International Security Journal - August 2019 - Special Report

Recommendations

Info

special report knowledge partner knowledge partner What keeps you up at night? From traditional risks to modern threats, one surveillance manufacturer is taking a comprehensive approach to ensuring users’ peace of mind Since the global roll out of IDIS’ branded surveillance business—beginning in 2013 in Europe and continuing through the company’s Americas launch in 2015—South Korea’s largest in-country security and surveillance manufacturer has presented its “total solution” as a market differentiator. Designing, developing, manufacturing and delivering (completely in-house) a complete end-to-end range of analogue and IP technology – from recorders, through cameras, software and even monitors—the company is increasingly known for its total solution concept and approach. However, in most discussions of the IDIS Total Solution, the focus is on the company’s wide range of high-performing analogue and IP hardware options, VMS software and innovations in AI/Deep Learning. Here, we explore how the company’s “total solution” approach extends well beyond its branded and product offerings, into the R&D and technological underpinnings of the offerings themselves and how that “total solution” approach has resulted in one of the industry’s most complete, multi-pronged approaches to managing both traditional video surveillance headaches and truly modern, still evolving threats to cybersecurity and data integrity. We’ll look at the specific steps IDIS has taken and incorporated at every step of the product lifecycle to ensure and enhance peace of mind for its partners, end-users and their stakeholders, while still keeping its marketresponsive innovation aggressive, performance standards and ease of use high and total cost of ownership low. The headache: Cybersecurity In 2019, cyberthreats against video surveillance systems have reached an all-time high, with little relief in sight. This makes cybersecurity a top area of concern—and in many cases, a new area—for security professionals and their stakeholders. Beyond traditional local and hardware security measures, the integrity, confidentiality and accessibility of video surveillance data must be protected during recording, retrieval and while in-transit. IDIS considers and addresses cybersecurity concerns from R&D through customer installation and has developed a comprehensive set of technologies and features to ensure maximum protections for end users. It starts with a best practice: educating installers and integration partners on the importance of designing and implementing a physically separate network (or partitioning an isolated VLAN on shared network equipment) and continues through a comprehensive, layered and multi-pronged approach to ensuring maximum cybersecurity for users, focusing on securing data access, securing data transmission and securing data recording. Securing data access • IDIS NVR products have their own firewall installed that monitors and controls incoming and outgoing network traffic based on a predetermined set of security rules, including IP, MAC address and port authentication. The firewalls on IDIS NVR products are designed and pre-configured to prevent unauthorised access. • IDIS’ use of Multi-factor authentication system utilising user accounts and a registered mobile app to further limit access 44 | Isj InternationalSecurityJournal.com
knowledge partner Special Report to authorised users and protect video surveillance data. To gain access to an IDIS NVR, the user needs to certify themselves with the IDIS Mobile App after going through the usual login process by typing in a user ID and password. Securing data transmission • IDIS’ data transmission security system combines IDIS’ proprietary technology with TLS, the cryptographic protocol designed to provide communications security and data integrity over networks. By integrating TLS into IDIS’ proprietary data security solutions, there is minimal performance impact on video surveillance data transmission. TLS helps prevent malicious activities such as sniffing, modification and destruction of data as it is transmitted between devices across a network. • FEN Security (For Every Network Security) protects access and data transmission over a public network. FEN is a proprietary security system independently developed by IDIS using point-to-point (P2P) technology. An automated network configuration service, FEN simplifies installation of networked surveillance systems, enabling users to setup and configure secure surveillance systems without needing a professional knowledge of the routers and NAT devices on the network. by external devices such as PCs, keeping the data safe from forgery and alterations. The iBank system is used in all IDIS’ recording systems. • IDIS’ Chained Fingerprint technology extracts distinctive features of recorded video data to create a “fingerprint” for each frame, then embeds that fingerprint into the data of the next frame, effectively connecting each frame together as with a blockchain. Video data created with Chained Fingerprint technology can be submitted to courts as evidence since an alteration to any frame is easily and quickly detectable, making it simple to prove the footage is authentic and unchanged. It is a highly efficient technology for ensuring and proving the integrity of users’ recorded video data. • IDIS’ edge encryption recording technology encrypts the video data at the IP camera before storing and sending it over the network. Therefore, additional encryption and decryption processes on storage and data transmission systems are not necessary. The encrypted data is recorded directly to the SD cards and HDDs, so the stored data is safe from unauthorised access and alteration if the SD cards or HDDs are stolen. Secure data recording • IDIS iBank is a database system, independently developed by IDIS, specifically for video recording. This system maximises storage efficiency and enables fast data processing. In addition, storage devices that implement the iBank solution cannot be read The headache: Power or equipment failures Of course, not all threats to video surveillance data are as new and emergent as cyberthreats. Traditional risks to power, networks and storage can still make for critical failures. The challenge, though, is always that, if any part of a video surveillance infrastructure fails, the system must first recognise the failure before it can switch to back-up systems. The process takes precious time if done manually and redundant equipment can be expensive. IDIS innovated a series of features, known as the IDIS Critical Failover suite, to address this problem and more, making things easier for security professionals. • IDIS Temporary Smart Failover is designed to offer protection against network instability and network failure. When the camera’s network connectivity is unstable, it starts to save to an internal recording session buffer (NLTSrec, up to 60MB), preventing a break in the recording. And if an IDIS IP camera is disconnected from the NVR, it will instantly begin recording to an internal SD card and automatically transfer the data to the NVR after the network connection is restored, leaving no incident unrecorded. • IDIS storage redundancy protections further protect against storage failure. With native RAID 1 support, the NVR saves two identical copies of the data. If one disk fails, the data is retrieved from the second one, without trouble or concern. And with native RAID 5 support, if a single drive fails, subsequent reads are calculated from the distributed parity so that no data is lost. • IDIS NVR Failover protection against recorder hardware failure further ensures peace of mind. If InternationalSecurityJournal.com ISJ | 45
Page 1 and 2: Issue 06 | August 2019 Internationa
Page 3 and 4: editor’s introduction Special Rep
Page 5: visit us online www.InternationalSe
Page 9: International Security Expo (ISE) i

International Security Journal - August 2019 - Special Report

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?