The guide is a genuinely helpful guide for securing and configuring your Hikvision gear they do want you to have secure gear to the extent that the criminals-du-jour are not exploiting the camera hardware to mine cryptocurrency or participate in DDoS attacks. Some notable security lapses from discovered in the past: Why go to all the trouble given the past security weaknesses? Some noted security researchers have really put a lot of work into trying to tear these down, and some have lamented that the boot sequence on these cameras seems incredibly obfuscated and needlessly complex. In an ideal world there would be open firmware for these cameras, ideally from some third party. But it is absolutely imperative that, if you use this equipment, that it is not on the internet (even behind NAT). Is the security insecure because it has backdoors from China, or is it just dangerously insecure because it was not coded to any kind of software engineering standards? It’s not clear on that point. Hikvision is kinda sorta on the US blacklist. They also offer industry standard functionality such as web sockets and RTMP.Įven though they are a security nightmare they can, in some respects, be a great platform for video capture (3840x2160x20 fps for the models featured in this video). However, the cameras do include a very well-documented SDK for software development. The main problem is that the software is a bit opaque and the known security issues in the past have been jaw-droppingly bad. It is apparent the software was not built with hardening or security in mind. ![]() The software, on the other hand, is not to idealistic American standards. The hardware truly is incredible as it is able to, in real time, do face detection, people counting, detect and flag unattended baggage or packages, identify animals and much more. The vision for robust camera equipment, and the implementation, is massively impressive. partially state-owned Chinese manufacturer and supplier of video surveillance equipment for civilian and military purposes, headquartered in Hangzhou, China. Yes, really) is short for Hangzhou Hikvision Digital Technology Co, LTD. It was replaced by 2CD2085G-I (are you as frustrated reading these camera models as I am writing them down?)Ĭloud camera services are for chumps. Do not do that unless you like pain and suffering the current firmware versions are bugged and this version of that camera sucks. For example, it is still possible to buy 2CD2085FWD-I 8 megapixel H265 PoE Hikvision cameras on Amazon. ALWAYS ALWAYS check that a Hikvision camera you are buying new is not EOL and has recent firmware. Important: Hikvision Cameras labeled “EOL” are extremely problematic with regard to firmware versions and updates. If you prefer a little less international intrigue and/or having the Rawling Virus in-a-jar on your network, I might recommend Reolink or Ubiquiti in a pinch. That said, Hikvision is taking the tiger by the tail, a bit. ![]() It is easy to brick one with a failed firmware update, and it is not well-documented how to recover. They’re nearly good enough but fall short in just a few key areas (imho).Ĭonversely, it is nearly impossible to permanently kill a Hikvision camera. Particularly disappointing is Ubiquti cameras because the company apparently gets what they need to do for a good security camera experience, but they completely fall short on long-term reliability and build quality. It is my opinion that Hikvision hardware is superior, but the other cameras are less dangerous. In general, my opinion of Hikvision hardware is that it is really quite good. Sadly, a lot of other IP cameras have inferior build quality, but better software. You may be buying Hikvision, and not even know it. They make cameras under a lot of brand names. Hikvision – What do new buyers need to know? ![]() You can skip that if you’re just here to unbrick your cameras, and understand a few things about how they are put together.
0 Comments
Leave a Reply. |