New ONVIF Profile Q Aims To Change Discovery and Default Passwords

Author: John Honovich, Published on Jan 13, 2015

ONVIF is gearing up to release a new profile, called Q.

They market it as providing "quick configuration and installation, providing innate discoverability and reliable device monitoring and event management capabilities."

However,

  • How is Profile Q different than the current Profile S?
  • What are the big changes / additions in Profile Q?
  • How will requirements in discovery and default passwords impact manufacturers and systems?

Inside, we answer these questions based on a discussion with the engineers contributing to this upcoming Profile.

***** ** ******* ** ** ******* * *** *******, ****** Q.

**** ****** ** ***********"***** ************* *** ************, ********* ****** *************** *** ******** ****** monitoring *** ***** ********** ************."

*******,

  • *** ** ******* * ********* **** *** ******* ******* *?
  • **** *** *** *** ******* / ********* ** ******* *?
  • *** **** ************ ** ********* *** ******* ********* ****** ************* and *******?

******, ** ****** ***** ********* ***** ** * ********** **** the ********* ************ ** **** ******** *******.

[***************]

Profile * ** ******* * *** *

******* * ** *** *** *********** ** ******* * (*********) and * (*********). *** ***** ************* **** ******* * *** we ***** ****** **** ***** ****** **** ******** * ** also ******* *.

* ** ******** ******* ** *** *********, ************ *** **********. It **** *** ******* *********, ****** *************, ****** *********, ***, i/o, ***. *** ** **** ******* ** ******* *. ** that ***, ******* * ** ****** ******* ** ** ** enhancement ** ******* *.

*** ***** *** **** ** **** *** ****** ****, ********** * ******* ********* *.* ************* ** ********* ****. ** **** ******* *** *** ******** *****.

Requires ********

*****, ** ****** ************* ****** **** * **** ******* ** ways ** ** **********, **** ********* ********* ********* *** **** some **** *** * ***** ** *******. ******* ** ****, it *** ** ********* ** ********* **** ********* ******* ***, at *****, ******** *** *** ** ********* / **** *** each ************ **** ***** ***** ********** ** ******* *******.

******* * **** *** ******* ********** ******* ** ******* **********, aka**** ************* **********, ***** ** **** ***** *** ********* * ***.*.*.* ******* if * ******* ******* *** *** ** ******** ** * DHCP ******.

** **** ************* ***** ******* *, *** *** ******* *** the **** ********* ********, ** ****** ******** *** ******** *** probability ** ******* *** ** ******* / ******* ** * local *******. *******, ** ************* ********* *** * ********* ********, it ***** ******* **** ** ****** ** ** ****** **** Profile *.

Requires ** ******* ********

**** ** ******* ***** **** ****-***** ******* ** *********, *.*., admin/admin ** *****/****, ***. (*** ***** ****** ******* ******** *********).

******* * ******** *********** ****. **** ******* *, * ****** will *** **** *** ******* ******** *** **** *** ***** connects, ** * ******* *****, *** *** **** ******** ** setup * ********. *** ***** ******** **** ****, **** ** how **** ** ** (***: ** ****** ********* - ****, *****, *******).

***** **** ************* ***** **** * ******* ********, **** ***** require **** ** ****** ***** *********** ******** ********.

***** ** **** ****** ***** ****** *********, ***** ***** **** this **** ******** ******** ***** ** ** ********* **** ******** in *** ******* ******** *** ******* **** ******.

Other ******* * ******* ************

*** ***** *** **** *** ******** ********* *******. ***** *** a *** ***** ************ / ******** ***** ******:

  • **** ***** ********** ************ **** ** ********* *****, **** ** last ***** *** **** ****** *** **** **** ***************.
  • ********** *********** ** **** *************** ***** *** ****** ************ ******.
  • **** *** ******** *** **** ***, ******* * **** ******* restricts **** **** ****** *** **** ******* ** ****** ******** / ********.

Impact ** ***** ******* *

*** *** *** ******** ** ******* * ***** ******* * notable **** ****** ** ***** ** *******. *******, **** **** require ************* ****** **** ******* * ***, ** ***** **, changing **** ** ***** ***** **********.

** ****** ******* * ** ** ******** ****** *** *** of **** *** ** **** * *** ***** *** ******** to ******.

 

Comments (15)

**** ******* *, * ****** **** *** **** *** ******* password *** **** *** ***** ********, ** * ******* *****, you *** **** ******** ** ***** * ********.

****.*'** **** **** ** ******** ** ****.

** ****,

**** * ******** *** * *** *****:

********: "********** *********** ** **** *************** ***** *** ****** ************ issues." - *** *** ******* ***** *********** ** ****** ** have *** **, ** *********** ** *** ****-****** (**** ** not ** ******* ** **** **************), ** ********* ****?

*****: **** ***** *****-******* **** *** ***** * ***** ********** period, *** ******* ** **** (*) ***** ****-**** ****** ** releases ******/****** *** (*) ***** ******** ** ****** ********* *********** by *** ******* ****** ********* ******, ***** ** * **** probability **** ***** **** ** ******* **** ******** ******* * conformance ** *** *** ** **** ******.

*****: *****-***** ********* ** **** ** ********** **** ** ******* S, *** ******* * ******** ** ** ** ****** ** by ******* *** ***** **-****** "**** ******* *****". ** ********** with ****/********, ***** ****** *** ******** ******** *** *** ******* and ***** ** ** **** *** ****** ** **********

*****: *** ******* ******** **** ************ **** **** ** *** VMS - **** ** *** **** *** *********** ******* (** all ******** ** ******* * ****** ** ******* **-*****). ****** that *** *** ************ *** **** *** ***** ******* ******, but ***** **************/*********.

* **** * ********, ** ***** ************ ******? ** ****, for *******, ******* *** ********? * **** **** * *** but ** **** **** ** ** **** **** ** ***** already ** ***** *** *******. ** ***** ** **** **** you ****** ** * **** ***** ***** *** ******* ********* manufacturers ******* *********** ** **** **** *** ******* ******* *** configuration, ******** *******, ******* ** ****, ***. ** **** **** profile **** * *** *******.

** ***** ************ ******?

*** ***** ****** ** ***.

**** ******: ** ** ****** ** * ***** ***** ** active ******* (***** ** ********* - ** *** **** **** most ** ***** *****, *** **** **** *** **** *****), and ********* ******* ** *** **** *** ************ ******* (***** 50 *********). ******* *** ** ***** ** ***** ****, ** rules ** ********** *** ** ************** *********.

********* ******** *** *** "***.***.***.***" ********** *****. **** ********* **** *****. *** "***.***.***.***" ** ****** "****-*****" *** ** the ****-******** ******* *** *** **** ** **** ****** ** availablea *** *** ***'* **** * ****** ******.

******** ** * *** ** ******** ***/** ******** **** ******* you******, ******* **'* ****, ******, ** ****-*****, ***** ********* *** (mDNS). *******, ****** ********, ****-***** ********* ****, ** ** *******, not ******, ******* **** **** *** ****** * ****** *** an ******* ** *** ***** ******* ** *** ******'* **** out **** ** ***.

**** ** ******* ******** ** ******* ** *******? - ***** yes.

*** ****** *** ******* ** ** ******* **** ********* *********? - ***** **.

*** ***** ****** *** ***** **-********* ** ******** ***** ******* devices, *** ** **** ******* ***** ** ******* ******.

** **** ***** *********** - ******** ** **** *********, ******** their ***** ********* ***** ** ** ********* ******* ** ********.

* ** **** *** **** **** ******* **** *** ******** zeroconf ************* **** **** ******.

******** **, ** *** ****, ******* ******* ************* *** ********* using *********-***.

****-***** ********** ******** ******** ********* ** ****** * ******. ******* has ********* ** ***** ******* **. * ***** *** **** most ******'* ***** ******** ** ** *** **** ***** ******* machines ******'* ******* ** *** *******, **** ******* ***** ******** and *** ** ******* ******** **** ***.***. * **** * did, * *** *** **** **** *** *** ***** ***** years *****. ****-***** ** ***** ******* ** ** **** ** Zeroconf, ******* ****'** ***** **** ********. ****, *** ****-***** ********* are ******* ****** ***** ** **** ********* ****** ** ***, so * ***** ****'* *** **** *** ***** ********.

* *** ***** ****, * *********** ******** ** *******'* ****** control ******. * ***** ** **** ********** ** *** ***** devices *********** **. **** **** ******* ****, * ****** ****** not ** ******** ******** *******.

*********** *** **** *** **. ***** ***** ***** ** ***** now, ***** **** ***... ***** **********.

*** *** ** ****** - ***** ** ***** **-********* ***** is ** *** ** ***** *** **** ***** ***** ********* but **** *** *******. *** ** ** *** ***** ******** but ** ***** ******* ***, ***** ** ****** (********* ***-*****). Which ******* *** ***** ******* * ***** - ******* **** from *** *****.

* **** ** *** ****** *** * *** ******* **** different ******* - ** ******** * **** ***** **** *** mdns *******.

*'* ********* **** *****'* ** ******* ** *** ******* ***** Profile *'* ******* *** ********* ***** ******** **** ****** ************* via ***********/*** ************** ******* ******/******.

*** ****** *** **** ********? * *** ***** *** ********** that ****** ***** *** * *** **** ** ******* *.

**** ******* *** ** ******** *** **** *******. ***********, ******* q ** ******** ** ****** ***** * ******* ***** ***** out-of-the-shelf ***** **. ** ** ****** ******* ***, ******* * dictate ***** ********/****** ****.

** *** **** *** - ****** **** *** ******* *, that ** ******** ** ****** ****** **************.

***** ********:

******* * ******** *** ************ ** ****** *** ** *** device ******** **. ** ** ***** ** * *********** ***********. We ****** *** ****** ******** **** **** ** **** ** also ******** ******* * ********** ** ***** *** ***** ******* elements *** *** ******** ******** ******** **** *** ********* *****.

**, **** ***** **** *****. ****** *** *** ****.

******** ***** ********:

*: **** ** ******* ******** ** ******* ** *******?

*: **** ** ***. ******* ** ******* *.*.*. **, ***.

*: *** ****** *** ******* ** ** ******* **** ********* hostnames? - ***** **.

*: ********** ** *** * ****** ** *******, ******** -> IP ******* ** ********* ** ** ********* ******* ** *** records.

**** *********** **** ******* **** *** ******** *** ** *****-****** (e.g. *****-******).

*: ***** ******* *** ***** **-********* ** ******** ***** ******* devices, *** ** **** ******* ***** ** ******* ******. *** does ******* * ****?

***** ******* ********* * **-********* ***** ******* **** *********. ******* respond **** ***** ******.

**** * **-********* ****** ***** *** ******* (****, **** **********, etc.), ** ********** * **-********* ***** **** *********. ******* *** listen *** ***** *******, *** *********** **** * ***** ** the ******** ****** ** ********* ** **’* ** ********.

*: ** **** ** ***** *********** - ******** ** **** linklocal, ******** ***** ***** ********* ***** ** ** ********* ******* of ********. ***** *** **********?

*: ***************** *** **** ********* *** **** ***************, ******** *********** IPv4 ********* ** **** * ****** ** *****************. *** ******** spec ******* *** ***************** ** ** ******* ** **** ********* (from ******* *: “… **** **** ***** ******* (******* ** ZeroConfiguration **********) …”).

*: ** ******* **** *** ******** ******** ************* **** **** inside?

***************** ******** *** ******* ** ********* ***. **** ********* **** not. ******* * ******* *** ******.

*** ** **** ** *** **** *** **** *********!

***** *** * *** ******** *************. * *** *** ****** that ** ******** ********* ***** **** ********** **** **** * such ****** ********.

***, ** *** *** ************ ************ *** *** *** ***********: may *** *** *** ***** ** *** **** **** ***** of ********* ******** ******* ** ******* *? *** ** ****/**** for ***? ** ***** *** *** *** ****** **** ******* at ***?

***** ********:

************* *** **** * **** ***** ******* *, * ** C ************** ******* *** **** ******* * * **** *********** addition ** ***** *******'* ************. ** ***** ***** **** *** very **** ** ********** *** ******** ** ********* ********* *******.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Winter 2018 Camera Course on Jan 18, 2018
Learn video surveillance and get certified. Register now. Save $50 on the course, ending this Thursday the 18th, plus get access to 2 class times...
The 2018 Surveillance Industry Guide on Jan 16, 2018
The 300 page, 2018 Video Surveillance Industry Guide, covering the key events and the future of the video surveillance market, is now available,...
"First Of Its Kind" Stove Knob Alarm Sensor (2GIG) on Jan 15, 2018
At CES 2018, 2Gig/Nortek announced the Stove & Grill Guard, a "first of its kind" sensor in the security industry, allowing users to be...
Hikvision NA Biggest Sale of 2017 (Twice) on Dec 28, 2017
Hikvision North America has been relatively disciplined the past 5 months, reducing the number of sales and the breadth of what is on sale. No...
NVRs - Embedded vs Separate PoE Switch (Statistics) on Dec 21, 2017
Many NVRs now offer PoE switches embedded, allowing IP cameras to be connected directly to the recorder. On the plus side, these units can...
2018 Top Sales Interest For Integrators on Dec 20, 2017
130+ integrators answered: This is a key question, especially for manufacturers, as it impacts what areas to focus more on and what...
Lock Status Monitoring Tutorial on Dec 18, 2017
Just because your doors look secure does not mean they are. Unless access systems are using lock status monitoring, the doors and areas they...
Testing DMP XTLPlus / Virtual Keypad Vs Alarm.com & Honeywell on Dec 13, 2017
DMP has a strong presence in commercial intrusion alarms, but not in residential. However, the company's XTLPLus wireless combo panel and Virtual...
Imperial Capital Security Investor Conference Review on Dec 08, 2017
Investment bank Imperial Capital holds an annual Security Investor Conference where 60+ companies present, including this year: IPVM bought a...
'Catastrophic Problem' For Videofied App on Dec 06, 2017
Less than 2 months after closing their DIY division DragonFly, Videofied has been hit with a problem the company calls 'catastrophic'. Now the...

Most Recent Industry Reports

Chinese Government Hikvision Surveillance System On US Government Network on Jan 18, 2018
Hikvision, the Chinese government-owned manufacturer, has publicly claimed that their products are running on a US government network. Moreover,...
Camera Course - Last Day - Save $50 on Jan 18, 2018
Today is the last day to save $50 - register now. Learn video surveillance and get certified. Save $50 on the course, ending this Thursday the...
VSaaS Usage Statistics 2018 on Jan 18, 2018
VSaaS has been a 'next big thing' for more than a decade. The prospect of managing, storing and streaming video from the cloud rather than...
Vivint Streety Video Strengthens Door Knocking on Jan 17, 2018
Vivint is famous (or infamous depending on your perspective) for mastering large scale door to door selling. The company has skyrocketed from a...
Axis: "It’s A Question Of Trust And Who You Want To Be Associated With" on Jan 17, 2018
Who do you trust? Who do you want to be associated with? Axis is raising hard questions to start 2018. In this note, we examine these questions,...
Software House Vulnerability Allows Inside Attacker To Open Doors on Jan 17, 2018
A vulnerability in Software House IP-ACM modules allows an attacker to potentially unlock doors, or perform other actions, on affected systems....
'Defiant' Hikvision 'Strikes Back' At WSJ And US on Jan 16, 2018
The fight is on. Hikvision and their owner, the Chinese government, 'strikes back' against the Wall Street Journal and US politicians raising...
The 2018 Surveillance Industry Guide on Jan 16, 2018
The 300 page, 2018 Video Surveillance Industry Guide, covering the key events and the future of the video surveillance market, is now available,...
Edward Snowden Haven App Tested on Jan 16, 2018
Global coverage followed the December 2017 announcement that Edward Snowden was leading a team developing Haven, an app "that leverages on-device...
This High Schooler Is Excited About His Future Security Career on Jan 15, 2018
A common lament is that smart, young people have little interest in surveillance systems. In fact, discussions like Should Talented Young People...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact