In a previous generation, we had NTSC standards. They were more about compatibility than security, but the application is similar, and by the way, the compatibility issues between of IP cameras and recording devices continues to mount. The FCC had the teeth to established standards to protect the American consumer and they had the ability to enforce their standards. We have no such organization today. None. Zero. The watchdog groups have completely abdicated their responsibility to the consumer. The UL standard is a nice start. But who here honestly thinks it will pass? Other UL standards about security have failed miserably. The biggest detractors? Integrators.
Do we need a government organization? I would like to think not, but the evidence says otherwise. I would like to think Manufacturers (and there are a lot of well-meaning people in that group) and integrators would put out the safest product possible, but how's that working? I would like to think consumers would educate themselves, but c'est la vie. It is just not on their agenda.
This is my whole problem with ONVIF. No enforcement capability. We as integrators have to come up with a completely different way of thinking about the security of security products. They have just become another appliance, which really is what the IT industry wanted from the beginning, to commoditize security. But again I would ask, how is that working?
Go to the discussion group or board of your choice and for every one conversation about the security of security, there are 10 conversations about profitability.
Until something or someone is given the authority to punish sloppy work, one way or another, it will not change. Consumers, for the most part sure don't seem to mind. If it affects price, they just don't want to hear it and if it requires work and study, they want to know who is going to cover that cost. They just don't want life to get in the way of their family soccer outings.
I would ask anyone this: Image quality aside (and that is not even close), are we safer with IP cameras than with Analog or Analog HD? I have never, ever seen a map of Analog devices that were compromised posted on the internet.
I am not a stick in the mud. I am not advocating rolling back the clock "to the good ole days". That is a useless stance, and I enjoy the IoT. I like living in the here and now. But we seriously need to rethink what we do and how we do it.
If we don't do something, and I mean soon, we are all going to pay that cost, and we will pay it the hard way.
Rant over.