VideoEdge Receives the Highest UL Cybersecurity Assurance Program Certification
Resilience to cyber-attack has become an important acceptance criteria for customers to base product selection on. Until now there hasn’t been an independent validation for both product and business practices designed to address the cybersecurity readiness of physical security products. When Underwriter Laboratories (UL) introduced the UL 2900-2-3, Tyco Security seized the opportunity and became the vendor to submit a product (namely, the VideoEdge Network Video Recorder) to undergo this new certification. On March 22, 2018, VideoEdge version 5.2 became the first product to obtain UL 2900-2-3 Level 3 (L3) certification.
Benefits of using UL2900-2-3 Level 3 Certified VideoEdge
With this new cybersecurity certification comes added benefits for the customer.
Cybersecurity certification that is specific to Electronic Physical Security products.
The added assurance that is gained when a product is measured against an established product baseline for cyber protection.
A common criteria for cybersecurity that can be used for product selection.
The proven quality and trust that UL certifications are globally recognized for.
The piece of mind that customers have when they take an important step towards protecting their business against the modern reality of cyber threats.
What is UL 2900-2-3 cybersecurity readiness certification?
UL 2900 is a series of standards that provide testable software cybersecurity criteria for network-connectable products. This series addresses specific types of products with the UL 2900-2-3 Standard specially addressing Electronic Physical Security systems. Other standards in the UL 2900 series address healthcare systems and industrial control systems.
Within UL 2900-2-3 there are three levels of certification.
Level 1 (L1) is the minimum level of assessment and validates the fundamental requirements.
Level 2 (L2) provides an assessment of the security capabilities of a product with knowledge of internal security controls of the product in addition to the L1 requirements
Level 3 (L3) provides an assessment of security capabilities of a product with knowledge of internal security controls of the product and knowledge of the business practices of the vendor to support the lifecycle of the product in addition to the L1 and L2 requirements.
Therefore, the VideoEdge certification as complaint with UL 2900-2-3 at Level 3 is at the highest level of Electronic Physical Security Product certification. As a level 3 assessment, the VideoEdge business practices were evaluated (product development, incident response and internal ongoing testing and evaluation of security vulnerabilities of products.)
The UL Cybersecurity Assurance Program (UL CAP) for electronic physical security systems assesses product compliance against the UL 2900-2-3 Standard. This program was developed with input from the U.S. Federal government as well as other major stakeholders from academia and industry.
Why did we choose UL?
While other cybersecurity certifications are available, the UL 2900-2-3 compliance standard is specific to electronic physical security products and UL, as a testing company, is globally recognized with experience promoting safe environments since 1894. The range of products that can be addressed with UL 2900-2-3 includes the range of systems that are offered by Tyco security including surveillance cameras, emergency communications systems, intrusion detection systems and access control systems. Under the Tyco, Cyber Protection Product Security Program, we are focused on enhancing the cybersecurity of our products, so partnering with an industry known company to certify our practices is another way we can bring peace of mind to our customers.
About VideoEdge
VideoEdge network video recorders are available with a full range of appliances to manage surveillance in comprehensive environments both on-site and remotely. Maintain dozens cameras per network video recorder with capabilities for both IP and hybrid installations. The flexibility of VideoEdge provides users with powerful analytics to gain employee and consumer information that aid in forensic investigation or business intelligence.
The powerful VideoEdge NVR platform was developed under the Tyco, Cyber Protection Product Security Program which combines secure product development, testing and evaluation, and configuration guidelines for compliance. This holistic cyber mindset begins at initial design concept, continues through product development, and is supported through deployment, including a rapid incident response to meet the comprehensive and evolving cybersecurity environments. Through the rapid incident response service, a dedicated cybersecurity team quickly assesses new threats and vulnerabilities and advises customers on how they may reduce their cybersecurity exposure.
For more information on the VideoEdge network video recording solution, please click here.
The latest version of victor Unified Video Management Systems and VideoEdge Network Video Recorders presents a contemporary User Interface (UI) that enhances operator productivity and new analytic features that improve a customer’s visibility of their entire environment.
victor and VideoEdge 5.0 adds a rich feature set that includes license plate recognition, perimeter detection, camera-based failover redundancy and several other advanced surveillance features, delivering greater command and control capabilities when time is of the essence.
New user interface offers task-based workflows for increased efficiency and better overall operator experience
victor’s transformed interface has been redesigned to offer a task-based workflow approach. The new UI moves from an antiquated ribbon bar to a contemporary navigation pane (complete with tool tips) to significantly reduce the number of clicks needed for day-to-day surveillance activities. This focus on efficiency is well-illustrated by the new “home” view that automatically remembers frequently used operator actions and presents those in a “Recent Items” tab upon login.
The new UI is available in dark and light theme options; the dark option is well-suited for dimly lit command center environments and has been proven to reduce eye strain while improving video quality.
Far beyond a simple re-skin, the new interface simplifies forensic investigating and live viewing and provides the foundation for UI consistency across all victor and VideoEdge applications. And, while the change in UI is dramatic in appearance and increased operator efficiency, the changes are so intuitive that the learning curve is surprisingly short.
Speaking of improved user experience…
We have enhanced victor’s Dynamic Views by adding right-click options to bring up device lists and detailed information about those devices (name, IP address, health status).
Right-click options streamline operations
In addition, we have simplified an operator’s ability to view alarms and events with ‘filter and sort’ options in the Event Viewer.
Filter and sort options provide a much cleaner view of alarms and events.
License Plate Recognition helps identify, track and analyze vehicles for improved outdoor surveillance
License Plate Recognition (LPR) from victor and VideoEdge helps security operators identify, track and analyze vehicles for improved outdoor surveillance and better awareness of surroundings. This analytic can identify license plates in both stop & go and slow-moving traffic (≤ 20mph), and will trigger real-time alarms and automatically begin recording when blacklisted vehicles enter a restricted area.
Operators utilize “fuzzy match” with Smart Search, victor/VideoEdge’s forensic search engine, to identify commonly confused characters, such as 8 and B, to generate a list of possible matches. Smart Search can also place asterisks (*) and question marks (?) to correlate recorded video and searches when only a portion of a license plate number is known.
Object Perimeter Detection analytic rule triggers an alarm when a zone is approached or breached
The new perimeter detection analytic rule, now included in the VideoEdge Video Intelligence and Analytics package, can trigger an alarm if a configured zone is approached or breached, and can be used for real-time alarms or forensic analysis.
VideoEdge’s new TrickleStor feature adds cost-effective redundancy by allowing the video that is recorded on Illustra IP cameras’ SD cards to trickle back to the VideoEdge NVR in the event of communication failure or network outage. If communication between the NVR and cameras is interrupted, the camera automatically detects the anomaly and begins recording to its internal micro SD card, storing up to 128GB of video depending on the camera. Once the connection is restored, the recorded video is then seamlessly transferred back to the NVR’s hard drive.
New integration with Shooter Detection System
The new integration with Shooter Detection System’s gunshot detection solution ties immediate gunshot detection alerts with victor and VideoEdge to pull cameras to the shooting incident.
This enables operators to rapidly identify shot location on a floor plan, and provide emergency response instructions for instant situational awareness to a shooting event into one interface.
Visit our web site to learn more about victor and VideoEdge.
Value-based Holis HD Tribrid Video Recorders combine with a new suite of American Dynamics HD analog cameras to provide an affordable recording solution for any small to medium size business.
By supporting 720P and 1080P cameras over coax infrastructure, Holis 4, 8, and 16-channel HD recorders take advantage of existing analog infrastructure to provide cost-effective installations while offering superior video quality never before attained over coax.
The new suite of HD cameras – including fixed and varifocal Bullet Cameras and Mini-Domes – offers an excellent alternative to IP cameras and allows users to upgrade their system over time while protecting their CCTV investment.
HD technology supports high resolution video (1080P/720P) over a coax infrastructure with transmission distances of 500m (1080p) and 800m (720p). Initially proprietary, technologies appear to be moving to provide cross-functional support.
HD technology allows customers to leverage existing analog infrastructure for a simple, cost-effective IP video solution. It is an ideal solution for customers who:
Currently have analog but are looking to expand or increase video resolution
Consider price a major factor
Are installing a new system and seeking analog solutions
The Holis HD Tribrid Video Recorders offer an affordable recording solution for any small to medium size business. Holis HD is flexible by supporting HD analog cameras, SD analog cameras, and the Illustra Essentials line of IP cameras. The Holis HD recorders have easy-to-use features such as search, record, digital zoom, and export.
4, 8-Channel Recorders
4 and 8 BNC video inputs
One audio channel input (RCA)
1 SATA HDD (up to 6TB Video Storage)
Power Supply – 12VDC / 2A
10W power consumption (without HDD)
325mm x 255mm x 55mm (W x D x H)
16-Channel Recorders
16 BNC Video Inputs
4 audio channel inputs (RCA)
2 SATA HDD (up to 12TB Total Storage)
Power Supply – 12VDC / 5A
16 alarm inputs / 3 relay outputs
15W power consumption (without HDD)
375mm x 285mm x 55mm (W x D x H)
Remote Client for Multi-Site Deployments
Holis recorders offer optimal surveillance flexibility for customers who require a recording solution at multiple sites.
Live View
Playback
System Setup
Alarm Notification
Activity Log
Web Client for Remote Applications
Holis recorders are ideal for remote locations that may be part of a larger organization. The Holis web client ensures continual surveillance, no matter how widespread your facilities are.
Live View
Playback
System Setup
Alarm Notification
Supported Browsers
Internet Explorer
Firefox
Safari
Chrome (requires Chrome web service)
Full Featured Mobile App
Manage your video on the go with the full-featured Holis Go mobile app.
iPhone & Android available
Search iTunes & GooglePlay
Live/Playback Video
Save Favorite Views
View Multiple Locations
Event Notifications
HD Camera Highlights:
General HD Camera Features
The suite of HD cameras – including Bullet Cameras, Mini-Domes, and Domes – offers an excellent alternative to IP cameras and allows users to upgrade their system over time while protecting their CCTV investment.
Fixed HD Bullet and Mini-Dome Cameras
Our fixed HD bullet and mini-dome cameras boast a 3.6mm fixed lenses and provide up to 1080p video resolution (1920 x 1080) in an uncompressed format over the same standard coaxial cable that is used for standard CCTV cameras.
Where most dome cameras operate on two axes, the fixed mini-dome’s 3-axis feature has a much wider field of view and features Smart Infrared for recording over 196 feet away in total darkness.
The IR bullet camera is waterproof, rated IP67, and features WDR making it an ideal solution for applications with volatile weather or lighting conditions.
Varifocal HD Bullet and Dome Cameras
Our varifocal HD bullet and dome cameras feature a 2.7-12mm motorized lens and Smart Infrared for recording over 196 feet away in total darkness.
Both cameras are waterproof, rated IP67, and features WDR making them an ideal solution for applications with volatile weather or lighting conditions. Additionally, the dome is vandal-proof (IK10).
Camera Mounts
The new HD Analog cameras utilize the same mounts as the Illustra Essentials IP cameras.
The Challenge
Penn State University wanted to move to a single security and event management platform for its residence halls and other group facilities on campus.
The Solution
Penn State selected a unified Tyco Security Products solution to protect and manage its campus.
If you were not already familiar with the term Distributed Denial of Service (DDoS), then over the past several weeks you probably have become aware of it through various news articles.
A few key points in the media about the DDoS attacks:
Some of the largest DDoS attacks ever launched[1] in late September
Release of the Mirai source code used to create the DDoS attacks in early October[2]
Growth of devices infected by Mirai malware is growing from 213,000 to 493,000, by mid-October[3]
Twitter, Netflix and PayPal and many popular site being unreachable for part of Friday as a result of a new DDoS attack[4]
Were Tyco Products Affected?
These attacks are of special interest for companies such as Johnson Controls because they were launched from botnets composed of “Internet of Things” (IoT) devices, such as CCTV video cameras and digital video recorders[5]. There is no indication that any Tyco Security Products devices were involved in these attacks.
Illustra cameras are designed to prevent user access to the camera’s operating system and as a result of that decision: telnet is not available on any Illustra camera model.
VideoEdge NVRs do not support telnet. Also, all known botnet scanners look for a different version of Linux than used on VideoEdge.
iSTAR controllers do not support any remote access protocol and will not be detected by the malicious scanners.
DCM controllers, AC200 (RTC) Ethernet Controller and Emerald Intelligent, multi-function access terminals do not support Telnet
exacqVision network video recorders and video management system (VMS) software has SSH disabled making it unaffected.
Kantech access control system also remains unaffected.
Applications such as AC2000, C•CURE 9000 and victor are not affected. These applications also do not require remote access protocols.
Background: What are Distributed Denial of Service Attacks?
If you are not familiar with a Distributed Denial of Service (DDoS) attack, it is an Internet attack, which typically targets websites in an attempt to bring down the site so that it is inaccessible to other Internet users. It is a common tactic for activists and groups looking to suppress information or as a form of extortion; demanding money from the victim to cease to attack. These attacks work by flooding the target website with large amounts of data, or requests for data, that use up a website’s resources. With a small attack, the site may appear to be slow, but large attacks can bring down a website making it inaccessible.
What is a botnet?
These recent attacks have used a ‘botnet’, or a network of devices, infected with malware. The attacker is able to remotely control the device. The owner of the device will not know it has been infected because the malware does not affect the devices normal operation.
This malware is only able to be loaded onto the device if it has a remote protocol such as telnet or SSH enabled on the device. Telnet and SSH are common among physical security products and devices with the protocols enabled will be detected by the scanner. The Mirai malware uses a table of common factory default usernames and passwords to log into devices.
Recommendations for Installers and End Users
If you have a device which is using the default password and a remote access protocol enabled, you are at risk. To prevent your device from becoming a bot, you should immediately:
Disable remote access if it is not required.
Reboot the device. This does not have to be a factory reset, just turning the power off, wait a minute and turning it back on is sufficient
Change the password to a complex password. If you do not change the password or have a device that doesn’t allow you to change the password, you run the risk of becoming infected.
Again , the following Tyco Security Product devices are not affected:
Illustra Cameras
VideoEdge NVRs
iSTAR
DCM
AC2000 RTC Controllers
Emerald Intelligent Access Terminals
Sign Up to Receive Security Advisories Tyco Security Products dedicated Cyber Response Team generates notices, typically within 24 hours, advising which products, if any, might be vulnerable along with mitigation steps. If it’s a critical security vulnerability, the team will develop, test and release patches to resolve issues. Sign up to receive security advisories and access compliance guidelines.
VideoEdge NVR Centralized Licensing Administrators can now manage all VideoEdge NVR licenses centrally from the victor Application Server through the new license manager. Licenses can be combined into a single file for an easy upload. There is a new option to centralize all camera licenses and analytics throughout the entire system and synchronize SSA end dates, greatly reducing the time spent on licensing. To update licenses across the enterprise, go to ‘System’ and then select ‘Licensing.’ From there, users can view license status, chose license type and configure the Enterprise license. Watch the training video to learn more about setting up the licensing.
Advanced Searching victor Web offers several of the powerful search tools available in victor including motion, thumbnail and text stream search. These high performance video analytic searches drastically reduce investigation time and quickly identify suspicious activity, people, objects and events.
Motion Search allows users to search for a movement in a specific camera field of view to find areas of interest quicker. To conduct a motion search, users can select search and retrieve, Execute Search Wizard and then choose ‘Motion Detection’ from the Type of Search dropdown menu and then specify the start and end date. The video metadata detects pixel changes generated by VideoEdge. For a quick view of areas of interest, users can see the areas of motion indicated in yellow.
Thumbnail Search presents search results in 16 thumbnail images for a quick view of frames to identify Users can perform a thumbnail search in the same way they can a motion search by going to the Execute Search Wizard and then selecting Thumbnail Search. By selecting the + in the lower right hand corner of an image, the users can see a new set of images to further drill down the time frame.
Text Stream Search associates video with point-of-sale text data. Users can search recorded video to see a live overlay of the associated text stream data with that video. For example, cash register data can be associated with video to promptly find the transaction where the fraudulent action occurred. Watch the victorWeb text stream search video.
Maps victorClient maps can now be imported into victorWeb to provide faster navigation to cameras by their physical location and more easily see the layout of a location. When a user is signed in as a victor Application Server Users, he or she will have access to the maps.
victorWeb Maps
Under the monitor menu, select maps to view a list of all the maps on the victor application server. Simply zoom in and out of the map with a mouse, show and hide any layers, text, health indicators, or dock menu within the map. Users can also reset the map to return to the scaled out map. Select ‘Show all icons’ to highlight all cameras with a colored circle for easier navigation . Select ‘Show all shapes’ to see the fields of view. Click on the camera itself to view live video from that specific camera on the left hand side. Watch this video to set up victorWeb Maps.
Salvos Salvos displays multiple, simultaneous video streams to give users a more effective way to monitor multiple areas of interest.
To create a salvos in victorWeb, select the setup icon and go to Salvos. Select the + icon and give the salvo a name, description and layout. After configuring the basic information, add the recorder and cameras to the salvo. Learn how to configure and use Salvos in victorWeb.
Tours victorWeb supports tours so users can pre-define a sequence of cameras to automatically cycle through.
To create a tour, select the setup button and ‘Camera Tours’ from the drop down menu. Choose the + icon to create a new tour. Give the tour a name, description, and default dwell time. The minimum value for the dwell time is 5 seconds. Then select the plus button to select the recorder and cameras to add to the tour. Add a preset or pattern if it is pre-configured on the camera. The trash can icon on the right side enables users to delete the camera from the tour. Select a camera line and then the up or down arrow keys to rearrange the camera order. After the configuration is complete, click the save button. Watch this video to view more about updated tours functionality.
System Diagnostics Monitoring victorWeb diagnostics monitor the health status of multiple devices simultaneously. This new dashboard tracks real-time recording, streaming and information processing statistics from every connected device from any supported browser to avoid system outages and instantaneous alert of a potential issue.
Within the diagnostics monitoring system are three dashboards: alert, device health and system. The alert dashboard displays identifies health for recorder, camera, storage, alert and unit statuses. Similar to the alert dashboard, the device dashboard functions in the same way but is organized by device type instead of status. The system dashboard shows specific system information such as:
CPU usage
Disk usage
Network usage
Connected cameras per recorder
Current firmware version
Select Diagnostics from the Monitor menu drop down. Until a users has enabled the health event monitoring, he/she will receive a message to select the bell icon to select devices and enable health monitoring. The bell icon is in the upper right hand corner. All the devices added to victorWeb will be in the drop down menu. Simply select the ones to select the alerts or choose the ‘enable all’ button to show them all.
Select the alert to see all the information on the system including hardware information, storage and connected devices. To go back, select the back arrow in the upper left hand corner. The alert dashboard can be snoozed in specific intervals. Users can select to show live, all or snoozed events or cancel all snooze alarms.
To generate a report, select the report icon in the right hand menu. Select all the details to be included in the report including the following:
Device name
IP address
Alert date/time
Camera name
Alert status
Firmware version
User name
Failover status
Port
Time zone
Device Type
Description
Reports can be downloaded to PDF or CSV or emailed. Watch this video to learn more.
victor Web Unified Swipe and Show Introduced in victor in 4.8, swipe and show is now available in victor Web. Swipe and show displays the most recently swiped CCURE 9000 access control cards. Users can view details about personnel and perform a momentary admittance.
Under the Monitor menu, select Swipe and Show. Users may receive a message “Swipe and show is not enabled. Select doors or elevators on the left to start swipe and show.” To select the objects, choose the doors or elevators icon on the left hand side. To select all the doors on the system, choose the ‘select all’ option at the top.
To view the information for a specific person, click on that swipe. On the right hand side the following swipe data will appear:
Card access data
Personnel name
Door name
Time
Personnel type
Last 10 card swipes
When a person has been selected, the live stream is automatically paused. Under the menu in the upper right hand corner, users can limit the swipe shows to admits only or rejects only. Users can also show or hide text, change the orientation to horizontal or vertical and the number of cards. Watch this video to learn more.
victor Web Unified Personnel Management Software House CCURE 9000 users with the victor application server can better manage personnel from one, intuitive interface. With the new personnel management features, users can:
Add, edit or delete personnel
View and edit personnel credentials
View and edit personnel clearances
Go to the Setup icon and select Personnel, users can view all of the personnel in the system. Select an individual and view their information on the right hand side on multiple tabs including: person, credentials, clearances, documents, portrait, preview badge, previous doors and find. View this video for more information on creating personnel records.
VideoEdge Second Stream Auto Configuration The new second stream auto configuration reduces bandwidth usage with victor for streams displayed in constrained environments. This also enables motion detection to be configured automatically out of the box. Automatic motion detection supports SmartSearch and SmartStreaming capabilities so users will always have these features available to them without any additional setup upon installation.
VideoEdge Operating System Upgrade The new SLE12 SP1 enables enhancements needed for cyber security, driver enhancement and additional features. The new operating system supports Broadwell Processors and TPM2 security module.
To upgrade, you must use the VideoEdge upgrade tool from americandynamics.net. This upgrade is available for version 4.4 and later. Login to the VideoEdge system. In the upper right hand corner, you can see the version number you are currently operating on.
Click the “Add Recorder” button and enter the VideoEdge IP address. Then input the VideoEdge account username, password and base port. Then click Check Credentials. The upgrade procedure is comprised of three steps: upload, install and finalize. You will see an “operating in temporary upgrade mode” message until installation is finalized.
VideoEdge Support for Illustra Analytics VideoEdge introduces support for analytics on Illustra Pro IP mini-dome cameras. VideoEdge can incorporate video intelligence analytics such as object detection, linger, dwell, crowd and queue alarms, abandoned object and enter/exit.
Virtual PTZ Operators can select a view from a fixed camera and utilize virtual PTZ to zoom in on a particular area of interest to see greater detail.
Today’s businesses are faced with unprecedented threats from sabotage, theft of intellectual property and compromised sensitive data. Have you considered how your physical security products affect your cyber security?
Take a look at our infographic and assessment quiz to see if you are asking the right questions and taking the next step to be cyber secure.
Security breaches are in the news today more than ever before. Security integrators and security officers must work with IT departments to ensure the physical security system is successfully deployed, maintained and upgraded on the network with minimal impact and without compromising network security.
To create a complete cyber secure environment, IT and security departments must effectively work together. However, physical security and IT often use the same words to mean different things – resulting in everyone being confused. Sometimes security integrators and security officers even avoid the IT department due to the misunderstanding.
For example, IP may mean intellectual property to a corporate security officer but internet protocol to IT security professionals. Or perimeter may mean the exterior building wall to the security officer and network connection to the outside to the IT professional.
To make sure all departments are speaking the same, common language, we suggest developing a list of terminology definitions that everyone can use.
Terms to be Clearly Defined:
IP
Credentials
Key
Patch
Firewall
Vulnerability
Social engineering
Perimeter
Intrusion detection
Bandwidth
Directory
Security logs
Revocation
Signature
Having a common subset of terms will help you understand how to ask the right questions and quickly comprehend the answers. After establishing your company common language, clearly explain the information you need from IT to be able to define the network and security requirements.
Designed for use with victor, the new surveillance keyboard is designed to improve video surveillance operation surveillance. Simply “plug and play” via the USB connection — the keyboard is automatically recognized by victor software.
The surveillance keyboard offers greater control of PTZ cameras with an intuitive joystick. With 30 pre-programmed buttons mapped to victor’s most common controls, navigation is simple. Operators can program controls and call ups (guard tours, salvos, view switches) and change layouts. Buttons can be customized for specific security operation function.
An intuitive joystick enables precision control of Illustra PTZ cameras, while the jog shuttle wheel quickly manages video, cameras and PTZ preset controls. With its LED backlit buttons, the keyboard is visible even in low lighting.
The surveillance keyboard can be rotated for either right- or left-handed operation. It can be used as a stand-alone device or along with other common peripheral PC devices (mouse, keyboards, etc.)
It’s common knowledge that encrypted communication and other device hardening features are necessary for cybersecurity, but it’s vitally important to think beyond hardening. Now that the security industry has adopted IP technology, manufacturers and integrators must consider not only the security operator’s needs, but also those of the IT manager.
An unsecured device can be the target of a cyber attack that might affect the entire network. While IT managers in government agencies, utilities, transportation, retail operations and financial enterprises are most acutely aware of the dire consequences of a successful hack, IT managers in all sectors are demanding security measures that go well beyond hardening before accepting devices onto their networks.
Archive and Failover features to ensure continual operation and fast recovery
LDAP Support to manage credentials.
FIPS 140-2, Level 2, end-to-end validated encryption
Network Storm Protection that ensures an iSTAR controller continues to operate during a denial of service attack.
Not every industry or enterprise requires the same security features for network acceptance. Our application specialists are available to advise which features are relevant to a specific application.
