Locking Down Network Connections

Author: Ethan Ace, Published on May 02, 2012

Cameras and access control panels are gateways for hackers. Locating these devices throughout a building gives attackers multiple points of entry, many without any form of physical or network security. However, physical connections to the network may be secured with RJ45 locks. In this note, we look at these products, differing styles, and what sort of protection they may provide to a security network installation.

Overview

RJ45 locks are available for both patch cables and empty ports, operating on the same principle, but with some differences:

  • Patch cable locks slide over the cable and connector, extending beneath the modular plug's release tab. When engaged, the tab cannot be pushed down to remove the cable, without first disengaging the lock. Some locks completely obscure the entire tab to prevent potential tampering or breakage. Others leave it exposed, but attempting to break it typically leaves most of the tab engaged in the port, so the cable may still not be removed.
  • Locking plugs fit into unused RJ45 ports, whether on a wall plate, patch panel, or switch. When engaged, a small tab extends to lock the plug into place. Plugs are typically low-profile, to deter potential attackers from gripping the plug with tools, such as pliers or vise-grips to remove it.

Multiple manufacturers provide patch cable and port locks, of varying styles, including PanduitBlack BoxAMP, and RJ Lockdown. Pre-terminated patch cables equipped with locking connectors are also available. Both plug and port locks sell for a about $3-5 USB online, typically sold in bags of 10 or 25.

This zoomed image illustrates typical cable locks and locking plugs (Black Box shown), and their individual parts:

Removal Tools

Locks which require proprietary tools are preferred if security is a concern. Some locks use standard allen or Torx bits, or even small flat blade screwdrivers, all of which are easy to come by, and thus provide only a nominal level of security. These may still be of use when security is not the main concern, but accidental removal is still a worry.

Proprietary removal tools are potentially a downside to using these locks. All technicians who may install or service a system must carry a tool with them, or have no way of removing the locks. A tool may be left with someone on site, as well, as a precaution, but this opens up the system to tampering. Over time, however, techs see the tool as another part of their toolbag, and this becomes less of an issue. Replacement tools are inexpensive or free, and normally ship with the locks at no additional charge.

This image shows one type of proprietary lock installation/removal tool, in this case Panduit:

Should You Use This?

Given their low cost, RJ45 locks are a reasonable investment in most applications. Even if security is not a concern, they may be used to prevent accidental disconnection of cameras, servers, and other devices. In installations which share a network with other services, this may be especially useful, as users may simply unplug a critical cable, mistaking it for another device.

A truly determined attacker will find a way to defeat these locks, though they provide a level of deterrence against less sophisticated vandals or accidental removal. If the lock doesn't use proprietary tools, it is simple enough to figure out what is needed to unlock it. Even if it does use proprietary means, breaking, cutting away, or drilling may still remove the lock relatively quickly, though will require more noticeable motions and less concealable tools. If all else fails, those truly seeking to gain access to a given cable may find a way to simply cut it and re-terminate it, which will go undetected on most networks. For these reasons, cable locks and plugs are recommended as only one layer of security to provide a modicum of deterrence and delay.

1 report cite this report:

Network Racks For Surveillance Guide on Mar 21, 2018
In this guide, we look at network rack infrastructure, one of the fundamentals of IP video surveillance. Inside, we cover: What is a rack unit...
Comments : PRO Members only. Login. or Join.

Related Reports

Security Sales Course January 2019 on Jul 31, 2018
The next IPVM Security Sales Course will be held in January 2019. Register now and save $50. This sales course is customized for the needs and...
Door Swing Tutorial on Jul 24, 2018
The direction a door swings might seem minor, but it can greatly impact door hardware selection. There are four basic ways a door can swing, and...
Directory of Video Surveillance Startups on Jul 18, 2018
This directory provides a list of video surveillance startups to help you see and research what companies are new or not yet broadly known entity...
Installing Dome Cameras Indoors Guide on Jul 16, 2018
IPVM is producing the definitive series on installing surveillance cameras. This entry covers one of the most common scenarios - installing dome...
July 2018 IP Networking Course on Jul 12, 2018
Registration is closed. This is the only networking course designed specifically for video surveillance professionals.  Lots of network training...
GDPR For Access Control Guide on Jul 03, 2018
Electronic access control is common in businesses plus organizations are increasingly considering biometrics for access control. With GDPR coming...
Axis Guardian - Cloud VMS And Alarm Monitoring - Released on Jun 19, 2018
Axis has struggled to deliver a cloud-based managed service video platform. Video service providers have utilized AVHS for over a decade, and have...
Axis Releases First New Access Controller In 5 Years (A1601) on Jun 15, 2018
It has been 5 years since Axis 2013 entry in the physical access control market, with the A1001 (IPVM test). Now, Axis has released its second...
Access Control - Time & Attendance, Mustering and Mantraps Guide on Jun 13, 2018
Electronic access offers features that traditional mechanical locks cannot. While these features may not be as fundamental as keeping doors secure,...
Powerline Networking For Video Surveillance Advocated By Comtrend on Jun 08, 2018
Powerline networking, using existing electrical wiring, has been around for many years. Indeed, over the years, some video surveillance providers...

Most Recent Industry Reports

Chinese OEM Avycon Gets ADI Push on Aug 15, 2018
Who is Avycon? An American company? A Korean company? A couple of guys relabelling Chinese products? The latter is the best explanation. While...
Backboxes for Video Surveillance Tutorial on Aug 15, 2018
Backboxes are a necessity in surveillance, whether for managing cable whips, recessing cameras, adding wireless radios. But it can be confusing to...
Genetec Stratocast / Comcast 'Motion Insights' Examined on Aug 15, 2018
Comcast recently announced "SmartOffice Motion Insights", an extension to their Genetec OEMed cloud video service (covered by IPVM here). This...
SimpliSafe Violating California, Florida, and Texas Licensing Laws on Aug 14, 2018
IPVM has verified that DIY security system provider SimpliSafe, founded in 2006 and acquired in June of 2018 at a billion dollar valuation, is...
Ban of Dahua and Hikvision Is Now US Gov Law on Aug 13, 2018
The US President has signed the 2019 NDAA into law, banning the use of Dahua and Hikvision (and their OEMs) for the US government, for US...
Cut Milestone Licensing Costs 80% By Using Hikvision and Dahua NVRs (Tested) on Aug 13, 2018
Enterprise VMS licensing can be quite expensive, with $200 or more per channel common, meaning a 100 camera system can cost $20,000 in VMS...
Nortek Sues SDS, Battle Over Unpaid Bill and Cancelled Lines on Aug 13, 2018
Nortek and SDS legal battle continues. As IPVM reported, SDS sued Nortek alleging bribery and antitrust violation. However, Wave fired back at SDS,...
Uniview Intrusion Analytics and VMD Tested on Aug 13, 2018
IPVM's IP Camera Analytics Shootout featuring Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision created some ill will with a Uniview distributor who...
ADT Employees Protest ADT CEO on Aug 10, 2018
So many ADT employees were so upset with ADT's CEO speech reported on by IPVM, that ADT's CEO was forced to send a mass email to employees to...
Axis / Avigilon Legal Battle Rises on Aug 09, 2018
In what is shaping up to be high-powered, will-not-back-down battle, Axis and Avigilon are squaring off in multiple legal contests. In 2017, IPVM...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact