Dallmeier presents components for a comprehensive approach to security in video technology

El fabricante de seguridad ha creado un paquete con información y recomendaciones concretas de actuación para sistemas de videovigilancia, más allá de los instrumentos clásicos de la ciberseguridad.

Los ciberataques a dispositivos IoT y a sistemas de vídeo se están incrementando, tal y como pone de manifiesto el fabricante Dallmeier, al recordar cómo los encargados de seguridad de muchos bancos en diferentes países fueron cogidos por sorpresa en 2013, cuando grupos de hackers rusos, dentro de la acción denominada Carbanak, robaron cientos de millones de euros.

En estos ataques fueron comprometidas cámaras de vigilancia dentro de las entidades financieras, both to spy on content on monitors and inputs through keyboards and to identify employees, for example through their identifications as targets of spear phishing.

Video systems have also become targets for denial-of-service attacks, as shown by the well-known actions Miraiy Persirai.

Planning and trust in the manufacturer

If a company wants to successfully protect itself from attacks of this type, it is essential to implement a comprehensive security strategy. Dallmeier identifies five crucial aspects that must work in harmony: considering security aspects already during the planning phase, integration into the IT strategy, cybersecurity functions in the systems, data protection and, finalmente, manufacturer credibility.

Planning should sufficiently consider security issues, For example, through the intelligent use of 3D technology. It must be taken into account that the planned system fits into the company's IT strategy: increasingly, essential resources such as server capacities or even the entire video security system are the responsibility of the IT department.

For the core of cybersecurity itself, it is important that systems have all the necessary IT security functions, from reliable operating systems to encryption technologies and attack detection capabilities, including possibilities for network segregation.

The fourth aspect, in reality it has been clear since the entry into force of the GDPR, that is to say, the consideration of data protection. Finally, customers must also pay special attention to the manufacturer: what measures are taken for the protection of systems during their development and manufacture? is the manufacturer perhaps exposed to political pressure? how is the integration of systems with each other and how are third-party systems integrated from the security perspective?

the Dallmeier information package (entirely in this enlace) pretende dar respuesta a estas y otras preguntas y ofrece con la Guía de buenas practicas una amplia colección de consejos e indicaciones de configuración para administradores y encargados de IT y seguridad. Este paquete se completa con la edición de Vídeo Extra y el folleto sobre protección de datos y seguridad de datos del fabricante.