Supply Chain Accountability - What Are Companies Doing To Certify That Product Have Not Been Compromised In Factory, Transit Or Otherwise?

Sorry if this has already been discussed, I didn't find exactly what I was looking for OR I am not sure how to search it properly, but:

Where are we as an industry (Physical Security as a whole) in holding Manufacturers, Distribution, Logistics and Our own teams accountable for the integrity of our products? I'm talking about gray market products, mostly cameras - but Alarm Systems, Access Control and just about anything is vulnerable to hacking and threats to information and life safety..

What are some companies doing to certify that these product have not been compromised in factory, transit or otherwise? I am sure it IS being done, at least at some levels and by some companies, I would love to find out more.

Thanks - Brett

Login to read this IPVM discussion.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

*****, ***** ********! ** *** *** ****** **** ********* *** the **** / ******* *** **** *** ***** ***** ************ '*** ****' *****. ******* *** ******** ** *********** **** ***** ************, ************ officials ** *** ******* **** ********* **** ***** / ******* do *****.

**** ** *** ********** ** **** ************** *******:

  • ***** ** ** ****? *****, *****, ******, ***.
  • **** ********** **** ** ***? ********** **** ********** / ******** elements **** *** (** ********* ** ***** ****** *********, ***.).

* ***'* ****** *** ***** ************ ************ ******** ********** ** great ****** ***** **** ************. *** ***** ** *** ** is *** *** ******** ** ************* *** *** **** ********* they *** *******. **'** ***** **** **.

*** ** **** **** ***** ******** / ********* *** ****. Curious ** **** **** ***** ******* ** **** ** ****.

* ***** **** ** **** ******* *** ** ****** ** would ** * **** *******. ** **** * ************** ** our ********* ** ******* ******** ******** *** ** ** **** away **** *** **** **** *** ********* ***** ** *********** and ** *** ******* ** ** ***** *** ** ******* it, * **** ******** **** **********. * ******* ******** ***** it * *** ***** *** *** ******** **'* ****** **** on ** ****, * **** ****** ***** ********** ** ***** very ********* ** ****************, * ***** ***** **** ******** ****** take ** ********* ***!

**** *******'* ** * ******** ** *** ********. **** ****** be * ******** ** *** ******** ********* ******** ********.

** *** ********* ***** ** ****, **** **'* *** *** industry's ***** *** *** ********** *** ********. **'* *** ** security ******** ***** *** *** ******* *** ********* ******* ** hardware **** ** ******* * ******** ******** ****.

** *** ***** ************* ******** **********, ** *** ******* ******** to *** ********* ***** *** ** **** **. *** *** truth **, **'* ******* *-******-******** **************** ** ****** "********" ********.

**** ** *** ** *** *****.

**'* *** ** ******** ******** ***** *** *** ******* *** malicious ******* ** ******** **** ** ******* * ******** ******** risk.

*** ** *** ****** '** ******** ********' ** ***** *** hardware ****** **** *** **?

**** *******'* ** * ******** ** *** ********.

*** *** *** ** *** ** ** ***** ******** *** responsibility ** ********** ********* ** ****** *** ********* ** ***** supply *****?

**. ********,

"*** ** *** ****** '** ******** ********' ** ***** *** hardware ****** **** *** **?"

****'* *** ** *******, ****'* ******. * ********* ***'*.

"*** *** *** ** *** ** ** ***** ******** *** responsibility ** ********** ********* ** ****** *** ********* ** ***** supply *****?"

***** ** ******* -** *******- **** *** *** ** ** ensure ********* ** **** ******'* **** ***** ********* ** ********.

** ***'* ** ** ***, **** ** ** **** ** $30 * *****, **** **** **** ** ***** ***, ***** them ****, ******* **** ** *** ********* ***** ******* * PCB ******* (********* ** ***** ************* ***'* ****** ******* ******* a ***) ** ****** **** *** "********" *** ***********.

** * ******* ******, "** ****** *** ********* ** *** equipment **** *** ************". **'* * ****** ** **** ***** they *** **** *** **** ********* ******* ** "** *** to ****** *** ********* ** *** ********* **** *** ************".

*************, * ******* *** ****** ******* ****** ** ***** ****** it ***** ** ** *** **** ***.

** *** *** ******** ****** *** ************* *** *********:

*) **** ***** ** *** **** ** ****** *** ********* of **** ******* **** *** ******** **** ** *** ***********/******.

*) *** *** ****** *** ********* ** **** ******* **** the ******** **** ** *** ***********/******.

* ***** **** *** **** ***** *********, ******* ** **** time, ***** ** ** *** ******** ** ****** *** ********* of ******** ******** **** ** ******, ****'* **** *'* ****** to *** **.

****; *** *** ******* **** ****** ******* ** *****. ***** are **** * *** ************* *** ** ****.

*** ** *** ******* **** **** *** *** ******* ** ADI's *******?

****, *** ***'* ****** ******* ** ****** **** *****. ** they **** ** **** **** **** ******, ** ****** ** assumed **** **** ****. **'* *** ***'* ***** ***** * letter *******'* ************** ** **** *** ***** *******.

*** **** -** *****- ***'* **** ** **** ****** ****** enough ******. *** ** **** **** **** ****** ***** **** down *** ******** **************, *****? **'* *** **** **** ** IT ******** *** *** ******** ******** ** ***** ***** ****** and ******** **********. ** *** ** * ***** ** ******** assured *********** ********* ******* ******** **************.

****, *****/**/******/******/******/****** **** **** **** ******* ******* **** **** ******* as ***** ******* *** *** **** *** ********** ******** ** be ****** ** *** ***** *****.

****** **** * ****** **** ***** ******* ***'* **** *** then *** ******** ** **** **** **** * ******** *******.

¯\*(ツ)*/¯

****'* * **** ***** ** *****, *** * ******** ***** we **** ** ***** ***** ****** **** **** *** ************ all *** *** ** *** *** ******* **********.