Does anyone know what camera manufacturer provides End to End Encryption with SHA-2 (Secure hash Algorithm 2) & TLS (Transport Layer Security)?
Camera Manufacturers Offering SHA-2 & TLS?
Bosch would probably be one of the most secure for End to End Encryption, especially if you use their BVMS as well.
Bosch cameras support SHA-256. TLS 1.2 minimum can be defined, (e.g. to avoid vulnerabilities from TLS 1.0 and 1.1). Also, certificates & keys are kept in a Trusted Platform Module (TPM) chip useful for protecting against unauthorized access. (I believe these physical chips are currently only found in Bosch IP cameras). Cameras ship with valid certificates & beginning in FW 6.4x Certificate revocation handling was added which includes an internal algorithm that can check if a certificate issued by a Certificate Authority is revoked or is valid.
Reach out to Axis Communications, I believe their cameras with ARTPEC v6 or > cpu can process SHA-256. What are you using for the headend? VMS, Analytics, Live, Recording or all of the above?
With Genetec, you can use either Bosch or Axis to achieve end-to-end security. Using SRTP throughout the whole infrastructure enables you to set up a secured multi-cast network.
Au Contraire,
https://patchwork.kernel.org/patch/9858879/
Perhaps one of your Engineers is savvy enough to dibble dabble.
Our DH-390 camera in the Saros product family supports this. A screenshot below of the setup/config page shows some of the options around TLS and certificate options:
Several of our other thermal camera lines (eg: FC-ID cameras) also support TLS.
I have used TLS with Milestone Corporate and an Axis camera, as discussed in Encrypting Video By Tunneling Rtsp/Rtp Inside Https:
Here’s a link to Axis’ statement of compatibility with SHA-256.
All Hanwha cameras have tls support with self signed or CA certs Certain vms can encrypt video with srtsp (or is it rtsps) or rtsp over https.
Axis confirms, noting:
When generating a self-certificate in an Axis camera it will use SHA-2 signature. A CA-signed certificate is made by a CA (Certificate Authority). A CA may use SHA-1 or SHA-2 when signing certificates.
Ask questions and get answers to your physical security questions from IPVM team members and fellow subscribers.