Axis C1410 Mk II

To Next Page

To Previous Page

AXISC1410MkIINetworkMiniSpeaker

Learnmore

cryptographiccomputingmodules(secureelementandTPM)andSoCsecurity(TEEandsecureboot),combinedwithexpertisein

edgedevicesecurity.

Signedrmware

Signedrmwareisimplementedbythesoftwarevendorsigningthermwareimagewithaprivatekey.Whenarmwarehasthis

signatureattachedtoit,adevicewillvalidatethermwarebeforeacceptingtoinstallit.Ifthedevicedetectsthatthermware

integrityiscompromised,thermwareupgradewillberejected.

Secureboot

Securebootisabootprocessthatconsistsofanunbrokenchainofcryptographicallyvalidatedsoftware,startinginimmutable

memory(bootROM).Beingbasedontheuseofsignedrmware,securebootensuresthatadevicecanbootonlywithauthorized

rmware.

Securekeystore

Atamper-protectedenvironmentfortheprotectionofprivatekeysandsecureexecutionofcryptographicoperations.Itprevents

unauthorizedaccessandmaliciousextractionintheeventofasecuritybreach.Dependingonsecurityrequirements,anAxisdevice

canhaveeitheroneormultiplehardware-basedcryptographiccomputingmodules,whichprovideahardware-protectedsecure

keystore.Dependingonsecurityrequirements,anAxisdevicecanhaveeitheroneormultiplehardware-basedcryptographic

computingmodules,likeaTPM2.0(TrustedPlatformModule)orasecureelement,and/oraTEE(TrustedExecutionEnvironment),

whichprovideahardware-protectedsecurekeystore.Furthermore,selectedAxisproductsfeatureaFIPS140-2Level2-certied

securekeystore.

AxisdeviceID

Beingabletoverifytheoriginofthedeviceiskeytoestablishingtrustinthedeviceidentity.Duringproduction,deviceswith

AxisEdgeVaultareassignedaunique,factory-provisioned,andIEEE802.1AR-compliantAxisdeviceIDcerticate.Thisworks

likeapassporttoprovetheoriginofthedevice.ThedeviceIDissecurelyandpermanentlystoredinthesecurekeystoreasa

certicatesignedbyAxisrootcerticate.ThedeviceIDcanbeleveragedbythecustomer’sITinfrastructureforautomatedsecure

deviceonboardingandsecuredeviceidentication

Encryptedlesystem

Thesecurekeystorepreventsthemaliciousexltrationofinformationandpreventscongurationtamperingbyenforcingstrong

encryptionuponthelesystem.Thisensuresnodatastoredinthelesystemcanbeextractedortamperedwithwhenthedeviceis

notinuse,unauthenticatedaccesstothedeviceisachievedand/ortheAxisdeviceisstolen.Duringthesecurebootprocess,the

read-writelesystemisdecryptedandcanbemountedandusedbytheAxisdevice.

TolearnmoreaboutthecybersecurityfeaturesinAxisdevices,gotoaxis.com/learning/white-papersandsearchforcybersecurity.

Axissecuritynoticationservice

AxisprovidesanoticationservicewithinformationaboutvulnerabilityandothersecurityrelatedmattersforAxisdevices.Toreceive

notications,youcansubscribeataxis.com/security-notication-service.

Vulnerabilitymanagement

Tominimizecustomers'riskofexposure,Axis,asaCommonVulnerabilityandExposures(CVE)numberingauthority(CNA),follows

industrystandardstomanageandrespondtodiscoveredvulnerabilitiesinourdevices,software,andservices.Formoreinformation

aboutAxisvulnerabilitymanagementpolicy,howtoreportvulnerabilities,alreadydisclosedvulnerabilities,andcorresponding

securityadvisories,seeaxis.com/vulnerability-management.

SecureoperationofAxisdevices

Axisdeviceswithfactorydefaultsettingsarepre-conguredwithsecuredefaultprotectionmechanisms.Werecommendusingmore

securitycongurationwheninstallingthedevice.TondoutmoreaboutAxishardeningguidesandothercybersecurityrelated

documentation,gotoaxis.com/support/cybersecurity/resources.

Main Page

Axis C1410 Mk II - Page 41

Table of Contents

Other manuals for Axis C1410 Mk II

Related product manuals