Bosch/Genetec Video Cybersecurity Partnership Examined (CHAVE)

Author: Brian Karas, Published on Feb 15, 2017

Surveillance products have been relatively weak when it comes to cyber security. Default passwords, open ports, and weak authentication mechanisms led to a wave of exploits.

Now, Bosch and Genetec are working together to deliver a system that is "resilient against unauthorized access, malware, brute force cracking and other exploit techniques."

The two companies described the solution, which Bosch is marketing as CHAVE (Credentialed High Assurance Video Encryption), in a conversation with IPVM.

In this report we describe how CHAVE differs from other security mechanisms, what it adds in terms of costs, and how installation and day to day use vary from other systems.

************ ******** **** **** ********** **** **** ** ***** ** cyber ********. ******* *********, **** *****, *** **** ************** ********** led ** * **** ** ********.

***, ***** *** ******* *** ******* ******** ** ******* * system **** ** "********* ******* ************ ******, *******, ***** ***** ******** *** ***** exploit **********."

*** *** ********* ********* *** ********, ***** ***** ** ********* as ***** (************ **** ********* ***** **********), ** * ************ **** ****.

** **** ****** ** ******** *** ***** ******* **** ***** security **********, **** ** **** ** ***** ** *****, *** how ************ *** *** ** *** *** **** **** ***** systems.

[***************]

CHAVE ****** ********

***** ** ** ***-**-*** ******** *********** *** ***** *******. ** utilizes ******* **** ********** ******** / ******** *** ******** **** encryption, ***** **** ***-****** ******** ************ *** * *** **** can ********* **** *** ** ***** **********.

*** **** ** ***** ** ** ****** *** ********* ** video, **** *** ******* **** *** **** ***********, *** ** better ****** *** *** **** ****** ** **** *** ****** video. ***** ***** *.*. ************** ***-****** * ************, ***** ***** ****** ** ***** ************ ** able ** **.

*********, ***** ** ********* *****-******* *******, *** ******* ** ****** CHAVE ******* ** ** ******** ******** ****** *******.

User **************

***** ** * ***** ****** *** ****** ***** *****, **** commonly**********-****** ****-** *****, ***** **** **** ** ********** ****. ***** ** *** VMS ******** ********* ***** ***** **** ** * ****** ******** to *** ****** ** *** ******** * ***.

Target *********

*******/**********, ** ******* ********* **** **** ********** ** ********** ************ around ************* *** *** ****** ******. ** ** ******** **** even * ***** ********** *******-****** ******** ***** ********* ***** ******* outside ************.

CHAVE ********** ********

********* ** *****, *** ********** ********** ** ***** *** *** based ** *********-********* ********, **** ***.*** ****************** (********* ***** ********). ***** ** *****'* ********* **** *** ******* ***** ********* together **** ** ** ******, *** ************ *** ******** *** accessing *** *******.

******* ******* *** ******** ** **** ******** ******** ********** ** support *****, ** ** *** * ******* **** *** ** added ** ******** ******* *** ******** ******** ** ***** *******.

Username/Password ** ****

***** *************** ***** **************, ***** ********** ********/******** ****** ** *******, *** *** **** of ****** ** ******* *********. *** ****** ** ******** ** have ****** ** *** ********, ** **** *** ******* *** routinely ******* *** *********** ********* ** ****** *** ***** *** still *****. ********* ** *****, *** ******** ****** *********** ** not ** *****, **** *** ********-****** ********** *************, ** *** systems ********* ******* **** ******** ****** *** ****** ******/************** ********.

Supported *******

***** ***** *** ********* ******* ** ********* ********** *****:

  • ********* ** **** ** ***** **** ******
  • ********* ** ********* **** ** ***** **** ******
  • ****** ** ********* **** ** ***** *** ******
  • ********* ** **** ** ********* ******
  • ******** ** ******* **** ** ***
  • *** ** ********* **** ** ********** ***
  • ****** ** ****** **** ** ******

Genetec *******

******* **** **** *** ****** ** **** **** ******* *** CHAVE ** *** **** ******* ** ******** ******, ***** ****** be *.*.

********* ***** ******* ** ********* ** *******, ****** ******* ***** nor ******* ***** ******* *** **** *** ********* *********** ** intended ** ****.

Additional ******** *** ************ ************

******* **** ** **** *** ******** ************ ***-********* ****** ********, this **** ** ******* **************. *** *********** ******* ******* **** ******** ****-**** ********, ********* to *****, *** ****** *** *** **** **** * *** extra ****.

**** ********, ************* ************ **** ** ** ******** **** ******** Center ****** *** ******* *** ** ***** ** *** *** and **********. ***** ******** ** ****** *****, **** ** ******** bitrate ******** ** ******** ******** *** *** **** ** ***-***** cameras.

*******, *** ********** **** ******** ** ******* *** ********* *****-******* cameras ****** ** *******, *** **** ******* ***** ** ** through * ********/************* *******.

Training ************

***** **** **** *********** **** **** ** ******* ********** ******** before **** *** ********* ** **** *** ******* ***** ********. The ******** ** ******** ** ** ********* *****, *** **** likely ** * **** *** ******.

Cost ** *****

***** *** ********** ******* ***** ** ********* ***** ** * non-CHAVE ******. ***** *** ********* ******* ** *** **** ***** and ***-***** ********, ******* **** * ******** **** *** *** more *** ***** *******, *** ******* ***** *** * ***** camera *** ** ****** **** * *********** *******.

*** ******** ******** ************ **** $**-$***, ********* ** *** ***** level ** *** *********** ***** ******, *** **** **** ** be ******* ***** * *****.

******* **** **** **** *** ********* ******* *** ******** ****** with *****, *** *** *** ** ***** ****** ** * different ******* *******, **** ** ********** ****.

***** **** **** **** ** ** ****** ***** *****, *** have ****** *** ******** **** ***** **** *******. *******, ** is ****** **** ********* ************ ***** **** ******* ** ***** smart *****, ** **** **** *** *** ** ********, ** may **** ******* * *** *** ** **** ***** **** readers *****.

Compared ** ***** ******** *******

*****'* ******* *************** *** *** **** ***-* ***** * **********, and ***********-***** ****** **** *** *********** ** ********/******** *****. **** *** **** ******** ** *** ***** ** **** ************ claims *** **** **********, ***** ***** ** ******** ** ********* that **** ** **** ***** ************, ** ** ***** ********* the **** ** ****** ** *********** ******** *** *******/********. *********** the ******* ** ***** **** * ****/**** ***** ***** ** valuable ** ********-****** *********, **** ** **** *** *** **** to **** *** ******** ********** ************.

*******, * ***** ****** ***** ****** ** ************ **** ********* than *********** *******, **** ** ***** * *** *** ******* that ******* ***** ************** *** ***** *********, ** ** ******** specific ****** ********, ************ **** **** ** ** ****** ********* and **** ******* ***** * *****, **** ********** *****/************ ****.

Outlook *** *****

***** **** ** ****** ******** ** ********** ************, ** **** help *** * ********* *** **** *** ** **** **** a ************* *********** ** **** ******* **** **********. ****/** ***** VMSes ******* *****, ** *** ****** **** ** ***** ******** methods ** *******-**** ** ******** *******, ****** ****** **** ******* requirements (*.*., ** *********** *** ***** *****). *****, **** ** unlikely ** ****** ** ****, ****** ***** * ********** ***** concept **** **** ** *** ********** ******.

Comments (18)

Undisclosed Manufacturer #1

02/15/17 02:12pm

**** ** * ********* *** ******** ******** **** ***** **** come ** ****. * ** *******.

John Honovich

IPVM | In reply to Undisclosed Manufacturer #1 | 02/15/17 02:16pm

****, * *** *** * ** **** ******* *** *** cost ** ****** **** *** *********** ** *****, ** *** may ***** **** **** ********** ;)

Eddie Perry

02/15/17 02:27pm

*****'* ******* *************** *** *** **** ***-* ***** * **********, and ***********-***** ****** **** *** *********** ** ********/******** *****. ** is *** **** ******** ** *** ***** ** **** ************ claims *** **** **********, ***** ***** ** ******** ** ********* that **** ** **** ***** ************, ** ** ***** ********* the **** ** ****** ** *********** ******** *** *******/********. *********** the ******* ** ***** **** * ****/**** ***** ***** ** valuable ** ********-****** *********, **** ** **** *** *** **** to **** *** ******** ********** ************

********* *** ********* ******* ** **** **** ***** **** *****-* or ********* ** *** *** ******* ******* ****** *** ***** with *** *** **-*****.

******* *** ***** ***** ** *** *** ******** ******** **** the **** ****** *** *** ***** *** * ***** ****** really *** **** *** ****** ** *** **** ************* ** my **** *** ****** ** *'** **** **** ******** **** i *** *****.

Thumbnail brk1

Brian Karas

IPVM | In reply to Eddie Perry | 02/15/17 02:58pm

**** ***-* *** * ****** ** **********, * ***** *** most *****, * ***** *** **** ******.

********* ***** **** ***-* ***** * ** ***** ******* ****** release.** ******* **** **** ******* ** *** ***** ******* *******, *** ******* * ****.

*** ********* ******* **** **** ***** **** *** ***** ***** options, *** ***** ******* **** ******* *** * ***** ***, 5MP *** ******, *** **** *********.

Undisclosed End User #2

02/15/17 08:45am

**** ** *** **** **********, *'* **** ** *** *** camera ************* ******* ************ (***** ** ***** **** *** ***) when *** ****** ** ****** ***-** ******** ******* * ************ number. **** ***** ******* *** ****** ************* ********** ** *** often * ***** ** *** ***. ** ********** ** ****** to *** *******.

Thumbnail profile pic

Ethan Ace

IPVM | In reply to Undisclosed End User #2 | 02/15/17 04:52pm

* ***** **** **** *********. * ********** **** *****, ******, and ********* **** ***** **** ******* ****, *** * ******* only ********* ****** ****** ** ** **** ** ****** **** to *** ****** (*** * ******* ****'* **** ********** **** iVMS, *** * *****'* *******). ******* *** ******* ** ****, but ******* ************, *** **** ****** **** ** ***** **.

**** ***** ** ********* ******* ** ****:

*** ****** ***** ** *** *** ************* ******* ****** ***** detection ** ***. ** ***** ***** ** *** ****** ******* tries ** ***** **** * ***** ********, *** ******* *** VMSes, ******** ** *********** ********, ** ***?

John Honovich

IPVM | In reply to Undisclosed End User #2 | 02/15/17 05:33pm

*'* **** ** *** *** ****** ************* ******* ************ (***** or ***** **** *** ***) **** *** ****** ** ****** log-in ******** ******* * ************ ******.

*******:****: **% ** ***** *** *** *** ************'* ************** *** **** **** *** ******* ****.

Thumbnail image

Jon Dillabaugh

Pro Focus LLC | In reply to Undisclosed End User #2 | 02/16/17 01:35am

**** ********* *******, ****** **** *** ******* ******* ** **** lock ** ******* ***** ******* *** *** **** *** ***** you ** *** ****** ***** *******. ****** ** **** **** any ****** ***.

Thumbnail profile pic

Ethan Ace

IPVM | In reply to Jon Dillabaugh | 02/16/17 01:55am

******* ** ******* ** * ********* ****** *****'* **** *** stream ***********, **** *** *** *********. * **** ****** **** with ***** *** *'** **** *** **** ** ***** *****. It ***** **** ********* ** *** ***, ******.

******, **** ** ** *** ******** **** **** *** ****** offline, **** ************ **** **** **** *** **'* *******. **** you're **** ************* *** **'* ******* **********. ******** ******* * discrete ***** ***** ** **********.

Undisclosed End User #2

In reply to Ethan Ace | 02/16/17 04:47pm

* ** ****** **** ****** ************* *** ******* ****... ** an *** **** *** ****** ********* ** * ********** ***** video ************ ****** - * **** ** ****** ********** ********* based **** *** ******'* *****-******** ********.. *** ***** ***** **** be ******* **** *** ****** ** ****** ** ***** ** SDK **** **** * *** **** ****** ***** ******** ***** as * ***** ************** ** **** ****** ************* *** ** a ****** *** **** ***, ******* ******* ***. * ***'* think * ** ***** ** ****....

Thumbnail brk1

Brian Karas

IPVM | In reply to Undisclosed End User #2 | 02/16/17 05:08pm

*******, ***** *** ***** *****-******** ******** *** ***** ************? **-***** analytics, ****** ***********, ****** ***********, ******** ***?

Undisclosed End User #2

In reply to Brian Karas | 02/16/17 05:33pm

*****, *** **, *** ******** **** *** ****** *** **** to ***** *** *** ******** ** *** ********* ******* ************. That ***** ****, * ** * *** *** ** *** Smart ****** *** ******** **** ******* *** ****** ********** ***.

** ** *******, **** * ********* ******* ********** - ****** features **** ******* ************ ** ****** ** *** ******** ** your ***** ************ ****** ** * ****** ******** (***** ****** which *** ******* *********** ***) .

******* **** *** ******** - * ** ******* *** * 4K **** **** ***** ** ** , ** ********* **** dynamic *****, **** *** ***** ***********, ******** * ***** ***** and ******** ***-** ******* ************ - ** * ****** *** too **** :) ??

Thumbnail brk1

Brian Karas

IPVM | In reply to Undisclosed End User #2 | 02/16/17 06:11pm

* ***'* ***** *** *** ****** *** *** **** ** the ***** ** ******* * ******* ********** **** ** ***********. I ***** *** ********* *** ************* ** **** ** ** often * ****-*** **** **** *********** *********. ************ **** *****-******** features ***** ********* **** **** *** ** *******. ***** **** delay ** **** * *******, ***** ** ** * ****, hard ** ***.

* ***** **** ********* **** ** **** ** ***** *** cyber ******** ************ ***** ** **** ********* **** "****** *****" like ********* ** *****(**) ****** (******** ** ****** **** *** other ****** ******** *** ** *** **** ******** *********, * company **** ** *** *.*** ***** ***** ** ****** *** working ** **** *****).

Undisclosed End User #2

In reply to Brian Karas | 02/17/17 04:04pm

* ***** **** **** *** *** ****** - *** ****** being ***** ** **** **** ******* ********* **** **** ****** security ********. ** **** ***** * **** **** ************ ***** add **** ***** **** *** ** *** ******** ******** ** using *********** ***** ************** ***.

Undisclosed Integrator #3

02/16/17 09:19am

"*** ****** ** ******** ** **** ****** ** *** ********, so **** *** ******* *** ********* ******* *** *********** ********* to ****** *** ***** *** ***** *****. ********* ** *****, the ******** ****** *********** ** *** ** *****, **** *** security-minded ********** *************, ** *** ******* ********* ******* **** ******** access *** ****** ******/************** ********."

**** ** ***** * ******* *******. ** ******* ** ** security ******* ****** ** **** ********* ** *** ********. ********** not *** ****** ************** ********.

******* ***** * **** **** **** ****** **** *** **** one **** *** * *****/******** ***** *** *** *** ***** to *** ******. ***** *** ** ****** ** ******, ** your ****** ** ********** *****.

** *** **** ** ******* ** *** ********, *** ***'* the **** *** ***** ********** *** **** *** ******** *********** reader, ****** ************* ****** *** ** ********* *** *** ** Android, * **** *** ****** **** **** *******.

Thumbnail photo

Michael Archer

In reply to Undisclosed Integrator #3 | 02/16/17 11:53pm

** ** *** **** *** ** ******? ** *** ********* a ****** ** * ****** **** *** *** ***** ** touch ** **** **** ******* *****!

**** ********* *** ** *** ********* ** **.****** ** *** does *** ******* *** *****, ****** ***** ***** ****.

** *** ** **** * ****** *** *** * *********** cost **** ******* ******?

*. ****** *** * ********* ******, *** ******** ** **** is * ** **** *****. *********.

*. ******* ****** ***** ** ******, ******** ***** *** ** direct.

*. ****** ** ***** ***** ** **** ** **** ************* / ******** ********** ****.

*. ********* *** *** *********** ***** ***, ***** **** **** after * **** **** ***** * ******* **** *** ******, for **** ****** **** ** **** ************* ******** ** **** from ***** (******* ** **** **** * ****** ****** ** a ****** **********) ****** *** *** ****** *** ****** **** the ****** ** ** **** * **** ** *** *********** generation. (*** ***** ******** ***** ** **** *** ** *** the *****)

*. **** ******** *** ****** **** *** ****** ******** *************, close *** *********.

*. ***** *** *** *** * ****** ****** / ******* codes ******, **** **** *** ** ****** ** *** ********, this ***** ** ***** *****.

*. ****** ********* **'* *** ********, ** **** ******* *********** of *** *** ** ******** * ********.

*.****/**** *** ** *** **** ***** ** ****** ** ******** at ***** **** ***** **** **** **** *******.

*. ****: ** ************ ******** *** *** ** ****** ***** software ****, ** **** *** **** *** *********. ******** *** certificate *** **** ********* ** *** ******** ****, ** **** as **** ** ********.

*. **** *********** **** ******** ******** ** ** ********, *** allow ***** - ****** (*** ** ** ********) ** **** a *** ***-***** ** *** *********** ***** *** ****** ** added.

* ******** ******** *** ** ******** ** ***** *** ** we ***'* **** **** ********.

**. ************ ******* ***** **** ****** ** ****** ****, *** even ******* *** **** ********.

**. ****** **** **** *** ******* ** ************* **** *** generated ***********.

***** ** **** ** **** *** ******* *** *** ******** certificate **********, *** ******** ********** ********* ***. * ******'openssl **** -****** **' gives you a lovely password nobody would be able to guess.

Undisclosed Integrator #3

In reply to Michael Archer | 02/20/17 03:58pm

**, * ***** ******* ** ** *** *** ******:

***** ** *** *** ******** ********* ***** ***** **** ** a ****** ******** ** *** ****** ** *** ******** * PIN.

Thumbnail 201511 baud sgpp

Baudouin Genouville

In reply to Undisclosed Integrator #3 | 03/17/17 04:56am

******* ***** * **** **** **** ****** **** *** **** one **** *** * *****/******** ***** *** *** *** ***** to *** ******. ***** *** ** ****** ** ******, ** your ****** ** ********** *****.

** *** *****!

***** *** ******* **** **** *********** *******, ** ** *** have *** ***********, **** ***** *** ****** **** ******* ** well

=>*****://**.*************.***/**/********/********************/***************/****************/**********************

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports on VMS

FLIR Restructures Security Division on Aug 22, 2017
FLIR's goal was once to have a single end-to-end security solution. However, FLIR's Security business unit has been struggling, with several areas...
Dahua 4K IR PTZ Tested on Aug 21, 2017
4K has made its way to IR PTZs. In this report, we examine the Dahua 6AE830VNI, a 4K PTZ with 30x optical zoom, 200m (~650') integrated IR, and...
Stolen Video NVR / DVR Statistics on Aug 15, 2017
"But what happens if someone steals my recorder?" Anyone who has done more than a handful of jobs has probably heard this question several times....
IP Camera Specification / RFP Guide 2017 on Aug 14, 2017
RFPs are hard. Do them 'right' and it takes a lot of knowledge and time. Do them 'wrong' and you can be (a) unwittingly locked into a specific...
Briefcam New Outsider CEO Promises Exponential Growth on Jul 31, 2017
Briefcam is now nearly a decade old, having raised over $20 million, to improve investigations and review of video. The company has remained a...
Canon Sues Avigilon on Jul 27, 2017
Canon, owner of Axis and Milestone, has sued Avigilon for patent infringement in US court. This is a highly atypical move for Canon, pitting 3 of...
Sports Stadium Security Design Recommendations on Jul 24, 2017
Sports stadiums pose many challenges for designing security systems. The facilities vary from being mostly vacant, to packed with tens of thousands...
Genetec Mission Control Tested on Jul 13, 2017
Genetec continues to move up market with their Mission Control, "Decision Support System", bringing PSIM-like procedures and incident management to...
OnSSI Gets $16 Million Funding on Jul 11, 2017
OnSSI has had a rollercoaster past few years. Between acquiring VMS company Seetec, breaking up with former OEM partner Milestone and a rocky...
ONVIF Widely Used Toolkit gSOAP Vulnerability Discovered on Jul 10, 2017
A vulnerability has been discovered in a toolkit that video surveillance manufacturers widely use for implementing ONVIF. In this report, we...

Most Recent Industry Reports

FLIR Restructures Security Division on Aug 22, 2017
FLIR's goal was once to have a single end-to-end security solution. However, FLIR's Security business unit has been struggling, with several areas...
Honeywell Total Connect 2.0 Tested on Aug 22, 2017
Honeywell is one of the biggest brands in security, with Total Connect 2.0 being the company's remote security and smarthome platform. We bought...
IP Camera Cabling Testing Statistics on Aug 22, 2017
Test and certify, or crimp and pray? Some integrators certify every cable they run, while others only inspect cables that have video issues. 130...
Dahua 4K IR PTZ Tested on Aug 21, 2017
4K has made its way to IR PTZs. In this report, we examine the Dahua 6AE830VNI, a 4K PTZ with 30x optical zoom, 200m (~650') integrated IR, and...
Top Used License Plate Capture Cameras on Aug 21, 2017
Capturing license plates is a common video surveillance application. But what cameras do integrators mostly commonly used? Special purpose LPC...
VLAN For Video Surveillance Usage Statistics on Aug 21, 2017
VLANs (see our tutorial) are an option for networks using video surveillance, but how often are they actually used? 125+ integrators told us how...
Avigilon CEO Attacks Asian Companies Cyber Insecurity on Aug 18, 2017
Avigilon CEO is taking aim at their Asian competitors. And he is going directly after these company's cyber security issues. In this note, we...
Sony Next Gen HD Dome Camera Tested (SNC-EM642R) on Aug 18, 2017
Sony has released their latest generation, claiming improved WDR and low light, increased IR range, and more. We tested the SNC-EM642R outdoor IR...
IP Networking Course September 2017 on Aug 17, 2017
This is the only networking course designed specifically for video surveillance professionals plus it includes live training, personal help and...
Knightscope Raises $10 Million With $3,320 Average Per Investor on Aug 17, 2017
Congrats to Knightscope. And condolences to their legion of little investors. Knightscope has disclosed they have raised $10+ million from their...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact