Mobotix First CNPP CCTV Cybersecurity Certification Examined

By Charles Rollet, Published on Sep 05, 2019

Mobotix recently became the first video surveillance manufacturer to receive the CNPP cybsersecurity certification for its cameras, in which they originally declared a "guarantee of IT and electronic resistance to cyber-attacks."

mobotix cnpp certificate

*** *** ** **** and *** ** ***** certification ********? **** **** it ******* **? *** what, ** ********, **** this *********? **** ***** with ******* *** ******** several ******, *********:

  • *********** ********
  • *******'* ***** ** "********** to ******* *******"
  • **** **********: ******* ****** Nonprofit
  • *** "*********" *** **********
  • ********* ** **** ******
  • ********** ** **
  • **********: ******* ****** ** Certifications

Certificate ********

******* ******** ***** "********* CNPP" ************ ************ *** different ****** ******, ** shown** *** **** *******:

***** *** *** *** cameras' **** ******:

***** *** *** ***** certificates:

******* **** **** *********** applies ** *** ******* cameras ****** *** ******** **** ****, ***** ** ******* more *****.

************

**** ** ************** ************* ************ *** is************ * ********* *********** ***. **** ******** ************ for * **** ***** of **********:

***** **** ** *******, is *** ****** **** the ****** ********** ******, for ******* ****-**************** ** ****** ****************, ******'* ******** ************** agency. *** ******* **** Certified ************ **** *** first-ever *** ***** ************ cameras,** *********:

How *** ************* *** ********

*** ******* *******' "********** to ******* *******" *** given * "***** *" score, ***** ** ****'* '** *****–*** **-**' ******* criteria:

***** *** * ***** of * ******, **** 0 ***** *** ***** and * *** ****. Level * ** *** minimum ** ****. ***** 2 ***** ** ***** one "*** ********" ************* was **********:

******* ********* *** *************** remaining ** ****:

  • Camera *** *********: no 2-factor authentication; another level of complexity required for the password; users not informed of firmware updates.
  • MxManagement ******: "limit connection trials to 20 attempts max per hour"
  • MxManagement ****** *** *** *********: "currently, along with the software updates we provide 128 bits MD5 checksums. This is not following the ANSSI recommendations asking for at least 200 bits. SHA-256 or 512 should be used."

******* **** **** **** working ** ****** *****:

** *** ********* ******* on ***** *******. **** the ******* **** **** completed, ** **** ** re-certify ** ** ****** to ******* ***** * status.

*** ****** ******* ******* ************* **** ******** * mix ** ************* ****** analysis *** *********** *******.

Not '*********' *** '**********'

*******, ** *** ******** press ******* ******* ******* these **** ************ ******* a "*********":

**** ***** ******* ***** this ***** * "*********" is ********* ****** ****** ***** ******** **** Mobotix ******** ** **** never ** ****** ** will ****** ********* ** such * ********.

***** ** ******* **** out, ******* ************ **** "we ***'* ******** ********* there **** ** ** penetration ****" *** ********* there ***** ** ** monetary ************ ** **** of * ****. **** then******* *** ***** ********* "**********":

MOVE ******** **** ****, ******* **** **** *** ** *** ** ****

*******'* ***** ******* **** CNPP ***** *** *** cameras ****** "*** ** its ******* ***** ************ camera *******" ***** "*** complete * ****** ***** uses * ****** ********, without *** *********** ** the **** *********."

***** **** ***** *****,*******'* **** ****** ***'* **** ********* and **** ********* ******** so ** *** ******* by *** **** *************. However, **** *** *** disclosed ** *******'* ***** release. ** ********, ******* said:

** ******* ** *********** on *** *** **** of ******* ********* ** they ********* *** **** DNA ** *******.** *** end ** ** [******** year] **** ** *** planning ** *** *** MOVE ****** ******* *** same **** ************* *******.

Compared ** **

** ******** ************* ************* for **-********* ******** ** 2016 ******* ***** **** ******. ** **********,****** ********* **** ******** this ****, ******* *** its******** ****** ******** ***, *** *** ************ ***, ************ *** ***** ***** OEMed ***** ******.

** ******** ** *******, those ********* *** *** claim *** **** ** "guarantee" ** ***** *******. Additionally, *** ***** *** Genetec *** *** *** clearly ****** **** *** beginning, ** ******** ** Mobotix ******* *** *** MOVE ****** *** *** disclosing ****.

**** *************, **** *** limited ************* ** **** and **'* ********, **** seem ******* ** **** there ** * *** of ******* ******** *** penetration *******.

*******, ** ***** ** North *******, *** ** brand ** **** ****** known ***** **** ** not.

**********

******* ***** ************* ********* to ** ** *****. Companies *** *** ***** eager ** **** ********** claims, ********* **'** ******** recently **** **** (************ ****-***** ***** ***************** ******** *** *** GDPR *********, ** ******** Can **).

******* *************, ** ***** when ** ******** **** detailed ******* **********, *** be **********. ****** *** lack ** ******** ******* of **** ******, ** in *******'* ****, ** a *******.

**** *******, ******* *** bigger ********** **** *************, as *** ******* ********* to ******* ***** *** exit ** *** ******* who **** ******** ********* needed *******. ******* **** a *** ******** **** be ******** **** *** that **** ** *** to *** **** ****** Mobotix *** ** *** next ******.

Comments (2)

Undisclosed End User #1

09/06/19 10:02pm

"******* **** * *** platform **** ** ******** soon *** **** **** be *** ** *** what ****** ******* *** in *** **** ******."

* ***** ** - they **** * ****** support ****** ** *** US. *** ******* ********* gloss **** ****** ******* and ****'* ********* ****** sometimes ** ********** *** case ***** **** *** user. ** ***** **** they're ****** ** * rush ** ***** * ticket..

********** * **** **** even ** **** ****** the ******** (***?) **'** do **** ** **** if **** ***'* **** a ****** ******* ****.

Undisclosed Integrator #2

09/09/19 06:24am

** *********** ******* ** as ******* ******* ********.

***** *********** ****** ******* cyber ******** ***** ******** applied ** **** **-** year *** * ****** cameras ***** ** *******. Hard ** **** * Mfg ********** ****** *******. Microsoft *****’*.

Read this IPVM report for free.

This article is part of IPVM's 6,587 reports, 888 tests and is only available to members. To get a one-time preview of our work, enter your work email to access the full article.

Already a member? Login here | Join now

Related Reports

Clinton Public View Monitor (PVM) Mask Detection Tested on Jul 09, 2020
Face mask detection, or more specifically not wearing one, is expanding...
Mobotix Thermal Detection Camera Tested on Jun 09, 2020
For years Mobotix has struggled but now sales are surging driven by Mobotix's...
Hikvision Illicitly Uses Back To The Future In Marketing on Jul 03, 2020
NBCUniversal told IPVM that Hikvision UK's ongoing coronavirus marketing...
Milestone XProtect on AWS Tested on Sep 21, 2020
Milestone finally launched multiple cloud solutions in 2020, taking a...
Avigilon / Motorola VS Virtual ISC West on Sep 29, 2020
ISC West has historically been so dominant that no player would think of...
Access Control and Video Integration Statistics 2020 on Oct 08, 2020
Video Surveillance and Access Control are two of the most common security...
Avigilon ACC Cloud Tested on Jul 08, 2020
Avigilon merged Blue and ACC, adding VSaaS features to its on-premise VMS,...
Huawei Releases a 'Fever' Smartphone on Jun 16, 2020
Fever cameras, fever tablets, fever helmets, fever sunglasses, fever guns,...
Best Manufacturer Technical Support 2020 on Oct 16, 2020
5 manufacturers stood out as providing the best technical support to ~200...
Clorox Announces, Then Pulls, Fever Camera on Oct 15, 2020
For almost one week, Clorox was marketing fever cameras. The booming...
Uniview Deep Learning Camera Tested on Jul 14, 2020
Uniview's intrusion analytics have performed poorly in our shootouts. Now,...
Colombia's President Promotes Bad Hikvision Fever Camera Setup on Jun 17, 2020
Colombia's President Iván Duque has promoted a haphazard Hikvision fever...
Multilaser / Giga Security Brazil Company Profile on Oct 05, 2020
As part of our expanded Latin America coverage, IPVM is profiling regional...
Favorite Access Control Manufacturers 2020 on Sep 28, 2020
200+ Integrators told IPVM "What is your favorite access control management...
Faulty Hikvision Fever Cam Setup at Mexico City Basilica and Cathedral on Oct 14, 2020
Donated Hikvision fever cameras (claiming screening of 1,800 people/min. with...

Recent Reports

Deceptive Meridian Temperature Tablets Endanger Public Safety on Oct 21, 2020
IPVM's testing of and investigation into Meridian Kiosk's temperature...
Honeywell 30 Series and Vivotek NVR Test on Oct 21, 2020
The NDAA ban has driven many users to look for low-cost NVRs not made by...
Ubiquiti Access Control Tested on Oct 21, 2020
Ubiquiti has become one of the most widely used wireless and switch providers...
Mexico Video Surveillance Market Overview 2020 on Oct 20, 2020
Despite being neighbors, there are key differences between the U.S. and...
Dahua Revenue Grows But Profits Down, Cause Unclear on Oct 20, 2020
While Dahua's overall revenue was up more than 12% in Q3 2020, a significant...
Illegal Hikvision Fever Screening Touted In Australia, Government Investigating, Temperature References Deleted on Oct 20, 2020
The Australian government told IPVM that they are investigating a Hikvision...
Panasonic Presents i-PRO Cameras and Video Analytics on Oct 19, 2020
Panasonic i-PRO presented its X-Series cameras and AI video analytics at the...
Augmented Reality (AR) Cameras From Hikvision and Dahua Examined on Oct 19, 2020
Hikvision, Dahua, and other China companies are marketing augmented reality...
18 TB Video Surveillance Drives (WD and Seagate) on Oct 19, 2020
Both Seagate and Western Digital recently announced 18TB hard drives...
Watrix Gait Recognition Profile on Oct 16, 2020
Watrix is the world's only gait recognition surveillance provider IPVM has...
Intel Presents Edge-to-Cloud Ecosystem for Video Analytics on Oct 16, 2020
Intel presented its processors and software toolkit for computer vision at...
Best Manufacturer Technical Support 2020 on Oct 16, 2020
5 manufacturers stood out as providing the best technical support to ~200...
Microsoft Azure Presents Live Video Analytics on Oct 15, 2020
Microsoft Azure presented its Live Video Analytics offering at the September...
Worst Manufacturer Technical Support 2020 on Oct 15, 2020
4 manufacturers stood out as providing the worst technical support to ~200...