Security

Wavestore operates an ongoing security hardening program for its VMS. Many of these are pre-configured as standard and do not require the user to set them up, offering protection from the moment the system is switched on. .


Secure Linux Operating System (OS)

Wavestore’s VMS is embedded into Linux operating system which offers a host of security benefits over Windows™ based counterparts. For example, Wavestore is not impacted by Windows vulnerabilities and there are no time-consuming Windows updates that require the VMS to be off-line while this is being performed.

Wavestore also has full control over which specific components of the Linux operating systems it would use, and it disables all non-essential areas to greatly reduce the threat of potential vulnerability.

No back-door login

Some vendors have generic back-door access called a ‘root login’ that is always open so that they can access the system for things like trouble shooting and technical support issues, which is a potential security threat. At Wavestore we don’t have such a system, instead, if an authorised administrator wants to grant us access for remote diagnostics they must be physically with the Wavestore server in order to give such permissions and provide us with a temporary administration account and password that they control. Once the diagnostics are finished, they can close the remote access and delete the temporary administration account.

Video, data and password encryption

Wavestore offers up to 4096bit encryption for video, allowing the option for secure public keys to be used when encoding and decoding video if required. In addition, password protected encryption is available so when exporting video of an incident, to provide to authorities, the secure public key details do not also need to also be handed over.

Video, data and password encryption

Wavestore offers up to 4096bit encryption for video, allowing the option for secure public keys to be used when encoding and decoding video if required. In addition, password protected encryption is available so when exporting video of an incident, to provide to authorities, the secure public key details do not also need to also be handed over.

Built-in firewall

Wavestore’s firewall, provided as standard within its VMS, locks down ports and helps prevent unauthorised connection to its servers.

Restricting IP addresses

Wavestore can restrict access to all but authorised IP addresses to eliminate the risk of unauthorised users logging in from other remote computers.

Protection against ‘Man-in-the-middle’ attacks

Login details are always encrypted using very strong password hashes with Wavestore and we provide ‘man-in-the-middle’ protection as standard. We can ensure that password policies are enforced, where users must change on their first log in and enter a mix of letters, characters and numbers to a required length to make sure their password is more secure.

Privilege separation

Wavestore operates ‘privilege separation’ which makes user accounts more secure. Key processes, such as the Wavestore VMS server, run as non-administrator users.

On-going protection

Wavestore operates an on-going third-party security program that purposefully tests for vulnerabilities with the system to give us confidence that the solutions we are providing are as secure as possible with today’s threats in mind.