Uri Guterman, Head of Product & Marketing for Hanwha Techwin Europe discusses the cybersecurity ‘trust marks’ to look for in your vendors
Recent events have renewed the focus on cybersecurity for all organisations. Criminals sought to cash in on the impact of the pandemic and mass remote working at home. In Europe, there were 304 significant malicious attacks in 2020, more than double the number of hacks in 2019. Then there’s the increased risk of cyberwarfare in the wake of the Russian-Ukraine war. John Edwards, the UK’s information commissioner has stated that we are in a new era of security and firms need to step up their vigilance against state-sponsored hackers.
Cameras are a target
Simultaneously, the increased use of connected devices including IP cameras and Internet of Things (IoT) sensors, is creating more opportunities for hackers to cause damage. Today’s cameras are extremely advanced and carry the latest firmware. However, legacy devices must be kept up to date if they are to not provide a route in for hackers.
The unfortunate truth remains that although many organisations invest in their physical security systems, they don’t always realise that their video surveillance and IoT devices can be back doors exploited by malicious actors. Compromised cameras and other connected devices can become a foothold to launch an attack on a network, a technique known as pivoting. Malicious actors can also look at confidential information through footage, using this to blackmail an individual or organisation or steal trade secrets.
Responsible camera manufacturers are tackling these concerns head-on through their technology (software and hardware), training, collaboration with customers, and formal accreditations that highlight the security of their processes and solutions.
Looking for a few key ‘trust marks’ can make all the difference to your surveillance system’s cybersecurity.
NDAA compliance The National Defense Authorization Act 2019 (NDAA) is a good starting point. This US federal law prohibits federal agencies and their contractors from using video surveillance equipment from a number of named companies. A vendor that is NDAA compliant, therefore, shows the requisite standards for federal agencies — an extremely high level of security and due diligence that should put all other organisations and government entities at ease. Hanwha Techwin supports NDAA compliance across its product line and is committed to complying with all government and international trade regulations. There are also signs that European governments are thinking of adopting similar legislation.
Core to product design
A supplier who designs their products with cybersecurity in mind will have certifications like the UL Cybersecurity Assurance Program (UL CAP). They will have more stable and secure systems, with regular maintenance and patches to ensure vulnerabilities are proactively mitigated. Hanwha Techwin is among only a handful of manufacturers within the video surveillance industry that has achieved the UL CAP certification for its products. Secure by Default is another certification mark that shows a product is cyber and network-secure by default, without needing to apply network hardening to it.
To read more exclusive features and latest news please see our Q1 issue here.