Security policy

Protect your VMS from unauthorized access

Axxon One security policy ensures that no unauthorized persons can access the system. The user security policy includes:

• Setting a minimum password length.
• Storing password history.
• Setting password expiry date.
• Setting the required password strength.
• Prevention of multiple simultaneous sessions.
• Blocking the user and specifying the ban time/number of failed login attempts.

Each user-related event includes the user’s IP address. When accessing the server, the MAC address of the client computer is registered in the system event log. The Export Start event includes the username. You can set a range of permissible IP addresses for the client computers; users can also access the server with administrator confirmation.

Cloud cybersecurity features

Secure connection and password storage

AxxonNet cloud service connects to your Axxon One VMS servers via the HTTPS protocol using TLS encryption. No opening any ports or deploying other potentially vulnerable settings is needed, which ensures that your VMS does not become externally accessible. Transmitted video and other data are encrypted, which makes it impossible for unauthorized persons to access your information.

In AxxonNet, no user passwords are stored unencrypted (as cleartext), but password hashing is applied instead. When you enter your credentials to register in AxxonNet, the password is processed with a hashing algorithm, and only the hash sum is stored. When you enter your password to log in, the algorithm calculates its hash sum and compares it to the stored one to grant you access to the service. It is impossible to reconstruct a password based on the hash sum, so your vital data is inaccessible to attackers.

Secure camera connection

Encrypted video streaming

Axxon One can receive encrypted video streams from cameras. It supports the RTSPS protocol, and RTSP over HTTPS for ONVIF compliant devices. For transmitted video data, TLS encryption is supported.