sunhux
asked on
Cyber security measures on IP cameras
http://avigilon.com/products/video-security/cameras/
We're installing IP cameras, yet to determine which model.
What are the cybersecurity measures we ought to take?
Q1:
Any hardenings that can be done? Any other cyber measures
to take?
Q2:
Cameras to be connected to user VLANs or a totally dedicated
VLAN by itself or ??
Q3:
The recorded videos will be archived to a server? Encrypt it with
which encryption & any other handling methods?
Q4:
Reckon IP cameras are treated as IOTs so in the event they need
to be connected to Internet, what further measures ought to be
taken?
Q5:
Should we do a pentest using Tenable/nessus against it? I recall
we ever did it with a PABX (which runs a custom RHEL & many of
the vulnerabilities of RHEL are applicable)
We're installing IP cameras, yet to determine which model.
What are the cybersecurity measures we ought to take?
Q1:
Any hardenings that can be done? Any other cyber measures
to take?
Q2:
Cameras to be connected to user VLANs or a totally dedicated
VLAN by itself or ??
Q3:
The recorded videos will be archived to a server? Encrypt it with
which encryption & any other handling methods?
Q4:
Reckon IP cameras are treated as IOTs so in the event they need
to be connected to Internet, what further measures ought to be
taken?
Q5:
Should we do a pentest using Tenable/nessus against it? I recall
we ever did it with a PABX (which runs a custom RHEL & many of
the vulnerabilities of RHEL are applicable)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Btw, specific to avigilon brand in the link I gave above,
is that a made in China camera?
One thing about these IOT devices: there's no central
authentication or central password management (like
Windows AD) or is there? Would like to disable the
local accounts & centrally manage the authentication
& login credentials with password policy enforcement
(eg: complex password, password expiry etc)