Thanks Steve, appreciate your responses. In fact passwords are our biggest concerns.
We go to great lenghts to protect our network but the weakest area is in the security surveillance systems. We can segment them out but then we run into different levels of network infrastructure which we want to eliminate. I think the easiest is just to put the cameras behind the NVR so that the only access is thru the NVR. That way we have more control on the NVR rather than pushing camera manufacturers to provide built in security in their cameras.
Unless of cause, this forum can provide some influence to the camera manufacturers to do more to protect their systems.
- built in standard encryption
- secure FTP and SMTP protocols
- tighter contol on embedded driver code
Todays cyber criminals are using these systems as jump hosts for back door entry to other infrastructure systems.
I don't expect a response on the above, just to raise the issues that IT departments see as risks on their networks.
I beleive we need to evolve from the traditional thinking "security thru obscurity" todays cyber criminals have tools that don't care if a system is hidden or not, they will find them and they wont even be working hard to do it.