1. Home
  2. Axis
  3. Axis 02861-001 User Manual
  4. Page 24

Axis 02861-001 A9210 Network I/O Relay Module

Axis A9210 User Manual - Page 24

For 02861-001.

PDF File Manual, 35 pages, Read Online | Download pdf file

02861-001 photo
Loading ...
Loading ...
Loading ...
AXISA9210NetworkI/ORelayModule
Learnmore
Learnmore
Cybersecurity
AxisEdgeVault
AxisEdgeVaultprovidesahardware-basedcybersecurityplatformthatsafeguardstheAxisdevice.Itoffersfeaturestoguaranteethe
device’sidentityandintegrityandtoprotectyoursensitiveinformationfromunauthorizedaccess.Itbuildsonastrongfoundationof
cryptographiccomputingmodules(secureelementandTPM)andSoCsecurity(TEEandsecureboot),combinedwithexpertisein
edgedevicesecurity.
Signedrmware
Signedrmwareisimplementedbythesoftwarevendorsigningthermwareimagewithaprivatekey.Whenarmwarehasthis
signatureattachedtoit,adevicewillvalidatethermwarebeforeacceptingtoinstallit.Ifthedevicedetectsthatthermware
integrityiscompromised,thermwareupgradewillberejected.
Secureboot
Securebootisabootprocessthatconsistsofanunbrokenchainofcryptographicallyvalidatedsoftware,startinginimmutable
memory(bootROM).Beingbasedontheuseofsignedrmware,securebootensuresthatadevicecanbootonlywithauthorized
rmware.
Securekeystore
Atamper-protectedenvironmentfortheprotectionofprivatekeysandsecureexecutionofcryptographicoperations.Itprevents
unauthorizedaccessandmaliciousextractionintheeventofasecuritybreach.Dependingonsecurityrequirements,anAxisdevice
canhaveeitheroneormultiplehardware-basedcryptographiccomputingmodules,whichprovideahardware-protectedsecure
keystore.Dependingonsecurityrequirements,anAxisdevicecanhaveeitheroneormultiplehardware-basedcryptographic
computingmodules,likeaTPM2.0(TrustedPlatformModule)orasecureelement,and/oraTEE(TrustedExecutionEnvironment),
whichprovideahardware-protectedsecurekeystore.Furthermore,selectedAxisproductsfeatureaFIPS140-2Level2-certied
securekeystore.
AxisdeviceID
Beingabletoverifytheoriginofthedeviceiskeytoestablishingtrustinthedeviceidentity.Duringproduction,deviceswith
AxisEdgeVaultareassignedaunique,factory-provisioned,andIEEE802.1AR-compliantAxisdeviceIDcerticate.Thisworks
likeapassporttoprovetheoriginofthedevice.ThedeviceIDissecurelyandpermanentlystoredinthesecurekeystoreasa
certicatesignedbyAxisrootcerticate.ThedeviceIDcanbeleveragedbythecustomer’sITinfrastructureforautomatedsecure
deviceonboardingandsecuredeviceidentication
Encryptedlesystem
Thesecurekeystorepreventsthemaliciousexltrationofinformationandpreventscongurationtamperingbyenforcingstrong
encryptionuponthelesystem.Thisensuresnodatastoredinthelesystemcanbeextractedortamperedwithwhenthedeviceis
notinuse,unauthenticatedaccesstothedeviceisachievedand/ortheAxisdeviceisstolen.Duringthesecurebootprocess,the
read-writelesystemisdecryptedandcanbemountedandusedbytheAxisdevice.
TolearnmoreaboutthecybersecurityfeaturesinAxisdevices,gotoaxis.com/learning/white-papersandsearchforcybersecurity.
24
Loading ...
Loading ...
Loading ...