Mobotix First CNPP CCTV Cybersecurity Certification Examined

By: Charles Rollet, Published on Sep 05, 2019

Mobotix recently became the first video surveillance manufacturer to receive the CNPP cybsersecurity certification for its cameras, in which they originally declared a "guarantee of IT and electronic resistance to cyber-attacks."

mobotix cnpp certificate

*** *** ** **** and *** ** ***** certification ********? **** **** it ******* **? *** what, ** ********, **** this *********? **** ***** with ******* *** ******** several ******, *********:

  • *********** ********
  • *******'* ***** ** "********** to ******* *******"
  • **** **********: ******* ****** Nonprofit
  • *** "*********" *** **********
  • ********* ** **** ******
  • ********** ** **
  • **********: ******* ****** ** Certifications

Certificate ********

******* ******** ***** "********* CNPP" ************ ************ *** different ****** ******, ** shown** *** **** *******:

***** *** *** *** cameras' **** ******:

***** *** *** ***** certificates:

******* **** **** *********** applies ** *** ******* cameras ****** *** ******** **** ****, ***** ** ******* more *****.

************

**** ** ************** ************* ************ *** is************ * ********* *********** ***. **** ******** ************ for * **** ***** of **********:

***** **** ** *******, is *** ****** **** the ****** ********** ******, for ******* ****-**************** ** ****** ****************, ******'* ******** ************** agency. *** ******* **** Certified ************ **** *** first-ever *** ***** ************ cameras,** *********:

How *** ************* *** ********

*** ******* *******' "********** to ******* *******" *** given * "***** *" score, ***** ** ****'* '** *****–*** **-**' ******* criteria:

***** *** * ***** of * ******, **** 0 ***** *** ***** and * *** ****. Level * ** *** minimum ** ****. ***** 2 ***** ** ***** one "*** ********" ************* was **********:

******* ********* *** *************** remaining ** ****:

  • Camera *** *********: no 2-factor authentication; another level of complexity required for the password; users not informed of firmware updates.
  • MxManagement ******: "limit connection trials to 20 attempts max per hour"
  • MxManagement ****** *** *** *********: "currently, along with the software updates we provide 128 bits MD5 checksums. This is not following the ANSSI recommendations asking for at least 200 bits. SHA-256 or 512 should be used."

******* **** **** **** working ** ****** *****:

** *** ********* ******* on ***** *******. **** the ******* **** **** completed, ** **** ** re-certify ** ** ****** to ******* ***** * status.

*** ****** ******* ******* ************* **** ******** * mix ** ************* ****** analysis *** *********** *******.

Not '*********' *** '**********'

*******, ** *** ******** press ******* ******* ******* these **** ************ ******* a "*********":

**** ***** ******* ***** this ***** * "*********" is ********* ****** ****** ***** ******** **** Mobotix ******** ** **** never ** ****** ** will ****** ********* ** such * ********.

***** ** ******* **** out, ******* ************ **** "we ***'* ******** ********* there **** ** ** penetration ****" *** ********* there ***** ** ** monetary ************ ** **** of * ****. **** then******* *** ***** ********* "**********":

MOVE ******** **** ****, ******* **** **** *** ** *** ** ****

*******'* ***** ******* **** CNPP ***** *** *** cameras ****** "*** ** its ******* ***** ************ camera *******" ***** "*** complete * ****** ***** uses * ****** ********, without *** *********** ** the **** *********."

***** **** ***** *****,*******'* **** ****** ***'* **** ********* and **** ********* ******** so ** *** ******* by *** **** *************. However, **** *** *** disclosed ** *******'* ***** release. ** ********, ******* said:

** ******* ** *********** on *** *** **** of ******* ********* ** they ********* *** **** DNA ** *******.** *** end ** ** [******** year] **** ** *** planning ** *** *** MOVE ****** ******* *** same **** ************* *******.

Compared ** **

** ******** ************* ************* for **-********* ******** ** 2016 ******* ***** **** ******. ** **********,****** ********* **** ******** this ****, ******* *** its******** ****** ******** ***, *** *** ************ ***, ************ *** ***** ***** OEMed ***** ******.

** ******** ** *******, those ********* *** *** claim *** **** ** "guarantee" ** ***** *******. Additionally, *** ***** *** Genetec *** *** *** clearly ****** **** *** beginning, ** ******** ** Mobotix ******* *** *** MOVE ****** *** *** disclosing ****.

**** *************, **** *** limited ************* ** **** and **'* ********, **** seem ******* ** **** there ** * *** of ******* ******** *** penetration *******.

*******, ** ***** ** North *******, *** ** brand ** **** ****** known ***** **** ** not.

**********

******* ***** ************* ********* to ** ** *****. Companies *** *** ***** eager ** **** ********** claims, ********* **'** ******** recently **** **** (************ ****-***** ***** ***************** ******** *** *** GDPR *********, ** ******** Can **).

******* *************, ** ***** when ** ******** **** detailed ******* **********, *** be **********. ****** *** lack ** ******** ******* of **** ******, ** in *******'* ****, ** a *******.

**** *******, ******* *** bigger ********** **** *************, as *** ******* ********* to ******* ***** *** exit ** *** ******* who **** ******** ********* needed *******. ******* **** a *** ******** **** be ******** **** *** that **** ** *** to *** **** ****** Mobotix *** ** *** next ******.

Comments (2)

Undisclosed End User #1

09/06/19 10:02pm

"******* **** * *** platform **** ** ******** soon *** **** **** be *** ** *** what ****** ******* *** in *** **** ******."

* ***** ** - they **** * ****** support ****** ** *** US. *** ******* ********* gloss **** ****** ******* and ****'* ********* ****** sometimes ** ********** *** case ***** **** *** user. ** ***** **** they're ****** ** * rush ** ***** * ticket..

********** * **** **** even ** **** ****** the ******** (***?) **'** do **** ** **** if **** ***'* **** a ****** ******* ****.

Undisclosed Integrator #2

09/09/19 06:24am

** *********** ******* ** as ******* ******* ********.

***** *********** ****** ******* cyber ******** ***** ******** applied ** **** **-** year *** * ****** cameras ***** ** *******. Hard ** **** * Mfg ********** ****** *******. Microsoft *****’*.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Camera Field of View (FoV) Guide on Nov 13, 2019
Field of View (FoV) and Angle of View (AoV), are deceptively complex. At their most basic, they simply describe what the camera can "see" and seem...
Wireless / WiFi Access Lock Guide on Nov 12, 2019
For some access openings, running wires can add thousands in cost, and wireless alternatives that avoid it becomes appealing. But using wireless...
Biggest Low Light Problems 2019 on Nov 08, 2019
Over 150 integrators responded to our survey question: "What are the biggest problems you face getting good low-light images?" Inside, we share...
IP Camera Mount Shootout - Axis, Bosch, Dahua, Hanwha, Hikvision, Vivotek on Nov 04, 2019
Which manufacturers offer the best or worst mounts? We bought and tested ~50 IP camera mounts and related components from Axis, Bosch, Dahua,...
Tailgating: Access Control Tutorial on Oct 31, 2019
Nearly all access control systems are vulnerable to an easy exploit called 'tailgating'. Indeed, a friendly gesture in holding doors for others...
France Declares School Facial Recognition Illegal Due to GDPR on Oct 31, 2019
France is the latest European country to effectively prohibit facial recognition as a school access control solution, even with the consent of...
Milestone XProtect 2019 R3 Tested on Oct 30, 2019
Milestone has had problems over the last few years releasing significant new software. Now, in XProtect 2019 R3, Milestone is touting "one search...
Lock Status Monitoring Tutorial on Oct 28, 2019
Just because access doors are closed does not mean they are locked. Unless access systems are using lock status monitoring, the doors and areas...
Covert Elevator Face Recognition on Oct 24, 2019
Covert elevator facial recognition has the potential to solve the cost and complexity of elevator surveillance while engendering immense privacy...
Access Control Door Controllers Guide on Oct 22, 2019
Door controllers are at the center of physical access control systems connecting software, readers, and locks. Despite being buried inside...

Most Recent Industry Reports

Hidden Camera Detectors Tested on Nov 18, 2019
Hidden cameras are a growing problem as cameras become smaller, cheaper and easier to access. However, some companies claim to be able to detect...
Wyze Fires Back at JCI - Your Patents Are Invalid, Pay All Of Our Costs on Nov 18, 2019
Goliath JCI targeted startup Wyze this summer alleging the fast-growing consumer startup was violating a slew of JCI's patents. Now, Wyze has...
ADT Stock Surges - "Leading The Commercial Space" on Nov 15, 2019
Don't call it comeback... but maybe call it a commercial provider. ADT, whose stock dropped by as much as 2/3rds since IPOing in 2018, has now...
Gatekeeper Security Company Profile - Detecting Faces Inside Vehicles on Nov 14, 2019
Border security is a common discussion in mainstream US news and politics, as is the use of banned Chinese equipment by US Government agencies....
Hikvision CEO And Vice-Chair Under PRC Government Investigation on Nov 14, 2019
In a surprising and globally covered move, Hikvision CEO Hu Yangzhong and Vice-Chairman Gong Hongjia are being investigated by China's securities...
Camera Field of View (FoV) Guide on Nov 13, 2019
Field of View (FoV) and Angle of View (AoV), are deceptively complex. At their most basic, they simply describe what the camera can "see" and seem...
UK Big Brother Watch: Hikvision Is 'Morally Bankrupt' on Nov 13, 2019
UK civil liberties advocate Big Brother Watch has condemned Hikvision as being 'morally bankrupt' following IPVM exposing Hikvision marketing...
Color Low Light Mega Camera Shootout - Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision, Panasonic, Speco, Sony, Vivotek on Nov 12, 2019
This is the biggest color low light shootout ever, testing 20+ super low light models from 10 manufacturers: Increasingly, each manufacturer...
Wireless / WiFi Access Lock Guide on Nov 12, 2019
For some access openings, running wires can add thousands in cost, and wireless alternatives that avoid it becomes appealing. But using wireless...

What IPVM Is

The world's leading authority on video surveillance, with 200,000+ visits monthly.

  • Articles on cameras, video analytics, VMS, and trends
  • Tests showing actual performance and problems
  • Courses in surveillance, access control, etc
  • Camera Calculator for designing systems

Dedicated To Independence

We're dedicated to staying independent and objective. We're the only industry source to refuse any and all advertisements, sponsorship, and consulting from manufacturers. Why?