ONVIF Profile Q Aims To Change Discovery and Default Passwords

By: John Honovich, Published on Jan 13, 2015

ONVIF is gearing up to release a new profile, called Q.

They market it as providing "quick configuration and installation, providing innate discoverability and reliable device monitoring and event management capabilities."

However,

  • How is Profile Q different than the current Profile S?
  • What are the big changes / additions in Profile Q?
  • How will requirements in discovery and default passwords impact manufacturers and systems?

Inside, we answer these questions based on a discussion with the engineers contributing to this upcoming Profile.

Profile Q Vs Profile S and G

Profile Q is new and independent of Profile S (streaming) and G (recording). One might theoretically just support Q but we would expect most every device that supports Q to also support S.

Q is narrowly focused on the discovery, installation and monitoring. It does not address streaming, camera configuration, motion detection, PTZ, i/o, etc. All of that remains in Profile S. To that end, Profile Q is better thought of as an enhancement to Profile S.

For those who want to read the actual spec, the Profile Q Release Candidate 1.0 specification is available here. We will discuss the key elements below.

Requires ZeroConf

Today, IP camera manufacturers choose from a wide variety of ways to be discovered, with different discovery protocols and even some that set a fixed IP address. Because of that, it can be difficult to initially find different cameras and, at least, requires the VMS to implement / know how each manufacturer goes about being discovered or getting started.

Get Notified of Video Surveillance Breaking News
Get Notified of Video Surveillance Breaking News

Profile Q will now require conformant devices to support ZeroConfig, aka Zero Configuration Networking, which is best known for assigning a 169.x.x.x address if a dynamic address can not be assigned by a DHCP server.

If many manufacturers adopt Profile Q, and all thereby use the same discovery protocol, it should simplify and increase the probability of finding all IP cameras / devices on a local network. However, if manufacturers currently use a different approach, it would require them to change it to comply with Profile Q.

Requires No Default Password

Most IP cameras today have hard-coded default IP passwords, e.g., admin/admin or admin/1234, etc. (see the IP camera default password directory).

Profile Q requires eliminating this. With Profile Q, a device will not have any default password and when one first connects, in a default state, you are then required to setup a password. For those familiar with Axis, this is how they do it (see: IP Camera Passwords - Axis, Dahua, Samsung).

Since most manufacturers today have a default password, this would require them to change their fundamental password approach.

Since so many people never change passwords, ONVIF hopes that this will decrease security risks of an adversary just entering in the default password and gaining full access.

Other Profile Q Notable Requirements

The above two have the broadest potential impacts. There are a few other requirements / elements worth noting:

  • Adds basic monitoring capabilities such as processor usage, time of last reset and last reboot and last time synchronization.
  • Eliminates requirement of time synchronization which has caused connectivity issues.
  • Once the password has been set, Profile Q more tightly restricts what user levels can make changes to camera features / settings.

Impact of ONVIF Profile Q

The big two elements of Profile Q could address 2 notable pain points in using IP cameras. However, this will require manufacturers opting into Profile Q and, in doing so, changing some of their basic operations.

We expect Profile Q to be official before the end of 2015 and to take a few years for adoption to spread.

Update 2019

Profile Q has failed to garner significant support. As a point of fact, only 166 cameras currently support ONVIF Profile Q, including none from Avigilon, Axis, Dahua, Hanwha, Hikvision.

1 report cite this report:

Directory Default IP Camera Addresses on Feb 13, 2015
Initializing IP cameras can be tedious and frustrating, made worse because...
Comments (15) : Members only. Login. or Join.

Related Reports

Genetec Security Center 5.9 Release Examined on Feb 06, 2020
Genetec released the next major version of Security Center, less than a year...
Avigilon Open Analytics Tested on Apr 16, 2020
After years of effectively closed analytics, Avigilon decided in late 2018 to...
ISS Presents Face As A Credential and UVSS on Apr 30, 2020
ISS presented its security platform, including access control integration,...
Use Access Control Logs To Constrain Coronavirus on Apr 09, 2020
Access control users have included capabilities that are not commonly used...
Avigilon ACC Cloud Tested on Jul 08, 2020
Avigilon merged Blue and ACC, adding VSaaS features to its on-premise VMS,...
Seek Scan Thermal Temperature Screening System Tested on May 28, 2020
Now that IPVM has tested Dahua, Hikvision, and Sunell, we are returning to...
"Fever Camera" Online Show June 2020 - On-Demand Recordings on Jun 03, 2020
IPVM has successfully completed the world's first "Fever Camera" show....
Clinton Public View Monitor (PVM) Mask Detection Tested on Jul 09, 2020
Face mask detection, or more specifically not wearing one, is expanding...
NetApp Video Surveillance Profile on Mar 09, 2020
NetApp is increasing its efforts in video surveillance and told IPVM...
Micron 1 TB SD Cards Aim To Eliminate NVRs on Apr 08, 2020
Micron has boldly proclaimed their latest 1TB microSD "eliminates the need...
Hanwha Wisenet X Plus PTRZ Tested on Feb 14, 2020
Hanwha has released their PTRZ camera, the Wisenet X Plus XNV-6081Z, claiming...
Avigilon Presents Cloud Connected ACC on May 13, 2020
Avigilon presented Avigilon Cloud Services, which supports cloud-connected...
Euklis Presents AI Analytics on May 05, 2020
Euklis presented its AI facial recognition, LPR, and object recognition...
Low Voltage Nation Wants to "Help You Carve Out A Fulfilling Career" Interviewed on Jul 06, 2020
It is difficult to make your way in this industry as there is little formal...
Avigilon Face Mask Detection Tested on Jun 24, 2020
Face mask detection or, more specifically not wearing a face mask, is an...

Recent Reports

Taiwan Lilin NDAA Compliant Cameras Tested on Aug 13, 2020
Taiwan-based manufacturer Lilin is taking direct aim at Dahua and Hikvision...
White House Expands Dahua Hikvision Blacklist To Federal Funding on Aug 13, 2020
The White House is expanding the NDAA to blacklist anyone who "uses" banned...
Actual Coronavirus Testing Options Examined on Aug 13, 2020
Fever cameras have emerged as an indirect and flawed way to test for...
Video Analytics Online Show September 2020 Opened - Axis, Avigilon, Bosch, BriefCam, Genetec, Milestone + 30 More on Aug 12, 2020
IPVM's sixth online show will feature 35+ Video Analytics companies...
The German Company Powering Many China Temperature Tablets (Heimann) on Aug 12, 2020
Many fever tablet suppliers market German-made Heimann thermal sensors while...
Salesforce Drops Dahua and Hikvision on Aug 12, 2020
Salesforce has dropped Dahua and Hikvision as customers, forcing the two mega...
Access Control Course Fall 2020 - Register Now on Aug 12, 2020
IPVM offers the most comprehensive access control course in the industry....
Genetec CEO Declares "We Don't Negotiate Payment With Patent Trolls" on Aug 11, 2020
Are patent trolls like terrorists? Genetec's CEO is coming out strongly...
Hanwha AI Analytics Camera Tested on Aug 11, 2020
Hanwha has released their Wisenet P AI camera, adding person and vehicle...
Alabama Schools Million Dollar Hikvision Fever Camera Deal on Aug 11, 2020
The Baldwin County, Alabama public schools purchased a $1 million, 144-camera...
Dahua Taunts Australian Government, Continues To Sell Illegal Fever Cameras on Aug 10, 2020
Dahua is effectively taunting the Australian government by continuing to sell...
HID Releases VertX Replacement Aero on Aug 10, 2020
HID is replacing two established and broadly supported types of access...
NDAA Compliant Video Surveillance Whitelist on Aug 10, 2020
This report aggregates video surveillance products that manufacturers have...
Telpo China Temperature Tablets Tested on Aug 10, 2020
The provider for overseas companies ranging from Canon Singapore to US'...
Dangerous Hikvision Fever Camera Showcased by Chilean City on Aug 07, 2020
Deploying a fever camera outdoors, in the rain, with no black body, is...