Many of its security features are pre-configured as standard and do not require the user to set them up, offering protection from the moment the system is switched on.
Wavestore’s VMS is embedded into a Linux operating system which offers a host of security benefits over Windows™ based counterparts. For example, Wavestore is not impacted by Windows vulnerabilities and there are no time-consuming Windows updates that require the VMS to be off-line these updates are applied.
Wavestore also has full control over which specific components of the Linux operating system it uses and disables all non-essential areas to greatly reduce the threat of potential vulnerability.
Click here to read our Cyber Security features brochure to learn more about our security hardening program
Some vendors have generic back-door access called a ‘root login’ which is always open. This is to provide them with access to the system for trouble shooting and technical support issues, but it is also a potential security threat. At Wavestore we don’t have an unsupervised back-door to the system. Instead, if an authorised administrator decides to grant us access for remote diagnostics, they must be physically with the Wavestore server to provide support staff with a temporary administration account and password that the administrator is firmly in control of. After the diagnostics process is finished, the administrator can close the remote access and delete the temporary administration account.
Wavestore offers up to 4096bit encryption for video, allowing if required the option for secure public keys to be used when encoding and decoding video. In addition, Wavestore enables passwords to be encrypted. This means that when video evidence is being exported, the secure public key details do not need to be handed over to the recipient of the export.
Wavestore’s preconfigured firewall, provided as standard within its VMS, locks down ports and helps prevent unauthorised connection to its servers.
Wavestore can restrict access to all but authorised IP addresses to eliminate the risk of unauthorised users logging in from other remote computers.
Login details are always encrypted using very strong password hashes and Wavestore provides ‘man-in-the-middle’ protection as standard. We can ensure that stringent password policies are enforced, e.g. users must change the default password on their first log in and enter a mix of letters, characters and numbers to a required length to make their password more secure.
No other applications can be run on Wavestore servers/NVRs/HVRs, meaning that no malicious programs can be loaded and executed.
Wavestore operates ‘privilege separation’ which makes user accounts more secure. Users can be separated into groups and the relevant privileges set. For example, the ‘Install’ group may have set-up rights while the ‘User’ group only has day-to-day operation functions made available to them. This has a high level of granularity; for example normal users can view live but cannot play back footage or export it, whereas an admin user could do both.
Wavestore is compatible with LDAP and Active Directory to assist in the management of systems with many users.
Wavestore’s WaveView client software can be set to automatically log out after a defined time period if there is no user activity. This is especially useful if the client is being operated in a space that may be easily accessible, such as a reception area, or where policy dictates that user must log out after each use.
Wavestore operates an on-going third-party security program which purposefully tests for vulnerabilities with the system to give us confidence that the solutions we are providing are as secure as possible with today’s threats in mind.
No back-door access
Security hardening package enabled as standard
Wavestore’s VMS is embedded into an inherently security Linux Operating System (OS)
Up to 4096bit encryption
Wavestore’s logarithmic search bar and Smart Search functionality delivers pin-point control of your video.
Perfectly synchronised audio from cameras with built-in microphones.
Massive single storage solution up to 2.04 Petabytes per server and over 520 Petabytes per server group.
Wavestore’s powerful RAID providing leading throughput and up to N+5 redundancy using standard recording hardware.
Wavestore’s Large Allocation Storage System (LASS) is the most robust and reliable file system available today