Cybersecurity - Axis P13-B Series User Manual

AXIS P13-B Box Camera Series
Learn more

Cybersecurity

Axis Edge Vault
Axis Edge Vault provides a hardware-based cybersecurity platform that safeguards the Axis device. It offers features to guarantee the
device's identity and integrity and to protect your sensitive information from unauthorized access. It builds on a strong foundation of
cryptographic computing modules (secure element and TPM) and SoC security (TEE and secure boot), combined with expertise in
edge device security.
Signed firmware
Signed firmware is implemented by the software vendor signing the firmware image with a private key. When a firmware has this
signature attached to it, a device will validate the firmware before accepting to install it. If the device detects that the firmware
integrity is compromised, the firmware upgrade will be rejected.
Secure boot
Secure boot is a boot process that consists of an unbroken chain of cryptographically validated software, starting in immutable
memory (boot ROM). Being based on the use of signed firmware, secure boot ensures that a device can boot only with authorized
firmware.
Signed video
Signed video ensures that video evidence can be verified as untampered without proving the chain of custody of the video file. Each
camera uses its unique video signing key, which is securely stored in the secure keystore, to add a signature into the video stream.
When the video is played, the file player shows whether the video is intact. Signed video makes it possible to trace the video back to
the camera origin and verifies that the video has not been tampered with after it left the camera.
To learn more about the cybersecurity features in Axis devices, go to axis.com/learning/white-papers and search for cybersecurity.
Axis security notification service
Axis provides a notification service with information about vulnerability and other security related matters for Axis devices. To receive
notifications, you can subscribe at axis.com/security-notification-service.
Vulnerability management
To minimize customers' risk of exposure, Axis, as a Common Vulnerability and Exposures (CVE) numbering authority (CNA), follows
industry standards to manage and respond to discovered vulnerabilities in our devices, software, and services. For more information
about Axis vulnerability management policy, how to report vulnerabilities, already disclosed vulnerabilities, and corresponding
security advisories, see axis.com/vulnerability-management.
Secure operation of Axis devices
Axis devices with factory default settings are pre-configured with secure default protection mechanisms. We recommend using more
security configuration when installing the device. To find out more about Axis hardening guides and other cyber security related
documentation, go to axis.com/support/cybersecurity/resources.
63