and identify potential security threats more effectively.

2. Faster response times

Drones can respond to security incidents much faster than human security personnel. Once a potential threat is detected, the drone can quickly move to the location and assess the situation, providing real-time information to security teams. This enables security personnel to respond more rapidly and effectively, potentially preventing security breaches or minimizing the damage caused by such incidents.

3. Reduced costs

Drones can be a cost-effective alternative to traditional security measures. By using drones, physical security installers can reduce the need for expensive human resources, such as security guards. In addition, drones can provide 24/7 surveillance, reducing the need for multiple security shifts and reducing overall operating costs.

4. Flexibility

Drones can be deployed quickly and easily, making them ideal for providing security in a range of scenarios. They can be used for event security, construction site security, critical infrastructure security, and many other applications. Additionally, drones can be programmed to follow specific flight paths or patrol specific areas, providing increased flexibility and customization.

5. Improved safety

Drones can be used to provide security in hazardous or hard-to-reach areas, reducing the risk to human security personnel. For example, drones can monitor areas that are prone to natural disasters, such as flood-prone areas or earthquake-prone regions. This can help to ensure the safety of security personnel and reduce the risk of injury or loss of life.

5 disadvantages of using drones for perimeter security

Although the advantages may outweigh the disadvantages in many verticals, customers need to remain aware that drones have several limitations. At the end of the day, drones are restricted by several factors and optimizing your security operations around these limitations is essential to achieving the best results.

1. Limited flight time

One of the primary limitations of using drones for perimeter security is the limited flight time. Most commercial drones have a flight time of 20-30 minutes, which may not be sufficient for large areas or extended surveillance periods. This means that multiple drones may be required to cover a single perimeter, increasing costs and complexity.

2. Dependence on technology

Drones are highly dependent on technology and may be susceptible to system failures, such as signal loss or malfunctioning equipment. This could compromise the effectiveness of the security system and potentially lead to security breaches.

3. Weather conditions

Many drones are highly sensitive to weather conditions, and high winds, rain, or fog can compromise their effectiveness. This means that they may not be suitable for use in all weather conditions, reducing their overall effectiveness.

4. Privacy concerns

The use of drones for security purposes may raise privacy concerns among individuals in the area being monitored. This could lead to legal challenges or a negative public perception of the security system, which could undermine its effectiveness.

5. Regulatory constraints

The use of drones for security purposes is subject to a range of regulatory constraints, including restrictions on flying in certain areas or operating outside of certain hours. This could limit the effectiveness of the security system or add complexity to its operation. Also, several countries like the US require commercial drone operators to hold valid licenses, which might further increase operational costs.

Conclusion

In short, the use of drones for perimeter security has both advantages and disadvantages. While drones offer improved coverage, faster response times, reduced costs, flexibility, and improved safety, they are also limited by their flight time, dependence on technology, weather conditions, privacy concerns, and regulatory constraints.

Regarding technology, factors to consider also include the type of drone to use. For instance, while remote-controlled drones are popular, several leading companies offer autonomous drones that offer a host of several advantages and disadvantages.

Physical security integrators must carefully evaluate these factors before deciding to add drones into their security solutions. With careful planning and implementation, however, drones can provide a significant competitive advantage and help to enhance the effectiveness of security systems.

FAQ (Frequently Asked Questions)

Q: How Drones add a new dimension to perimeter security?

A: Drones are mobile flying machines that can go anywhere. Thus they eliminate blind spots. In the event of an intrusion, a drone can apprehend an intruder real-time fast and send footage realtime to remote viewers.

Q: What impact can drones have on the security industry?

A: Drones have pushed the technology bounds of the security industry. They are making security systems smart and robust, which can tackle all forms of threats.

Q: What are the Uses of drones for perimeter security?

A: Drones are used in conjunction with CCTV cameras and other sensors to apprehend intruders fast and send real-time feedback to remote viewers.

Q: Can we use drone for remote surveillance security purposes?

A: Drones can be remotely controlled using a fleet management system like FlytNow. Such a system allows a user to manage and control multiple drones from a unified dashboard remotely. The user even has access to the live video feed.

Q: What drones are used for security operations?

A: 1. DJI Matrice 200 Series

2. Yuneec H520

3. Parrot Anafi

4. Autel Robotics EVO

5. DJI Inspire 2

6. DJI Phantom 4 Pro

7. Aibotix X6

8. Skydio 2

9. DJI Mavic 2 Pro

10. DJI Mavic Air

Thursday, September 15, 2022

The 5 D’s Of Outdoor Perimeter Security For Business

The 5 D’s Of Outdoor Perimeter Security For Business 

When it comes to your business, you must ensure that every inch of it is protected. Many people ignore the outdoor perimeter of their establishment and focus on the inside. However, the outdoor security of your business is equally important. To protect your building’s entire structure, there is a key security principle that you can use: The five D’s. They are Deter, Detect, Deny, Delay and Defend. Each plays a specific role in securing your business’ exterior.

Deter

Your first line of defence is deterrence. In order to keep criminals away, you have to deter them from even thinking about setting foot on your property. To create a shield of deterrence, you need to start simple with signs. Put up signs that say “No Trespassing,” “Property Under Surveillance,” “We review CCTV footage Everyday”, “Guard Dog on Premises” and “Security Personnel On Duty 24-7.” You may not have a guard dog but the suggestion of one could be enough to keep criminals at bay. Another line of deterrence is to have surveillance technology. Having CCTV security cameras visible will discourage criminals.

Detect

Protect your building’s perimeter with equipment that can detect trespassers. Surveillance cameras, motion sensors, and other security equipment that can sense movement are all must-haves to ensure that anything out of the ordinary is detected.

Deny

To keep your perimeter secure while letting authorized personnel come and go, you need to deny those who aren’t supposed to be there. With a manned security gate at the main point of entry, anyone who isn’t supposed to be coming and going will be stopped immediately. Another way to deny criminals entrance to your property is with card access. This is an added security measure that ensures that even when people are in the building they need to use an access card to get into certain areas. You can even have your employees scan their cards at the manned security gate.

Delay

A delay system should be in place in case something should go wrong with your security system and an intruder is able to penetrate the building’s perimeter. This can be done through interior locking doors and barriers. By having a delay system you give your security team and the police enough time to respond to the intrusion and the criminal cannot get away.

Defend

To defend your perimeter against intruders you will need the help of local law enforcement and your security personnel. This involves having a protocol in place for making sure a criminal is being watched during the time period after they’ve been apprehended by your security personnel, and the time law enforcement arrives scene.

Creating optimal outdoor perimeter security requires planning. However, once you have the Five D’s in place, you can rest assured that your business is safe.

For, free suggestion consultancy about security alarm system can contact SSA Integrate via mail ssaintegrate@gmail.com 


Tuesday, March 1, 2022

Comparison Metrics for Intrusion Panels

 Comparison Metrics for Intrusion Panels

In this note, we reviews fundamental features and attributes for evaluating and comparing intrusion alarm panels.  These criteria are:

·        Number of Hardwired Zones

·        Number of Wireless Zones

·        Number of Keypads Supported

·        Multiple User Codes Supported

·        IP Programming and Control

·        Advanced Features

·        System Expandability

·        Video/Access/Fire Integration

·        Dealer Only

·        Installation & Commissioning

Inside we define and describe each of these criteria.

Comparison Chart

The ability to condense the 10 points into a standard format is critical for comparing systems to each other. Conceptually, these factors form a graphic like this example:

For quick 'executive summary' level comparison, a chart is useful. However, our standard report method includes detailed descriptions of each of those 10 points. In the sections below, we describe in detail each category.

Number of Hardwired Zones

How many areas a panel can monitor is a core feature. Keeping track of number of sensors is too simplistic and not always helpful.  Many sensors can often be connected in series, for example in a bank of windows several sensors may be wired together in a chain and connected to the panel in one circuit. If one contact opens, the entire zone the circuit is connected to alarms with no specific indication of which sensor is reporting trouble.  

However, granularity can be achieved when zones are associated with one or a small number of sensors in an building's area. In this way, comparing number of zones is a useful metric.

Number of Wireless Zones

Not all panels or systems support wireless sensors.  Moreover, some panels may only support wireless with optional equipment or in one specific zone. As with hardwired, comparing wireless zones is the standard attribute.

Number and Type of Keypads Supported

For many systems, the type and ability to have multiple input keypads is a major consideration.  While most alarm systems support one installed keypad, the location where it is installed may be inconvenient for quick access by users in all protected areas. Also, the utility of a basic alpha-numeric pad cannot be compared to a full graphic touchscreen that may display or even sound more descriptive messages or be integrated with other systems like video surveillance.

Multiple User Codes Supported

Akin (সদৃশ) to key control or access control, 'user codes' should be assigned to and may be provisioned differently for individual users. Basic alarm systems may support 20 user codes and be more than enough for a typical residential install, but that number may be too limited or small for small commercial use.

Likewise, each code may carry different privileges, from a 'master' configured to do anything, to a 'temporary' that may expire after one use that is only valid for a specific range of hours.

IP Programming and Control

Not all panels have a web or network interface for notification, control, or programming from a networked device.  While this may not be a major dealbreaker for a simple user, the expectation of easy programming, use, and integration often depend on this feature.

Noting the options and type of IP connectivity is key for modern systems, but many systems lack it or require additional parts to make it happen. This category also indicates the usefulness and/or cost app-based or remote access controls.

Advanced Features

Comparing additional non-essential, but still valuable, attributes of individual systems is key. For example, 'line supervision', or the ability to detect weather sensors on a circuit are tampered with, is not often a major consideration in residential or even small commercial systems, but is often critical in high-security applications. Likewise, noting how many events can be logged into panel memory may make a big difference in some designs but not all.

System Expandability

The maximum number of zones a system supports often require additional hardware or modules to achieve that what is available by default on a stock panel. Additionally, the supported number is often different than the individual number of hardwired zones plus wireless zones available from expansion hardware.

In other cases, hardware zone expanders may physically support connecting hundred of zones, while the underlying panel only supports a fraction of that number. Noting 'expandability' clears up potential confusion.

Video/Access/Fire Integration

In terms of tying other systems into the intrusion system, the variation and ability of supported systems is substantial. Some systems support basic access control or video surveillance camera integration by default, while others require additional hardware or software for proprietary devices. Others may not support any integration at all.  Understanding the options are important comparison factors.

Dealer Only

Understanding the availability, support, and pricing structure behind a platform is another key information point.  Many alarm products are not available via distribution, and understanding this point often is a factor is weighing buying and support options.

Installation & Commissioning

Check installation team shouldn’t hide any password, must now share installed sensor details with others. Select professional and they must invite you to put password and user-id creation. They must trained you in easy way and handover all document related product and there company details for telephonic support. 

If you still aren't sure how you manage your building / establishment/ Shop Burgler alarm system or Intrusion Alarm System, feel free to get in touch with one of our experts via ssaintegrate@gmail.com. Before selecting vendor / installer check and verify they are authorized or not to execute your Burglar or Intrusion Alarm system work. It’s suggested Burglar alarm or Intrusion Detection & Alarm System commissioned by certified professional.


Monday, November 15, 2021

Should I Upgrade My Existing Security System?

Should I Upgrade My Existing Security System? 

A security system is designed to do one thing: keep you, your property, and those you care about safe. However, if you are using a security system that is ten or more years old, it may not be able to provide you with the level of security you want or need. Not only are older systems susceptible to malfunction, but since they are less sophisticated than systems available today, they put you at risk of malicious activities by tech-savvy thieves.

Unsure how to decide whether it is time for your upgrade? Below are three reasons that you should consider installing a new security system today!

Here are four signs it is time to upgrade your security system:

1. Dated technology
Security systems are not a once-in-a-lifetime investment. Like any piece of technology that you purchase, they have to be frequently updated and maintained to optimize their functionality. Your security system is like a phone — it requires periodic investment and replacement over time, not to mention that since technology changes so quickly, your device could soon become obsolete.

2. Alarm safety
Before the days of wireless data, security systems were operated via land lines with wires that could be easily manipulated by unwanted intruders. Luckily, since modern alarm systems operate using cellular transmitters to send and receive messages, they provide a safer alternative for homeowners.

At Video, Intrusion or Fire Monitoring in India, we have partnered with Netra Monitoring to provide customers with specialized Interactive Alarm Monitoring services, including home automation, remote arming and disarming, thermostat control, video surveillance and much more. Unlike an outdated security system, the Alarm Monitoring service feature can be managed centrally for one location or multiple locations through an app on your iPhone, iPad, or Android-powered device.

Your safety is of the upmost importance, but with Netra Monitoring, it doesn’t have to be an inconvenience.

3. Transmission
The biggest reason security systems become obsolete is that technology becomes outdated. Since most modern security devices use the same towers as cellphones to send and receive alerts, it is most likely that the reason your product will be unusable is that, much like a cell phone, the network it uses to operate is no longer available.

The good news is that there is often quite a bit of overlap in what networks are available. For instance, 2G technology is being phased out, but 3G, 4G, and 5G are still available and often work interchangeably.

What is great about a system that works on this kind of network is that while 2G will soon be unavailable, you don’t have to replace your entire system to still use it. Often, you will need to replace a small component to keep it running.

4. Protecting Your Investment
The best way to ensure that you are getting the most out of your investment is to purchase your new security system from a company that is dedicated to making your experience with their product the best one possible. At Fire Monitoring at India, we perform regular service and maintenance on your products and make sure you are informed of any upgrades that your system requires and technology changes or your system ages.

We think of keeping an alarm system up-to-date as being similar to maintaining a car. Just because your car gets old doesn’t mean it is useless — if something breaks, you fix it and keep on driving. By working with one of our technicians, you will get more life out of your equipment than you ever imagined and be able to enjoy the safety you deserve for years to come.

When your security system becomes an afterthought – and eventually an outdated afterthought – it leaves your building vulnerable.

Netra Monitoring installs custom-designed, scalable, user-friendly usable commercial intrusion alarm systems, and we feel that even the least experienced user will be able to use our systems with the proper training. Netra Monitoring also work for Central Alarm Monitoring with Video Verification services in India.



Saturday, June 24, 2017

Secure your security surveillance

Secure your security surveillance

Surveillance systems offer home and business owners peace of mind, knowing that their property and valuables are protected from criminals. But during Surveillance installation owners / responsible person couldn’t change default password of product, like: DVR. NVR, IP Camera, IP Intrusion Panel, Router, Access Point etc. Many users sometimes call me and ask “my DVR data is formatted, but I couldn’t share DVR password”, “I lost my NVR password, how to retrieve the same” etc. etc.

I have seen 80% of users will not change the default username and password for their IP cameras. Electronic Security Surveillance footage is useful in conducting investigations.  IP video surveillance is not immune to cyber risks, but taking basic steps toward protecting and strengthening networks and networked appliances will make them less susceptible to attacks. Below are some tips.

1.     Change default passwords and used strong word:
You can find the default username and password from either user-manual or the product sticker on the product. Sometime your installer share password. Default passwords makes your system easier to hack. It’s like leaving the door already half open for smart hackers. The most used default account for IP camera is admin/admin.  You may need to reset your device before. After reset, user settings and account information will return to their factory settings. Below are the top 10 passwords 
            a.     12345
            b.     Password
  1. 12345678
  2. qwerty
  3. abc123
  4. 987654321
  5. 111111
  6. 1234567
  7. iloveyou
  8. adobe123
Almost all cameras sold today have a web-based graphical user interface (GUI), and come with a default username and password which is published on the internet. Using a strong password is the vital step to protect your IP camera from unauthorized accessing or hacking. The strong password must contain more than eight characters and at least include four types of characters - uppercase letter, lowercase, numbers and special characters. 

2.     Change Passwords Regularly:
Regularly change the credentials to your devices to help ensure that only authorized users are able to access the system. Most cameras offer at least some form of basic authentication. It may not be super robust, but at least it is better than nothing at all. Protect your camera feeds with a username and a strong password and change it periodically. Set high quality passwords and do password enforcement and account deletion when staff changes.

3.     Rename the Default Admin Account and set a new Admin Password
Your camera's default admin name and password, set by the manufacturer, is usually available by visiting their website and going to the support section for your camera model. If you haven't changed the admin name and password then even the most novice hacker can quickly look up the default password and view your feeds and/or take control of your camera.

4.     Limitation of Guest Accounts
If your system is set up for multiple users, ensure that each user only has rights to features and functions they need to use to perform their job.

5.      Change ONVIF Password
On older IP Camera firmware (applicable for limited product), the ONVIF password does not change when you change the system’s credentials. You will need to either update the camera’s firmware to the latest revision or manually change the ONVIF password.

6.      Manage your camera settings
Including a camera in a home security system is a must these days. It can allow you to view online what’s happening at home even if you’re on the other side of the world. However, with the same feature, you can also be exposing yourself to potential hackers.
A security camera is set for remote online monitoring by default during your purchase. This feature makes it possible for you to keep an eye on your home in real time through a specific app or website. It also makes it a possibility for hackers to use your own camera to spy on your home. Scary, right?
If you can go by without remote online monitoring, turn this feature off. However, if you feel that it’s a necessity to keep the feature, then guard your home and your system by a strong password. It can also help if you strictly position the cameras to face only the areas they’re supposed to monitor. Avoid including your living room or your bedroom entirely.

7.     If Your Camera is Wireless, Turn on WPA2 Encryption
If your camera is wireless capable, you should only join it to a WPA2-encrypted wireless network so that wireless eavesdroppers can't connect to it and access your video feeds.

8.     Enable HTTPS/SSL:
Set up an SSL Certificate to enable HTTPS. This will encrypt all communication between your devices and Storage.
Many cloud vendors provide connection encryption, but it is variable. Confirm with your cloud vendor how their system handles this.

9.      Protect your router.
Like your security system, you can also make your home more secure by protecting your router with an effective password. You can use the same ideas as above. However, make sure you don’t use the same access codes for your system and router.
You can also try hiding your router by manipulating its configuration to make it invisible. However, you have to keep in mind that doing so doesn’t completely make your router invisible. Instead, it only makes your network not easily seen on basic and automatic searches. If a hacker is too advanced, he can simply look for a tool and use it to find your network.

10.   Avoid using public wi-fi.
As much as possible, try not to access your automation devices at home using public wi-fi connections. This makes you more prone to hackers getting access to your personal informations. You can try using your mobile data service or find a more secured connection before you click connect.

11.   Enable IP Filter:
Enabling your IP filter will prevent everyone, except those with specified IP addresses, from accessing the system.

12.   Check the Log
Most of the time, the easiest way to know if someone has been messing around with your system is by checking your camera logs. There are several security cameras that can show you the IP addresses that accessed your cameras. If you find a suspicious one on your log, immediately change your access codes and notify proper authorities.

13.   Disable UPNP:
UPNP will automatically try to forward ports in your router or modem. Normally this would be a good thing. However, if your system automatically forwards the ports, and you leave the credentials defaulted, you may end up with unwanted visitors.
If you manually forwarded the HTTP and TCP ports in your router/modem this feature should be turned off regardless.

14.   Disable SNMP:
Disable SNMP if you are not using it. If you are using SNMP, you should do so temporarily, for tracing and testing purposes only.

15.   Disable P2P:
P2P is used to remotely access a system via a serial number. The possibility of someone hacking into your system using P2P is highly unlikely because the system’s user name, password, and serial number are also required.

16.   Disable Multicast:
Multicast is used to share video streams between two recorders. Currently there are no known issues involving Multicast, but if you are not using this feature, you should disable it.

17.   Put up a firewall.
Make sure you have a firewall in your network to prevent unauthorized access to your devices. If you don’t have one, you can browse the internet to know your best options on firewall downloads.
For a cloud-based solution without port forwarding, an on-site firewall configuration is not needed. Speak with your integrator or system manufacturer to confirm this.

18.   Change Default HTTP and TCP Ports:
Change default HTTP and TCP ports for Dahua systems. These are the two ports used to communicate and to view video feeds remotely.
These ports can be changed to any set of numbers between 1025-65535. Avoiding the default ports reduces the risk of outsiders being able to guess which ports you are using.

19.   Forward Only Ports You Need:
Ideally, do NOT connect your unprotected server to the internet. If you do expose your system to the internet, then “port forward” as few ports as possible and utilize a next generation firewall which analyzes the protocol and blocks incorrect protocols sent over the wrong port. In an ideal situation, also deploy an IDS/IPS for further protection. Its applicable for IP Camera/ DVR/ NVR/ VMS.
The more secure cloud-based systems do not have port forwarding, so no vulnerability exists, and no incremental protection action is required. Ask your integrator or provider to verify this for any system you own or are considering acquiring.

20.   Build a separate network
Mixing the cameras on a standard network without separation is a recipe for disaster. If your security camera system is connected to your main network, you are creating a doorway for hackers to enter your main network via your surveillance system, or to enter your physical security system through your main network. Some DVRs can even be shipped with a virus.
Ideally, place the security camera system on a physically separate network from the rest of your network. If you are integrating with a sophisticated IT environment, it is not always possible to separate the two systems physically.
In this event, you should use a VLAN.

21.   Connect IP Cameras to the PoE Ports on the Back of an NVR:
Cameras connected to the PoE ports on the back of an NVR are isolated from the outside world and cannot be accessed directly.

22.   Secure your smart phone
Most of today’s home security systems are controlled through smart mobile applications  and this is what makes your smartphone very important for your home’s security. Keep it in mind to always have it protected.
For one, you should avoid logging in to your system while in public places. Someone near you could be waiting for your password. Also, make sure that no one else can access your phone by securing it with a password lock. You can also install a track app just in case you misplace or lost your phone.
If such event happens, make sure to immediately remove your phone’s access from your security system and report the incident right away.

23.   Upgrade your apps and firmwares.
The reason why companies keep updating their firmwares is to fix bugs and glitches as well as to add security patches. By complying with the updates, you are arming yourself with better protection against hackers.

24.   Disable Auto-Login on apps:
If you are using apps to view your system and you are on a computer that is used by multiple people, make sure auto-login is disabled. This adds a layer of security to prevent users without the appropriate credentials from accessing the system.

25.   Use a Different Username and Password for apps:
In the event that your social media, bank, email, etc. account is compromised, you would not want someone collecting those passwords and trying them out on your security surveillance system. Using a different username and password for your security system will make it more difficult for someone to guess their way into your system. Set high quality passwords and do password enforcement and account deletion when staff changes.

Surveillance System Assessment, Deployment & Maintenance

Data breaches continue to accelerate throughout the world. With increasing Internet connectivity, physical security systems are very vulnerable to cyber-attacks, both as direct attacks and as an entrance to the rest of the network. Liabilities for these attacks are still being defined.
It is prudent to protect your company and your customers through preventative measures.
To maximize your cyber security, it is critical to define best practices for your own company, as part of your security camera system assessment, as well as its deployment and maintenance.
Security audit is another way to know system performance of your security Surveillance systems. You need to see what camera saw, Auditing of CCTV Video Easier and Efficient. Auditing helps in gaining better Situational Awareness and Actionable Intelligence.


Some of these technologies are new and have been developed specifically to combat cyber-attacks whilst others, which were originally intended simply to make chipsets more efficient, are also able to contribute to camera security. Almost all, when mentioned in video surveillance-related documents, datasheets or on the Internet, are stated as acronyms or have names which do not make it obvious what they are intended to do. Here, therefore, is an explanation of some of those you are most likely to come across.

  • Anti-Hardware Clone: Anti-hardware clone functionality prevents a chipset from being cloned. In addition to protecting intellectual property, this ensures that a chipset with a manufacturer’s label is a genuine copy and removes the risk of a cloned device which may contain malicious software being used to steal sensitive data such as passwords.
  • Crypto Acceleration: When applied to video surveillance solutions, crypto acceleration is normally referred to within the context of a camera chipset performing complex mathematical functions for encryption and decryption This is a very intensive operation requiring the chipset to use a large proportion of its resources. Equipping chipsets with a dedicated ‘engine’ for this purpose ensures that encryption/decryption is efficiently carried out, without affecting other camera functionality.
  • Image Scrambling: Between the location of a camera and where the images it captures are remotely viewed, recorded and stored, there is always the possibility that a cyber criminal could hack into the network and gain access to what may be confidential video and data. Image scrambling is the encryption of video prior to transmission over the network. It does so by randomly rearranging the pixels of each image so that it cannot be viewed by anyone maliciously hacking into the network.
  • Secure JTAG: JTAG ports are hardware interfaces which are used to programme, test and debug devices. However, they can be compromised by cyber criminals to gain low level control of a device and perhaps replace firmware with a malicious version. This can be prevented by securing the JTAG port via a key-based authentication mechanism to which only authorised personnel working for the manufacturer have access.
  • Secure UART: UART ports are serial interfaces typically used for debugging cameras. They allow administrator access to a camera and are therefore a target for hackers attempting to access sensitive information such as password keys. Hackers could also potentially access a camera’s firmware in order to reverse engineer it, as well as examine it for vulnerabilities in the device’s communications protocols. Enforcing restricted and secure access to the UART port, will allow the debugging process to be safely completed, without opening the door to cyber criminals.
  • OTP ROM: This is an acronym for One Time Programmable Read Only Memory which allows sensitive data, such as encryption keys, to be written only once onto a chipset and then prevents the data from being modified. This protects the integrity of encryption keys which are used to validate the stages in a secure boot up sequence and allows access to the JTAG Port.
  • Secure Boot Verification: Secure Boot provides an extra layer of security by sandboxing different elements of a camera’s operating system, which means they are in a protected space. The system will complete a full boot before communicating with any other part of the system and this prevents an interruption to the boot process which could be exploited by a hacker.
  • Random Number Generator: Computers are designed to create very predictable data and are therefore not very good at generating random numbers which are required for good encryption. A dedicated random number generator overcomes this problem by having a dedicated mechanism for the task.
  • Secure OS: Using a separate operating system (OS) for encryption and decryption, as well as for verifying apps have not been modified or are forgeries, reduces the workload of a camera’s main OS. A separate Linux based API is needed to access a Secure OS and without this, there is no way to make any changes from the outside of a camera. A Secure OS should always, therefore, be used to process important stored information.

In a highly competitive market, there is no shortage of camera manufacturers to choose from. Consultants, system designers and systems integrators therefore have the freedom to narrow down their shortlist of preferred supplies to those who have fully embraced and incorporated best practise into their manufacturing process. A clear demonstration of this would be if they have equipped their cameras with most, if not all, of the above functionality and technology.




Biography:
Arindam Bhadra is an eSecurity professional 11yr + in this industry. He is a good freelance blogger. His blog is now No 1. Blog in India. 2.9L page viewer globally. Mr. Bhadra is an Electronics & telecommunication Engineer from IETE, New Delhi. He is a member of FSAI from 2011 & Go Beyond security from 2008. His blog arindamcctvaccesscontrol.blogspot.com focuses on security. Apart from his job, he loved to spend all his time with eSecurity & Safety technology understanding and loves to help people. He is a Tech enthusiast and has written articles over the period in this Magazine & blog. You can follow him on Facebook, Twitter, LinkedIn & Google+ etc.