Cyber Defense for Physical Security

The demand for IP-based, physical security solutions and specifically remote access to video surveillance is growing with each passing year; however, with each additional IP security device that is deployed and connected online, the risk for network penetration increases.
Cyber criminals are getting more sophisticated at exploiting network vulnerabilities, and physical security equipment has become just as vulnerable to intrusion as any other smart device linked to the Internet. As such, it is important for security manufacturers, dealers and integrators to understand the cyber risk and common attacks on physical security equipment.
Both vendors and their channel partners have their own unique responsibilities to fulfill when it comes to increasing cyber safety. Vendors should provide up-to-date, safe and hardened products, while educating their suppliers; and suppliers must work with the end-user’s IT department to develop and apply best practices.
There was a time when budget for cybersecurity measures was rather low on the list of important items for many end-users. With limited funds, those in charge of purchasing security systems became accustomed to spending a certain amount on equipment. The continued demand for cost-effective products moved the vendor community to train to sell lower-cost options. All of these actions led to a lack of investment in cyber defense mechanisms, which in turn affected the development of technologies that were sold for many years.
Today, the industry has turned 180 degrees, with customers asking for their security equipment to implement cybersecurity controls of the same caliber as those installed in mission-critical applications in the IT sector, regardless of the vertical. Consequently, the physical security industry is lagging; in fact, when it comes to cyber protection, security devices, attack protocols and overall defenses may be to 10-15 years outdated.
Leveraging a VMS for Cybersecurity
Misconceptions about effective defense strategies have additionally hindered cybersecurity advances in physical security equipment. Prior to the increased demand for system integration and transition of devices from analog to IP, security controls were predominantly viewed as disconnected – CCTV cameras ran on exclusive analog signals, access control mechanisms operated on an isolated network, and people generally believed that anything held inside a physical building was safe. This became known as “hard shell” security, which refers to the assumption that the outside physical wall protects everything.
Unfortunately, this technique is simply no longer relevant in an era where infected USB drives can be directly plugged into a server, cameras can be hacked via web server attacks, and users can accidently infect an entire network with malware in seconds by using an internet browser.
To adequately address both the cyber and physical security issues of today, integrators and their customers must implement a solution that incorporates a structural approach that covers all the system’s end-points.
As cyberattacks become increasingly sophisticated, having the capacity to effectively manage and protect a large population of devices on one system through a VMS is essential. As part of an enterprise security system, the VMS acts as a centralized data hub located at the solution’s core. It is capable of providing an excellent view into the entire infrastructure, with regular assessments of device behavior, operations, general system health and more. However, this ability to access every part of the network is a double-edged sword, as it also makes the VMS a primary target for attacks.
Both end-users and integrators are looking to vendors for direction on how to combat this challenge. In terms of cyber, both the physical security devices and VMS itself are being attacked; thus, an organization can only truly be defended by securing both ends.

Ref: http://www.securityinfowatch.com/article/12335318/cyber-defense-for-physical-security

Comments

Post a Comment

Popular posts from this blog

Home security: more than a camera

There is a significant increase in the focus on home and personal security . This is according to Roy Alves, country manager of Axis Communications, who points to a steep surge in the deployment of home and residential security solutions. Alves adds that, whereas before the value of estates and houses was driven largely by location, today’s property prices are increasingly impacted by the level of its security, at times even more so than geography. “Crime is not abating,” says Alves. “People want to feel safe, they want to know that their homes and families are protected.” But, he stresses the importance of engaging a professional provider. “Although the right hardware is key, there is still so much more to security and surveillance than simply installing a camera.” And, with not all ‘providers’ privy to certain intricacies, this can, unfortunately, leave home owners with a false sense of security. Deploying a reputable solution, through a professional provider, will also all...
Read more

Caught On Camera: Suspect steals security cameras from Yosemite Middle School

FRESNO, Calif. – Police need your help identifying a suspect accused of ripping out  security cameras  from a Fresno middle school. This suspect isn’t just accused of stealing from schools. Police say he’s burglarizing city property and it’s caught on camera. The warning is clear at this Fresno City water pump station.  Security cameras  are on. Last week those cameras recorded a man breaking in. Police say he stole the camera, an air conditioning unit and a metal door. Five days later, detectives say the same suspect trespasses onto Yosemite Middle School. He appears to scope out the area as he walks through the hallway before ripping out this security camera. “These cameras are pretty expensive that Fresno Unified has installed and we’re looking at a $2,000 loss from the school just on this case alone,” said Detective Donnie Dinnell. Dinnell says the suspect stole two cameras that night and police believe he’s tied to Tioga Middle School’s missing cameras. ...
Read more

It’s raining problems for people in Hyderabad

Hyderabad: Heavy rainfall that lashed the city on Monday brought normal life in some parts of the city to a standstill and left the traffic crawling during peak hours. Overflowing drains in many areas added to the woes of commuters, who were already caught in a traffic gridlock that left a long pile up of vehicles on roads across the city, particularly on routes leading to Secunderabad and Hitec City. Rainfall and thunderstorms also hit busy areas such as Banjara Hills, Ameerpet, Dilsukhnagar, LB Nagar, Punjagutta, Jubilee Hills, Abids, Tolichowki and Uppal. However, even as the rains lashed the city, the rituals of the Bonalu festival were attended by a huge number of people who braved the rains in old city. The city recorded 41.8 mm till 8.30 p.m. on Monday evening and among all the areas, Srinagar Colony received the highest rainfall of 52 mm, followed by 51.8 mm in Madhapur and 51 mm in Amberpet. The police department permitted Greater Hyderabad Municipal Corp...
Read more