Converged vs. Dedicated Networks For Surveillance Tutorial

By: Brian Rhodes, Published on Feb 11, 2015

Use the existing network or deploy a new one?

This is a critical choice in deploying video surveillance systems.

Though 'convergence' was a big theme of the past decade, deciding what to do has been much harder in practice.

In this guide, we break down the key factors in this decision, pro and cons, including:

  • IT vs Security Ownership
  • Existing Networks
  • Bandwidth
  • Network Quality
  • Technical Expertise
  • IT vs Security Ownership
  • Politics: Budget / Control / Avoiding Blame
  • Network Size
  • Expansion Difficulty
  • IP Address Conflict / IP Address Pool / Network Class
  • Security Concerns
  • Ongoing Maintenance Costs

*** *** ******** ******* or ****** * *** one?

**** ** * ******** choice ** ********* ***** surveillance *******.

****** '***********' *** * big ***** ** *** past ******, ******** **** to ** *** **** much ****** ** ********.

** **** *****, ** break **** *** *** factors ** **** ********, pro *** ****, *********:

  • ** ** ******** *********
  • ******** ********
  • *********
  • ******* *******
  • ********* *********
  • ** ** ******** *********
  • ********: ****** / ******* / ******** *****
  • ******* ****
  • ********* **********
  • ** ******* ******** / IP ******* **** / Network *****
  • ******** ********
  • ******* *********** *****

[***************]

Selection ********

** *** *******,*********** **** * ****** preference *** ********* ********* surveillance ********, **** **** * converged ****** ** ********.

IT ** ******** *********

*** ** *** ******* factors *** ****** ** do **** ****** ****** or ********, *** ********.

** ** *** ******** are *** ******** ***********, which ** ******, ****** can *****, ********** ** the *** ****** ** not ***** **** *****.

*** '***** ****' *** unfairly ****** ******* ** surveillance **** ** ******** for ***** ******. ********** when ** **** *** have * *** **** in ****** ****** *** selection ** ******* ******** equipment, *** ***** ****** can ** ******* ** the **** ***** ** many ********.

**** * ******** *******, the *********** ** ********* is ********. ********* *********** problems *** ******* *** physically ********, ** *** 'blame ****' ** ***** system ** ******* ******** can ** *******.

Existing ********

**** ******** **** *** designed ** ****** *** demands ** ********** ***** surveillance *********. **** ** a ****** ********* ** surveillance ***********.

******* ** ****, ****** in ************ *** ***** significant *********** ********, *** most ******* ***** *********.

*********

****** * *** ******* to ** ******** ****** may **** ****** ****** on ***** ************ ** the *******, **** ** email ** ****, ***** total ***** ********** ** only * ******** ** typical ******* ********. *******, dozens ** ******** ** cameras ****** ********** * facility ** ****** *** overload ******* ************** ***** average ******* ** **** and ******** ***** ******* run ************.

** *** ***** ****, the *** ************ ** a ********* ******** ******* is *** **** ** building * ********* *******. Not **** *** *** hardware ******* ******, *** additional *** *********** ****** need ** ** ***, with **** ********* ******* maintenance ********.

*** ******* ********* ** a ********* ******* **** not **** ** ***** bandwidth. **** * ****** built **** **** **** Ethernet ****** *** ****** support ** *****-********* *******, and *** **** ********** to ********* ** ******* speeds ** ****** *** continues ** ****. ******** a ********* ******* *** surveillance ****** ******* *** impact ** ********* ********* by ****** **** ********. The ******** *********** ***** down ** **** ** purchasing, **********, *** *********** a *** *****-**** *******.

Quality ** *******

** ********* ** *******, concerns ***** **** ***** dropped ** ******** ******** unavailable ****** ** *****. Overloaded ******** *** ****** a ********* *** *** kinds ** *********** ******, both ****, ********, ** unfairly *******.

*** ***** ************* / complexity ** ******** ******* of ******* *** ********* networks ***** ** *** expense ** **** **** hardware *** ************** ***** to ******* **. ** a ******** ***** ******, the ****** ** ***** surveillance ** ***** ******* may ** ******** *** troubling.

**** * ********* *******, only ***** ** *******, and ***** ** ** fighting **** ***** ******** for *********. *******, **** again ******** *** ********.

Technical *********

** **********, ******** *** range **** ****** ** very ******* **** ** outward *****. *** **** that ********** *** ********* plays ** ******** * surveillance ******* ** ********* different.

***** * ****** ******* to ****** *** **** traffic ***** ***** ** they *** **** ** leverage **** ******** ** managed ******** *** *** network ************* ****-***. *********** 'Quality ** ******* *** VLANs *** ** * practical *** ********* ****, but **** **** ********** by ******* ***********. ******* this ***** ** ************* is ****** ******** *****, and ****** ****** ******* the ****** ********** ** network **************.

** *** *** *******, a ********** ******* ** generally ******* ** ****** and ******** ******* ** handles **** *** *** system ****. *** **** is *** ***** ** configuration ****, *** *** actual ******** ****** ** simpler *** ******* ****** a ****** ******* ******. 'Plug *** ****' ******** with ******* ************** *** commonplace ** ********* ***** networks, **** **** ****** IT ***** ** ****** integrators *** ****** **** and ******** **** **** little **********.

Expansion ********** & ****** ****

** *******, *** ***** and **** ** *** network ** * *** consideration. *** ******** ******** multiple ********* ** ******** sites, *** ************** ********** tying **** ******** *** be * **** ******* and ******** *********** ******* to ******** ***** ** cable ***********.

**** ************* **** ******* invested ** ******** ********** multiple ********* *** ******** together, *** ********* ***** or ******** ***** ******* are ** **********. ********, those ***** *** ***** planned **** **** *********** of ****** ********* ** mind. *** *********** **** of ****** ***** *** be ********** ***********.

*******, *** ********* ********, this ***** ******* *** cables ******* *********, ***** can ** ********* ********* or *********. ** **** cases, ********* ******** **** a ******** *********.

Security ********

*** *** *** ***** or ********* ***** ********* network ******* **** ** a ****** *******.

** ********** ********** ************ traffic ** *** *** network ***** ** ****** to **** ****** **. Moreover, ******* ****** ** video ***** ********** ******** access ** *** ******* and ******* **** ******* secure ** ******. ** casinos, **** ** * priority ** **** ********* want ** ****** ** one ****, **** **, can *** ***** ******* or ****** ***** ***********.

*** ********* ******** ** that ******** ******* *** go ********* ** ********* for ******* ** ****, simply *** ** *** 'low-risk ******' ******** ***** by ************** ** ******** staff.

Ongoing *********** *****

*** ******* ** *********** either ****** *** **** as ****, *** ****** a *** ******.

*******, *** ******* ******* of * ********* ******* is * ******** ** programmed **** ******* *********** and ****** ** *** users. ******* *** ******* operational ** * ******** for ** ***********, *** having ***** *** * converged ******* ********* ********** the ******* ** ******* maintenance.

*******, *** ********** *********** of ******* ******* ** grudgingly ******** ** ******** ignored. ***** ***** *********** and ******** ****** *** be ********* ** ********* a ********** *******, ******* it *********** ** ******* responding ** ****** *** be * **** ******* area.

*** ******* **** ** a ********* ******* ** that ****** *********** *** upkeep *** ** ******* or **** ** ***** addressed. ********* ** *********** at **** **** *************** problems ** ****** ********* outside ** '***** *******' is * ****, ** well ** * ********** to **** *** ******** vendor *** ******* ** 'minor ******' ** **** might **** ******** ******** once ** ***** *** year.

Comments (11)

I think you need to add in the maturity of the customer, their infrastructure and the efficiences they may/may not have with respect to managing thereof.

A few years ago this would be more relevant than it could (or should) be today. So-called "convergence" isn't an event but an evolution. In many environments IT will continue to absorb the responsibility for providing the physical security as infrastructure and the security personnel are another end-user.

Casinos might be a special case in that cameras are a mission critical asset and the risk of getting ripped off is both external and internal.

But in most (modern) environments core switches should be gigabit with high capacity interconnects. VLAN tagging is a convenient way to logically isolate IP video traffic.

POE port density can be a problem towards the edge--in which case it might make sense for new/dedicated equipment. But even at that the proliferation of POE for (say) IP phones is becoming common and so is POE.

My point being, a professionally managed, modern network should be able to support IP video. If it's not, maybe IP video is a good reason to modernize. There exists value in using the same infrastructure for IP video and other networking needs. The dedication of a distinct network for IP video is leaving some of that value on the floor.

You are mixing could with should, with what happens with what you think should happen.

The reality is that this is still a significant issue and the political / territorial / fingerpointing aspect has not gone away for the large portion of users where IT and security remains separate.

I don't doubt that political / territorial is still a big deal and relevant. But, hey, so is analog. What I'm saying is the excuses are falling away. Where the security guy used to be able to say "bandwidth" or "security" he can't necessarily do so any more. I don't doubt that they're still the argument, but they won't be forever in many environments. When the argument becomes clearly political, it's increasingly difficult to justify if the infrastructure--itself designed to service the business as a whole as efficiently as possible--is able to do the job for both and makes sense to be managed singularly.

An example from retail, Yum! Brand's 'future store network' would set minimum bandwidth connections to stores, standardize network hardware in-store designed to (logically) segment wifi to customers, POS, digital signage, and IP video. And, no, the LP guy can't really argue duplicate hardware and infrastructure just because he doesn't get along with Joe over in IT..

As long as IP video is managed like analog but with RJ45 instead of BNC connectors, the customer is leaving a lot of 'internet protocol' opportunity on the floor.

"Where the security guy used to be able to say "bandwidth" or "security" he can't necessarily do so any more."

Actually I am saying the IT guys often say this. Not every IT department wants to have video surveillance dumped on then, the increased risk / troubleshooting.

As for retail:

"An example from retail, Yum! Brand's 'future store network' would set minimum bandwidth connections to stores, standardize network hardware in-store "

Retailers have been using converged networks for 10+ years because they have to. When you have stores / branches / sites scattered around the world, it is not that feasible to have multiple independent WAN connections for each service. And for retailers, they have to see the video remotely so the shared WAN becomes a necessity.

Retailers and anyone who runs credit card transactions have PCI-DSS compliance concerns which generally means that if they are a big box store they already have network infrastructure to support VLANs. Otherwise every device, including the surveillance servers gets added to their PCI audit scope of it's on the same VLAN. Even in some small Restaurant chains have some level of VLANs setup. I feel that restaurants, retail, hospitality, and healthcare facilities (due to HIPAA in the US) are the easiest to push for convergence. I have only done project on one campus but higher education seems to be fairly comfortable with convergence as well. They all already have so much junk riding on their network to begin with - AV control systems, teleconferencing, VOIP, etc. In my opinion big box retailers DEFINE converged IT.

It's places like factories and automotive corporations that I have seen the most push back. Anything that has even the most remote chance of impacting production for even a second starts a fire under IT and the production representatives will back them. Security is just a minor department.

i am willing to bet the vast majority of the time the biggest pushback from IT is sheer laziness or fear of the unknown. Just like every field there are people who are good at their job and some that you have to question who they are related to.

"I feel that restaurants, retail, hospitality, and healthcare facilities (due to HIPAA in the US) are the easiest to push for convergence"

Are you sure about that? We did a hospital that was very glad we to hear we were building a physically seperate network for the cameras. The only part of the system connecting to their network being the NVR, which made it easier for them to control.

As for retailers, it depends on the size of the retailer. Do not assume because the retailer or resturant chain is a big one, that they invest a lot in "compliance". The problem is the smaller, franchise owner who has to squeeze what they can from very small margins, like a sharecropper. So many times I have seen them install free, public wireless systems to attract patrons which are also connected to the same network as their old used, Windows based POS systems that didn't even have antivirus protection on them. When you talk to them about segregating the networks so patrons don't see the POS systems, they're like "Sure, as long as it doesn't cost me a dime. Otherwise... uh, yeah, I'll get to it maybe next month."

"I am willing to bet the vast majority of the time the biggest pushback from IT is sheer laziness or fear of the unknown."

Unfortunately, yes, very true. Not all the time, but more often than non-IT people probably realize. That's why is you don't have staff that are very IT proficient, you'll probably never recognize it.

We don't have a single client using more than 3-5 cameras on their network. I could never put our company's name behind infrastructure that we don't know front to back. If it is impossible to put in our own lines then fine but "convergence" is nice in theory, in practice its a hot mess. Think about it, one day some IT admin screws with the network and blocks port traffic within the network.. Cameras go down and the customer is upset... You consult with IT and they say "we didn't do anything" and you're left with trying to figure out their mess. To the customer it doesn't matter that IT did it, the blame game gets you no where. So I say NEVER piggy back on their network unless absolutely nessesary.

IPVM, this is a good thread, can you update it with a Cyber Security category. If the integrator favorites providing a private flat network, do they also provide remote monitoring and administration of that infrastructure?

We don't have a breakdown of that but we do have remote access stats. See: DDNS vs P2P vs VPN Usage Statistics

Thanks JH, will take a look.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

NJ Law Requires Apprenticeship For Public Works Integrators on May 24, 2019
Few integrators do a formal apprenticeship program. However, now a NJ law is requiring any integrator on public works projects (such as state...
Verkada Video Quality Problems Tested on May 23, 2019
Verkada suffers from numerous video quality problems, not found in commercial IP cameras, new IPVM testing of Verkada vs Axis and Hikvision...
Average Frame Rate Video Surveillance 2019 on May 23, 2019
What is the average frame rated used in video surveillance systems? In IPVM's 2011 statistics, the average was 6-8fps increasing to ~10fps in...
Bank Security Manager Interview on May 15, 2019
Bank security contends with many significant threats - from fraudsters to robbers and more. In this interview, IPVM spoke with bank security...
Mining Company Security Manager Interview on May 10, 2019
First Quantum Minerals Limited (FQML) is a global enterprise with offices on 4 continents and operations in 7 countries with exploratory operations...
ADT's Top Dealer "The Defenders" Sued 20+ Times on May 07, 2019
ADT's largest authorized dealer, The Defenders, has been sued more than 20 times since 2012, IPVM has verified through analyzing legal...
Ranking Manufacturer Favorability 2019 on May 06, 2019
24 manufacturer's favorability was ranked based on 170+ integrators feedback. Voting plus in-depth comments revealed insights on which brands were...
Registration Closed - Spring 2019 IP Networking Course on May 02, 2019
Register now for the Spring 2019 IP Networking course here - Closed. Last chance now.   This is the only networking course designed specifically...
Verkada Cloud VMS/Cameras Tested on May 02, 2019
Verkada is arguably the most ambitious video surveillance startup in many years. The company is developing their own cameras, their own VMS, their...
Subnetting for Video Surveillance on Apr 30, 2019
This guide explains when subnetting is used on security networks, and how it works. We explain how to add or remove IP addresses to your range,...

Most Recent Industry Reports

NJ Law Requires Apprenticeship For Public Works Integrators on May 24, 2019
Few integrators do a formal apprenticeship program. However, now a NJ law is requiring any integrator on public works projects (such as state...
Security / Privacy Journalist Sam Pfeifle Interview on May 24, 2019
Sam Pfeifle is best known as the outspoken former Editor of Security Systems News. After that, he was publications director at the International...
Verkada Video Quality Problems Tested on May 23, 2019
Verkada suffers from numerous video quality problems, not found in commercial IP cameras, new IPVM testing of Verkada vs Axis and Hikvision...
Average Frame Rate Video Surveillance 2019 on May 23, 2019
What is the average frame rated used in video surveillance systems? In IPVM's 2011 statistics, the average was 6-8fps increasing to ~10fps in...
Access Control Job Walk Guide on May 22, 2019
Significant money can be saved and problems avoided with an access control job walk if you know what to look for and what to ask. By inviting...
ASCMA / Monitronics Declares Chapter 11 Bankruptcy Plan on May 22, 2019
Monitronics is entering into Chapter 11 bankruptcy. The company, also called Ascent Capital Group Inc., aka ASCMA, aka Brinks Home Security,...
US Considers Sanctions Against Hikvision and Dahua on May 22, 2019
The US government is considering blacklisting "up to 5" PRC surveillance firms, including Hikvision and Dahua, Bloomberg reported, with human...
Dahua USA Celebrates 5 Years of Errors on May 21, 2019
Dahua USA is, in their own words, 'celebrating' 5 years in North America or as trade magazine SSN declared: Dahua Technology finds success in...
Axis ~$150 Outdoor Camera Tested on May 21, 2019
Axis has released the latest in their Companion camera line, the outdoor Companion Dome Mini LE, a 1080p integrated IR model aiming to compete with...
Covert Facial Recognition Using Axis and Amazon By NYTimes on May 20, 2019
What if you took a 33MP Axis camera covering one of the busiest parks in the US and ran Amazon Facial Recognition against it? That is what the...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact