Default Passwords Outlawed in California, US To Follow

By: Dan Gelinas, Published on Oct 09, 2018

A new California bill aimed at improving security for connected devices has been signed into law. The law takes aim especially at passwords on connected devices and will have a significant impact on camera manufacturers, many of whom are not currently compliant.

IPVM interviewed State Senator Hannah-Beth Jackson, who sponsored the bill and she told IPVM the intent is to change requirements nationally:

We think that given our state’s economic importance, any product designed for the United States market is going to comply with these reasonable security requirements.

In this note, we:

  • Share detailed feedback from our interview with Senator Jackson
  • Examine the language of the law
  • Discuss the goals of the law
  • Look at what the impact on existing cameras deployed is
  • Examine why out of California sales are still liable
  • Discuss what penalties manufacturers face for non-compliance
  • Examine who is and is not compliant
  • Share feedback from companies that are not currently compliant including Arecont, Avigilon And DW 
  • Look at the downsides of compliance
  • Examine potential penalties of non-compliance
  • Discuss the national effect this law will have
  • Analyze criticisms of the law

* *** ********** **** aimed ** ********* ******** for ********* ******* *** been ****** **** ***. The *** ***** *** especially ** ********* ** connected ******* *** **** have * *********** ****** on ****** *************, **** of **** *** *** currently *********.

**** **************** ******* ******-**** *******, *** ********* *** bill *** *** **** **** the ****** ** ** change ************ **********:

** ***** **** ***** our *****’* ******** **********, any ******* ******** *** the ****** ****** ****** is ***** ** ****** with ***** ********** ******** requirements.

** **** ****, **:

  • ***** ******** ******** **** our ********* **** ******* Jackson
  • ******* *** ******** ** the ***
  • ******* *** ***** ** the ***
  • **** ** **** *** impact ** ******** ******* deployed **
  • ******* *** *** ** California ***** *** ***** liable
  • ******* **** ********* ************* face *** ***-**********
  • ******* *** ** *** is *** *********
  • ***** ******** **** ********* that *** *** ********* compliant ********* *******, ******** And ** 
  • **** ** *** ********* of **********
  • ******* ********* ********* ** non-compliance
  • ******* *** ******** ****** this *** **** ****
  • ******* ********** ** *** law

[***************]

The ******** ** ** ***

****** **** ***, ******** ****** **** ******** **** **’* ********** Assembly ********* ****** ****, ** ******** ***** Brown ** ********* **, 2018, ********** *** ********* of “********** ******** ********” on ********* *******:

**** ****, ********* ** January *, ****, ************ * ************** * ********* ******, as ***** ***** *** defined,to ***** *** ****** **** * ********** ******** ******* ** ************ *** *********** ** the ****** *** ******** of *** ******, *********** to *** *********** ** may *******, *******, ** transmit, *** ******** ** protect *** ****** *** any *********** ********* ******* from ************ ******, ***********, use, ************, ** **********, as *********. (******** *****)

*** **** **** **** on ** *** **** if * ********* ****** can ** ******** ** a **** ********, **** the “********** ******** *******” requirement **** ** ********* by ******* ****** *** or *** ***** ** two ******** ************:

(*) ******* ** *** ** the ************ ** *********** (a), ** * ********* device ** ******** **** a ***** ***authentication ******* * ***** **** *******, ** ***** ** deemed *reasonable ******** ******* ***** *********** (*) ** ******** *** ********* ************ are ***:
(*) *** ************* ******** **unique ** **** ****** ************.
(*) *** ****** ******** * security ******* ****requires * **** ** ******** * *** ***** ** ************** ****** ****** ** ********* *** ****** *** the ***** ****. (******** added)

**** *********** ***** **** problems *** **** ****** manufacturers *** ** *** require * ***** ** who *** ******-****** ******* logins **** *****/***** **** don’t **** ** ** changed.**** *** * ********* of ******* **************** **** *****.

Proposed ***** ** *** ***

**** *********** ******* ******-**** Jackson *** ********* ** 327. ** **** *****, the ****-****** **** ** ****** *********** ****. *******, **** it ***** ** ************* and *************** **** *** ***** Botnet ******, ********** ********* **** there *** ** ****** room *** ******* *** buyer ******. ********* ** the *******, *** **** was ** ***** ************** on ************* ** ********* devices:

* ***** ** **** to ***** ******** ***** security ** * *********** element **** ** ****** these ********* *******. *** bill ************ **** **'* the ************ *** *** the ************** ** ******. It's ****** *** ************ who ** ** *** hook.

***********, ******* ******* **** drafters ** *** **** were ******* **** ** came **** ** ******* the *********** ****:

**** **** ********** ***, unless ****** *********, ** becomes *********** *** ** effect ******* * ** the ********* ****, ** 2019. *** ******* ** recognize ****, *****, * lot ** ********* *****’* done ******** **** ********, we ******* **** **** until ******* *, ****, to ****** ***** ******** so **** **** ****** with *** ***.

Grandfathered ******** / ********** **** *******

******* ******* **** **** devices **** ****** *** implementation **** ** ******* 1, ****, ***** ** grandfathered. *******, **** ******* 1, **** ***** ****** anything ************ ****** **** date ***** *** ** sold ** ********** ** it *** ***** ** be ***-*********.

Out ** ********** ***** ***** ******

**** ** * ****** is ******* ** **********, any ****** **** ** offered (*.*., ******) ** sold ** ******* ** California, ***** ***** **** to ******, ********* ** Senator *******:

**'* ***** *** ** comply. ** **'* **** in ** ******* *** sale ** **********, **** it's ******* ** *** state **** *** ****** wouldn't ****** ***** ** was ************ ** ******** or ******* ****. ** would ***** **** **** California ****.

Penalties ** ******** *** *** - ************* ********

*********** ** *** *** itself ***** ********* **** ******* *********-***** attorneys ** ********** *** bring ***** ****** ** a ******** ******* *** non-compliance:

*** ******** *******, * city ********, * ****** counsel, ** * ******** attorney ***** **** *** exclusive ********* ** ******* this *****.

*** **** *** ****** up ** ****'* ********* with ******* ******* *** said **** *** ********* manufacturers *** ***-**********:

** ************* ***'* ******, there's *** ********* **** they're ** ********* ** California’s **** ********* *** and ******** **** **** deal **** ***** *** don't ****** **** *** laws *** ****** ** unfair *********** ***********. ** manufacturers ** **** *** put *** ******** ************** at **** ** ***** attack, * ***** ******* that ****'* ******* ** on *** ***** *** of ** *********** ****** from ****** *** ********** Attorney ******* ** *** other ********* ****** ***********.

******:

******* *******'* ****** ********* us ** *** ** know **** *** ******** of ********* *** ***-********** was * ********* *** since ** ****'* **** done ***. **** *** say **** ********* ***** run *** ***** ** anything *** ******** ******* has ** *** ********:

**’* **** ** ***. It ***** ** **** dependent ** **** *** circumstances ****. ** *** put *** ********* ** non-compliant ******* *** ** caused * ******* *******, then ** ***** ** a ****** ***** *******. Anything **** * **** to * ***************.

US ******** ******

******* **** *********** ***** this ***** *** ************* law ** *** ****** it ** ***** ** have ** *** **** of *** ****** ******. Senator ******* **** *** point ******* ***** ****** IPVM's *********:

**** **** ******* ** connected ******* **** *** sold ** **********, *** given *** ****** ****** share *** *** ********* in *** **** ******, we ***** *** ****** of **** **** **** likely ** **** ****** our *******. **** **** and *** ******** ** a ******* ** ******. Automobiles, *** *******. *** that’s **** **’* **** to ***. **’* **** to ***, ***** *** a ******** ********, *** we’d **** ** *** companies ***** ****** *** issue ** ******* *** security *********. *** **** really *****’* ** ** now. *** ******* ********** is **** * **** marketplace, ** ** ********** companies ****** ‘***’* ****** in **** ***** ******** item ********** ** ***** we **** *** *******.’ And * ***** ***** states ******** **** ****** suit ******. ****’* ********* we **** ***** * bit. ** ***** ** in ********** *** **** other ****** **** ** up *** **** ** becomes *** **** ... ** think **** ***** *** state’s ******** **********, *** product ******** *** *** United ****** ****** ** going ** ****** **** these ********** ******** ************.

**** ** ******* ********, California ** *** **** populous ***** ** *** U.S. **** *****, ** would *** **** ********* sense *** *** ************ to ******* * **********-**** compliant ******* ****. ***** that, *** *******'* ****** that *** ********* ******* sold ** *** *.*. will ***** ** **** the ******* ********* ********** in *** *** ********** law ***** *****.

******, ** ***** ****** many ************* ** **** this ******** ******** ******* the **** *** *********** of *********** ******** **** of ******** ******** ***** be *********.

Compliant ** ***-********* *************

**** ** *** ******* IP ****** ************* *** already *********, *.*., ****, Bosch, *****, ******, *********. However, ******'* ******* ******** ********* shows, **** ** *** smaller ************* *** ***. Three ** *** ****** ones *** ********* ******* Arecont, ******** *** **.

Non-Compliant *********, *******, ********, **, **** **********

***** ************* *** *** not ********* ********* **** us **** **** ** be ** ****** ****.

******** **** **** *** well ** ***** *** to **********:

** **** * ****** of ******* ***** **** either ***** * *** password ** ***** *** the ***** **** ** have * ****** ********. This ** ********* ******** is ********** ** ****** throughout *** *********.

******* ********, ***** **** used *** ******* "*****/*****" combination, ****** ********'* **********:

*********, *** ** ******* and ***** ***** ****** encourage ***** ** ****** the ******* ********* ** our *********, ******* *** other ********* ******* ** a ****** ********. ** a ********** ************, *** new *** ****** *** responsibility ** ***** **** best ******** ** ******* a ****** ******** **** the *** **** ** the ************. ** **** make ** ** **** as ******** *** * user ** ****** * unique ******** ** ******* setup (** **** ** it ** ** ****** a ******** ** *** time **** *** ********), and **** **** ********* security ******* ********* ****** the *********** ******** ** January *, ****.

*******, ******* ******, ***** cameras ** *** **** a *******-****** ******* ******** in *****, **** **** also **** ** ** compliant ** *** ********:

******* ****** ******* ** not ********* ****** **** this ***, ***** **** not **** **** ****** until ****. ********* *** cameras ****** *** **** to *** * ******** on *** ****** *** we ** *** ******* them ** ** **. We ** **** ** comply **** **** *** law ***** ** *** implementation ** **** **** a ******** ****** ** all ** *** ******* generation *******.

** ***** ****** *** companies **** **** ** authorized ** ************ ** become ********* ** ****. However, **** ********* **** only **** *** ****** or **** *** ***, as * **** ** US ******** ******** ***** minimize ***** ****, ****** such *********' ****** ****** *** quite ***.

Firmware ******** ** ****** *********

************, ** ****** ** straightforward *** **** ************* to ****** ********* **** on ******* ******* ***** as * ******** ******* can ******* *** ******* password *** ****** **********. However, ***** **** ** support **********.

The ******** ** ********** - *******

*** ** *** ******* of ******* ********* ** that ** ******* *** number ** ***** *** forget ***** ********* *****, even ** **** '******', they *** ****** *** the ******* ******** (***** many ***** ******) *** get **** **. ** course, **** ************** ********* the **** ** ******** breaches.

*******, **** * ************ customer ******* **********, *********** default ********* ************* ********* support ***** *** **********. One ******** ************* **** taken ** ****** ***** problems ** ** ********* effectively * **** **** that ****** *** ************ to ***** *** ***** password. **** *** *** own *****, *.*.,********* ******** ***** **** cracked * *** ***** ago.

Critics ********

**** ****** ***** ******* *** ***** **'* * good ***** ** ******** weak ** **** ** actually ******. *** *** Cybersecurity *** *** **** has *** *******.

******** ******* ****** ****** ** ****** ************* ** *** **** on *** ********** *** **** *********** *** ** backward—instead ** ******* ************* to *** ********, **** should ** ******* ************* ** remove ********:

****** ** ****** **** ****** these ******** ******** ** a ******* ******* ************* should ** ******** ******** features, *******. *******, * better ****** ***** ** to ** ****. ********** manufacturers ****** ****** ****** and *** *** ***** unused ******* ******** ** they *** *** **** because **** *** ********** potential **********. *** ***** is ******* *** **** could **** ** *********** default ********* *** ******* strong *********.

****** ******** **** **** law *** ***** **** that *** ****** *** reactionary *** ********* *********:

***********, ***** ******* ******** of *** *** ***** that *** ******** *****'* specify ******* ****** **** the ***** "********** ******** feature" *****. **** *** example*** ******* **** ********, ***** ********* ******* litigation:

** *** ********, ** least **** **** *********** ("requires * **** ** generate * *** ***** of ************** ****** ****** is *******") ** ***** clear.

************** **** ** *** Access ************* ********** ** *** punitive ******* *** **** the ****** ** *** punitive ******** ***'* ********* in *** ******** ** the ***:

** ****** **** **** and ** *** ***** attempting ** ********* **** the ******** ******* ******** of.

OEMs ********?

*******, ************** **** *** **** Arnold & ****** ****** there *** ** * loophole*** *****-******* *******:

*** ******** ********* ** this *********** ** ***** in ******* ****.**.**, ********** (*):

(*) “************” ***** *** ****** who ************, ** ********* with ******* ****** ** manufacture ** *** ******’* behalf, ********* ******* **** are **** ** ******* for **** ** **********. For *** ******** ** this ***********, * ******** with ******* ****** ** manufacture ** *** ******’* behalfdoes *** ******* * ************ ** ******** * connected ******, **only ** ******** *** ***** * ********* ******. (******** *****)

******:

**** *** ****** **** the *******'* ****** ***** this ********* ********. **** explained **** ** *** a ******** ***** *** original ********* ************ ** still ** *** **** to ****** ****** *** device ** ***** *******. The *****-******** ******* ***** not **** *********, *** the ******** ********* ************ would.

Poll / ****

Comments (32)

Avatar

Ross Vander Klok

IPVMU Certified | 10/09/18 03:05pm

** ** * ***** that **** *** ** even ****** * ***.  However, ******* * ******** to **** ***** ** long *******.

Undisclosed Manufacturer #1

10/09/18 03:22pm

***** ** ** *** CA **** ** **** to ***** *** *** different ************* *** **** out *****. ** ***'* Camera **** ** ***** to ****** *** ** domes from ******* **** ******* passwords *** **** **** them ** *** *********** market, *** ** ****** going ** ***** ****? Even ** **** ****** or ********* ******* ***'* ****** after ******** ** ********* of ******* *** ******* installed, **** ** ****** to ** ***** ******** those *******?

***** ** ******** (*** manufactured **** ***** *** local ********** *****) *** not ****** ****** ********* years ***, *** ** will ** **** *** them ** ****** **. However, ***** ** *** Arecont *** ***, ** will *** *** **** goes. **** ** **** enough ********* **** *** to ******* **** ** change, ** ** **'* sales ** *** ******* insignificant ******** ** ****** sales ** *** **** other ****? 

** **** *** **** ********, it **** **** ******** to *** * ********* together ** ***** *** test **********. ***** ***** to ** * ******** created **** * ****, like **, ****** ** all *****, ***. **** there ***** ** ** advertising ** **** ******** so *** ******* ***** what ** *****.

Avatar

Sean Nelson

Nelly's Security | In reply to Undisclosed Manufacturer #1 | 10/09/18 05:23pm

***** ** ******** (*** manufactured **** ***** *** local ********** *****) *** not ****** ****** ********* years ***,

******** ***** ** *** with *** ***** ******** program *** ****** ********* like *********.

John Honovich

IPVM | In reply to Sean Nelson | 10/09/18 05:28pm

Image result for you got served gif

Avatar

Corey Vavra

In reply to Undisclosed Manufacturer #1 | 10/10/18 02:05pm

********* *** ******** ** that ** ******* $*********** to ***** *** ******** all **** **********, *********, and **** ******** ************.  This **** ******* * licence *** ******* ** the ***** ** **********, and ***** ** **** start * ***-*********** *** each ************ ** **** can *** ** ** the ******. ;)

**** *** *** ******* puts *** ******** ** the **** ** ******* change **********, ****** **** focusing ** ******* *** constituency **** **** *******.

 

** * ******* ****, yes *** * ***** idea ** **** *** create *** ***** ******** as **** ** *** connect ** *** ****. Just **** **** ** blow **** *** ** data *** ************** ** reset ** **** *** end **** ** ******** tech **** **. (*.* by **** ****** **** is **** ** *** are ********** ** *** unit *** ********* *** hackers ********.)

Avatar

Ralph Azzi

IPVMU Certified | In reply to Corey Vavra | 12/02/19 12:28am

******** ******* ** ******!

Avatar

Ralph Azzi

IPVMU Certified | In reply to Undisclosed Manufacturer #1 | 12/02/19 12:27am

** ** **** ******** and *******, ****** *** still ***** **, *** if *** *** ******, you **** ** *********!

********** - ***’* ***** first *** ***** ******* version !

Stephen Schulz

IPVMU Certified | 10/09/18 03:44pm

**** ** ***** *** Government ***** ** **** out *** **** ***** own ********.

**** **** ****** ** their *** ******** ******** to **** ** ****** getting ******** ** ********.

Undisclosed Integrator #2

10/09/18 04:14pm

********** ***** ** **** their *** ******** *** keep ***** ***** ***. NOT ***** ***** ***** to ** *** *******/****** state (******, ****, & Flakes).

Avatar

Carl Lindgren

10/09/18 04:25pm

**** $$$ ** *** pockets ** ******** ******* companies. *** ****, "**** custodiet ***** ********"?

Matthew Davis

10/09/18 04:32pm

*'* ***** *** ******** California **** ** *** it ****** ** **** another **** ****** * socialists **********. ***** ** very ****** **** ***** does **** ***** *** sense.

Undisclosed #3

10/09/18 05:18pm

** *** *** * Support ******* *** * company **** ************ ** cameras, *** *** ************** *** ********** ********* that **** ** ******** once **** *** ** implemented.

** ***'** **** ******** why ********* **** **** default ********* ** ******* when - **** **** - **** ** *** very ******.... *** ****** is ******** ***** ******:

****** *** ****.

*** ***** *** ***** of ********** ** ***-**-*** use **** ** ********** into*********, *** *** ****** a *********** **** ** support *****.

******** ** **** **** of *** ********, ** 'forgetting *********' *****, ** least ******, ******* ** what *** ** ********* with ********. 

 

Avatar

Joseph Marotta

IPVMU Certified | 10/09/18 01:45pm

******* ** ******-******... "*** a ******* ********, ** to ****."

Undisclosed #5

10/09/18 01:51pm

*** **** ** **...

Avatar

Ross Vander Klok

IPVMU Certified | In reply to Undisclosed #5 | 10/09/18 06:55pm

********** *** **** **** on **** *****.  *******, but *** *** **** time ** **** *****....

Undisclosed Manufacturer #1

10/09/18 08:44pm

********* ******** *****, *** billion+ *** ******* **** will ** ** *** Internet ** *** **** 5-10 ***** **** ***** for ************* ******* ** not ******.  *********' ********* of ************* ** ***** home *******, ******** *** smart **** ******* ** infinitesimal. ***** ** * major ******* ******* *** I'm *** ****** ********** intervention ** *** **** way ** ******* ******** massive **** ** ****** and **** **** * cyber ****** ** * transportation\utility\or *** ******, *** something ***** ** ******.

Avatar

Jonathan de Chateau

10/10/18 10:59am

**** ******** **** ** part ** ****. **'* common *****.

[**** ****: *** ******** rule ** **** ** Netherlands ***,****** ****, *** ******* discussion *****]

John Honovich

IPVM | In reply to Jonathan de Chateau | 10/10/18 11:23am

********, ***** **** ** GDPR ************ ** ** in? **** ** *** first * ***** ** anyone ******** **** ** curious**** ******* ** ************* ****.

Avatar

Jonathan de Chateau

In reply to John Honovich | 10/10/18 11:33am

***'** **** ** ***** by *****/******* ****** ** this.

**** ** ***********.

**** ** ***** * boxes, *** ***** '********* Onvoldoende ***********', ** *******: Example ************ ********. ** this **** **'* ****** that *** ******** *** default ******** (*******************) ** regarded ** ************ ********.

**** ******** ** ***** back ** ******* ****, it *** ******* **** back ****.
** ** *** **** it **** **** ******. GDPR ** ********** **** AVG ** *****.
** **** ********* **** of *** ******** ** this *******:*** ** ****.

 

Avatar

Charles Rollet

In reply to Jonathan de Chateau | 10/10/18 12:03pm

*** **** ****** *****'* mention ********* ********. *******, it **** ******* "**** protection ** ****** *** default" (******* **) ****** **** "*** controller ***** ********* *********** technical *** ************** ******** to ****** *** ** be **** ** *********** that ********** ** ********* in ********** **** **** Regulation." (******* **.)

*** "*********** ********* *** organisational ********" *** ***** actually ******* ** *** GDPR, ***** **** ******* references ** "**********" *** "****************." ***** specifics *** **** ** to *** ********-***** **** protection *********** (****) **** the *** ** *** Netherlands.

** ***** *** **** itself *** ** "******** rule," ******** ***'* ***** to ***** *** **** a ******** *** ** capable ** ************ *** GDPR ** ******* **** default ********* *** *** allowed.

Avatar

Jonathan de Chateau

In reply to Charles Rollet | 10/10/18 12:08pm

***** *** *** ******** Charles. **** ** ****.

*********, **** **** *** completely ******** ****** ***********, but ******* ***** ******* that ****** *********** ** prohibited.

********, **** ******** **** minimalisation, *** * ** not **** * ****** of **** ** ***. In ***** ***** ***** is * *** ** 28 ****, *** **** incidents *** ** ****** longer, *** **** ** deleted **** *** ******** is ********.

 

 

Avatar

Dan Gelinas

IPVM | 10/10/18 07:16pm

*******:

****** ****, **'** ***** some ******* ****** ***** re: ********* ********* *** also *** ******** ******** for *****-******* *******.

Avatar

Dan Gelinas

IPVM | In reply to Dan Gelinas | 10/11/18 12:51am

*** **** ** *** don't **** ** ****** for **, **** *** the ******* **** *** story:

******:

******* *******'* ****** ********* us ** *** ** know **** *** ******** of ********* *** ***-********** was * ********* *** since ** ****'* **** done ***. **** *** say **** ********* ***** run *** ***** ** anything *** ******** ******* has ** *** ********:

**’* **** ** ***. It ***** ** **** dependent ** **** *** circumstances ****. ** *** put *** ********* ** non-compliant ******* *** ** caused * ******* *******, then ** ***** ** a ****** ***** *******. Anything **** * **** to * ***** **********.

******:

**** *** ****** **** the *******'* ****** ***** this ********* ********. **** explained **** ** *** a ******** ***** *** original ********* ************ ** still ** *** **** to ****** ****** *** device ** ***** *******. The *****-******** ******* ***** not **** *********, *** the ******** ********* ************ would.

Undisclosed #5

In reply to Dan Gelinas | 10/11/18 01:04am

******** **** * **** to * ***************.

 ** ***** ***, ********* ASIS **********, ********* *********, whenever ** *******.

Carl Kristoffersen

10/12/18 01:29am

*** ************ **** ** liable ** ** *** decides ** **** *** product ** **********, **** out **'* *********?  
** **** **** ***** law, ** *** ************ does *** **** * physical ******** ** **********, there's *** **** ********** can **.  ** ***** was, **** ****** ***** be ********** ***** *** from *** ** ***** sales.

Undisclosed #3

In reply to Carl Kristoffersen | 10/12/18 01:40am

**** ** ******* *****.

...*** ** ******, ********** of *** ********* ********** goals ** **** ******* from **********, ** *** will ** * **** mine *** ***** **** share *** ******** ****** of ******: other *******.

Avatar

Jon Dillabaugh

Pro Focus LLC | 10/15/18 03:33pm

****'* *** ******** ******* well ** **'* *** to **** *******? *** would ****** **** **?

Avatar

Jonathan de Chateau

In reply to Jon Dillabaugh | 10/15/18 03:54pm

* ***** ***. **** alarm ****** **** ********* have ******** ****** ***** they *** *** *** costumers. **** ***** ** easy *** *** *********** crew *** ** *** safe. ** *** ******** leaves ** ****** ****, a **** ******** ** installations ** ***********.

* ***** ** ***** regulation ** **** **** practise ******** ********.

Undisclosed Distributor #6

12/02/19 02:29am

**** **** **** *** see *** **** ************* put ** ***** ***** of *******, *** *** sale ** **

Undisclosed Manufacturer #8

In reply to Undisclosed Distributor #6 | 12/02/19 11:52am

*** *** ***'* **** for **** ** **********. If ** ** ********* in ******* ***** *** brought **** **********, ** is ***** ********* *** law.

*** ************* **** ** comply ** **** **** to **** ** *** US *** **** ***** brought **** **********.

**** ****** *******'* ** a *** ****, ** you **** ****** ******** development, ** **** ******* old **** ** ****** bidder ***********.

**** **** **** ** make **** **** **** a ******* ******* ******..

** **** *** **** happens *** **/*** *** state **** *********** *** violations.

John Honovich

IPVM | In reply to Undisclosed Distributor #6 | 12/02/19 12:45pm

************* *** ** ***** terms ** *******, *** for **** ** **

********** **** ****** ******* **** the ** ***, ** independent, ***** ** *** world's *** ******* *******. I ***** **** ************* would ****** ********* ******* passwords **** **** ** California.

****, ** #* ****** out, *** *** *** bill ** **********, **'* likely *** ********** ** simply ******* ***'* ******** not *** **** ** CA.

Undisclosed #7

12/01/19 08:54pm

***** ** ***** *****.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Verint Victimized By Ransomware on Apr 18, 2019
Verint, which is best known in the physical security industry for video surveillance but has built a sizeable cybersecurity business as well, was...
Verkada Wins $783,000 Memphis Deal on Apr 29, 2019
The US city, most famous in video surveillance for standardizing on Hikvision, has issued an RFQ for 962 Verkada cameras due Wednesday, May 1,...
San Francisco Face Recognition Ban And Surveillance Regulation Details Examined on May 14, 2019
San Francisco passed the legislation 8-1 today. While the face recognition 'ban' has already received significant attention over the past few...
Amazon Ring Public Subsidy Program Aims To Dominate Residential Security on May 20, 2019
Amazon dominates market after market. Quitely, but increasingly, they are doing so in residential security, through a combination of significant...
First Video Surveillance GDPR Fine In France on Jul 08, 2019
The French government has imposed a sizeable fine on a small business for violating the GDPR after it constantly filmed employees without informing...
Honeywell Speaks On NDAA Ban, New Non-Banned Cameras and Cybersecurity on Aug 06, 2019
For years, Honeywell has depended on Dahua, a company with a poor cybersecurity track record and now banned by the US NDAA, for the development and...
Uniview OEM Directory on Sep 11, 2019
This directory lists 20+ companies that OEM products from Uniview, with a graphic and links to company websites below. It does not cover all...
3 Weeks Later, Honeywell Still Cannot Say Whether They Are Vulnerable To Dahua Wiretapping [Now Admits] on Aug 27, 2019
The Dahua wiretapping vulnerability and Dahua's decision to delay disclosing it until IPVM inquired underscored problems with cybersecurity and...
Mobotix First CNPP CCTV Cybersecurity Certification Examined on Sep 05, 2019
Mobotix recently became the first video surveillance manufacturer to receive the CNPP cybsersecurity certification for its cameras, in which they...
Wyze Massive Data Leak on Dec 26, 2019
Wyze has exposed millions of user's data, as reported by Twelve Security, and confirmed by IPVM, who has spoken with Twelve Security and reviewed...

Most Recent Industry Reports

Every VMS Will Become a VSaaS on Feb 21, 2020
VMS is ending. Soon every VMS will be a VSaaS. Competitive dynamics will be redrawn. What does this mean? VMS Historically...
Video Surveillance 101 Course - Last Chance on Feb 20, 2020
This is the last chance to join IPVM's first Video Surveillance 101 course, designed to help those new to the industry to quickly understand the...
Vulnerability Directory For Access Credentials on Feb 20, 2020
Knowing which access credentials are insecure can be difficult to see, especially because most look and feel the same. Even insecure 125 kHz...
AI/Smart Camera Tutorial on Feb 20, 2020
Cameras with video analytics, sometimes called 'Smart' camera or 'AI' cameras, etc. are one of the most promising growth areas of video...
China Manufacturer Suffers Coronavirus Scare on Feb 20, 2020
Uniview suffered a significant health scare last week after one of its employees reported a fever and initially tested positive for coronavirus....
Cheap Camera Problems at Night on Feb 19, 2020
Cheap cameras generally have problems at night, despite the common perception that integrated IR makes cameras mostly the same, according to new...
Milestone Launches Multiple Cloud Solutions on Feb 18, 2020
Milestone is going to the cloud, becoming one of the last prominent VMSes to do so. Milestone is clearly late but how competitive do these new...
Video Surveillance Architecture 101 on Feb 18, 2020
Video surveillance can be designed and deployed in a number of ways. This 101 examines the most common options and architectures used in...
UK Stands Behind Hikvision But Controversy Continues on Feb 18, 2020
Hikvision is exhibiting at a UK government conference for law enforcement, provoking controversy from the press, politicians, and activists due to...
IronYun AI Analytics Tested on Feb 17, 2020
Taiwan startup IronYun has raised tens of millions for its "mission to be the leading Artificial Intelligence, big data video software as a service...

What IPVM Is

The world's leading authority on video surveillance, with 200,000+ visits monthly.

  • Articles on cameras, video analytics, VMS, and trends
  • Tests showing actual performance and problems
  • Courses in surveillance, access control, etc
  • Camera Calculator for designing systems

Dedicated To Independence

We're dedicated to staying independent and objective. We're the only industry source to refuse any and all advertisements, sponsorship, and consulting from manufacturers. Why?