barox – the manufacturer of professional standard switches, media converters and IP extenders specifically designed for video applications – is promoting the need for awareness among end users not only when it comes to selecting video transmission products that use sophisticated measures to protect against cyber attacks, but also for all network users to proactively safeguard their own sphere of operation.
barox has built important safeguards for protecting sensitive data networks. Extending the scope for consideration with relation to network performance and system integration to VMS, barox views network security in terms of both cyber ‘hygiene’ and ‘cyber security’.
Cyber hygiene (lock the doors)
Just as an individual engages in personal hygiene practices to maintain good health and well-being, cyber hygiene can help keep data safe and properly protected. End users of networks and other devices can take steps to maintain their system health and improve online security.
The implementation of a good cyber hygiene regime will encompass the precautions users can take with the aim of keeping sensitive data organised, safe and secure from theft and outside attacks (such as via malware), which can severely hinder network functionality.
“Good hygiene practice includes a mix of regularly updating software and changing the use of complex passwords to prevent malicious activities,” explained Rudolf Rohr, co-founder and managing partner at barox. “Only those users who need admin-level access to devices should have device access, while other users should have only limited capabilities around access.”
In relation to supporting end users with good hygiene practice, barox provides access port locking, switch support login with authentication certificate and video transmission device ports. These can be automatically disabled if someone unplugs them.
Also, with IP-based Virtual LANs, application networks cannot access a barox switch. Protection is offered by the protocol. In short, cyber hygiene is good practice, enabling humans and network devices to work together efficiently. barox’s products help with the easy management of networks via access and distribution layers, delivering the tools to deliver secure data and video and in preparation for future integrations.
AMPS cyber security (controlling access)
To aid installers, integrators and system designers in maximising the security of video transmission networks, barox has coined the acronym ‘AMPS’ (which stands for Access Protection, Management, Performance and System) to explain the different areas of video network operation to be considered.
With regards to ‘Access Protection’, barox uses end-to-end communication encryption and certificates to lock-out unauthorised network access. barox’s ‘Management’ of login covers the disabling of unoccupied ports, Mac locking, Access Control List, TACAS and multiple user control.
Also, to prevent cyber criminals from catching login passwords via insufficiently encrypted equipment between server and browser, barox uses ‘dual encryption’ technology that provides its video transmission networks with a sophisticated high-security barrier.
The first security measure barox employs is Hypertext Transfer Protocol Secure (HTTPS), an established high-end transport encryption (used to protect online banking registration). barox uses HTTPS to encrypt the password on the way from the user’s browser to the server of the switch.
Providing high-end resilience, barox doesn’t rely on this barrier alone, though. Offering ‘double security’, barox also provides firewall-like protection against man-in-the-middle attacks with Access Control List (ACL) and Access Control Entries (ACE).