How to Harden Your Video Surveillance System for Cybersecurity

Security is a top priority for companies doing business in the cloud. As the number of cloud-connected devices grows, so does the risk of data breaches. That risk is growing, too, with the number of data breaches rising by 71% from 2021 to 2023.?

To ensure your system and security video is protected, the following measures can be leveraged to harden your system for cybersecurity.?

Secure the Network Gateway?

Securing your network gateway will fortify your system against cyberattacks to ensure your video is protected. You can secure your gateway with a few fundamental security practices:?

• Verify Network Firewall: The gateway device (usually a router or modem that provides access to the internet) has a firewall that protects against cyberattacks. Verify that the firewall is on and that exceptions exist to allow outbound traffic on the ports used by your cloud-enabled devices, if applicable.?

• Change Gateway Device Password: Most modems and routers have a widely published or easily guessed default password. Even if remote configuration of the gateway device is disabled, the password should be changed.?

• Audit Open Inbound Ports on Gateway Firewall: Some cloud platforms include networking features that eliminate the need to open inbound ports on a firewall to enable remote access. Auditing open inbound ports can help you find these vulnerabilities and mitigate them.?

Isolate the Camera Network?

Installing cameras on an isolated network is an excellent method for improving your system’s cybersecurity. This practice reduces the chance of your entire network getting hacked and has the added benefit of enhancing camera performance. This can be accomplished by either connecting cameras to a PoE switch connected to the camera port on the recorder or directly to the recorder’s internal PoE ports.?

Audit Network Devices?

With multiple systems in place, including your cloud platform, cameras, recorders, and other security measures, it’s vital that a routine audit of network devices is done for fortified cybersecurity. When auditing your network devices, ensure that all default passwords have been changed on your system’s devices, that firmware and software are up to date, and that anti-virus software is installed to protect your video.?

Protect Cameras Against Physical Tampering?

While cybersecurity is mostly ensured through the actual software itself, that doesn’t mean hackers won’t try to compromise any hardware your team is using. After all, physical tampering with a camera is the easiest way to compromise it. Consider using vandal-resistant cameras where applicable. Additionally, when possible, mount cameras so they are out of reach without the aid of a ladder. Another simple but effective tactic is to have cameras blend in with their physical surroundings. While clearly visible cameras can be deterrents against some criminals, others will purposefully identify cameras around your business as targets for tampering.?

Keep Camera Firmware Current?

An important part of preventing cyberattacks is keeping firmware updated to ensure the latest security patches are applied. If your cloud platform allows it, having automated updates on can make sure your system is always running its most secure version. If you’d prefer to manually update your security, set aside time consistently and frequently to check when updates are released and available to download.?

Ensure Recording Security?

In systems using recorders on-premise, the recorder itself should provide a secure recording environment. However, there are a few additional steps that can be taken to further ensure security.?

• Secure Passwords: One of the simplest ways to reduce vulnerability of a recorder is to change the password of the default admin account. Passwords of at least 12 characters including numbers and both lower and uppercase letters are recommended. Also, avoid the use of real words or names in the password.?

• Avoid Local User Accounts: Adding user accounts to local recorders increases the probability of orphaned or outdated user accounts remaining on systems and potentially compromising them. User account management via the cloud is recommended as it allows for a single point of control for multiple recorders and easy configuration at a platform level.?

• Keep Software Current: Keep software updated to ensure the latest security patches are applied. Software updates are typically digitally signed and can easily be installed from a secure cloud server.?

Cloud recording, while also secure, can be susceptible to cyberattacks. To improve the security of this technology, make sure to leverage multifactor authentication, manage user access with groups, and restrict access to remote clients by need and location. Creating individual user accounts for each user can also help you avoid any shared accounts between multiple users.?

Keep Your Video Secure with OpenEye Web Services?

When it comes to cybersecurity, the OpenEye Web Services (OWS) platform allows users to easily manage their video surveillance system and seamlessly integrate with existing IT infrastructure to improve cybersecurity and reduce risk. OWS gives you the tools and features needed to deploy our best-in-class, cloud-managed video surveillance solution without compromising the security of your network, customers, employees, or processes.?

Features include multifactor authentication, centralized user management, single sign-on to access remote clients, a simple password reset process, digital signature verification, automated software updates, and no open inbound ports.?

For further recommendations for secure installation, configuration, and operation of the OWS platform, read the OpenEye Cybersecurity Hardening Guide.?

Get the Guide