IFSEC Insider is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
There is clearly a growing awareness of the threat cybercrime poses to the retail sector, with reports highlighting a surge of attacks in the past couple of years. Networked cameras are providing a transformative approach to physical security, but may leave new vulnerabilities open if not fully considered. Axis Communications’ Steven Kenny looks at the measures that should be put in place to protect and support the retail industry in the face of mounting cyber threats.
Steven Kenny, Axis Communications
The risk presented by cyber security threats has never been greater. Mounting global tensions and the rise of disruptive forces such as ransomware-as-a-service, masterminded by a new generation of malicious actors, puts today’s retailer in a potentially vulnerable position.
Retailers retain and exchange vast amounts of customer data together with records of transactions and related financial information, which all present a huge temptation to the cyber criminal. For any retailer, whether bricks and mortar or online, an attack could have serious ramifications, resulting in everything from operational disruption and reputational damage to severe financial consequences.
Retail businesses are understandably eager to embrace the benefits of digital transformation by looking to technology to help them operate smarter. But connected devices represent possible points of entry for cyber criminals. So installing a device, such as an IP camera, onto a network can leave them wide open to attack in the absence of stringent cyber security processes. What action, then, is needed to help mitigate the threat?
Protecting against vulnerability with cyber-secure systems
The advancements and benefits to be gained from network-connected camera technology over legacy systems are well documented. But given the cyber threat, it is critical to ensure that the systems employed to improve security do not themselves represent a cyber security risk.
That is, it is not inconceivable that the security companies tasked with protecting a retail business’s people and assets could become the cause of a cyber security breach.
When considering the use of network surveillance cameras, it’s imperative that the vendors who provide the technologies can offer guarantees as to reliability. While introducing any device to a network does not come without some element of risk, the retail business should look to work only with companies that embed cyber security primitives into their solutions from the ground up.
Intelligent solutions to improve retail operations
As regulators struggle to keep up with the explosion of poor quality IoT devices and the vulnerabilities they inadvertently introduce, retailers must carefully consider who they choose to partner with to deliver their security and business intelligence solutions, and the integrity of these technologies.
For the modern retail business, network cameras – used as sensors – combined with the latest advances in analytics software results in a powerful solution which can unlock an array of business intelligence options beyond security alone. These include people counting, queue management, dwell times, heat mapping and demographic information – anonymised for statistical use – to improve customer experience while also delivering a competitive edge.
Axis’ own ARTPEC-8 system-on-chip (SoC) further enhances analytics functionality based on deep learning capabilities, resulting in an incredibly powerful security and business intelligence tool. Of critical importance is that all of Axis’ security technologies are manufactured from the ground-up with cyber security considerations front and centre. This helps ensure that there are no vulnerabilities.
Ensuring supply chain integrity and trust
A retailer’s supply chain should be considered within its overall cyber security strategy. If a supplier does not operate its own stringent cyber security practices this could cause significant problems because it effectively exposes a point of weakness through which to exploit the retailer’s systems. Only by working closely with security vendors and gaining buy-in from the entire supply chain can the integrity of all possible points of connectivity be fully guaranteed.
Further, the introduction of NIS2, the next EU data protection directive, will remove the ambiguity around the types and profiles of businesses that need to comply with data protection regulations. Developed to reduce inconsistencies in resilience by further aligning cyber security capabilities, the directive places even greater pressure on the entire supply chain to ensure the highest levels of cyber security, or risk fines of up to 10 million EUR or 2% of total global annual turnover.
To effectively protect their business, retailers must be able to rely on technologies that support their operational requirements and address associated risks, while at the same time, supporting IT security policies. The cyber security of IoT devices and implementation of high-quality products and services are key to effective mitigation of the cyber security threat, delivering better protection of the business and customer and resulting in a smarter, safer world for all.
About the author
Steven Kenny – Industry Liaison, Architecture & Engineering at Axis Communications
Steven Kenny has spent 15 years in the security sector taking responsibility for key elements of mission critical, high-profile projects across a number of different vertical markets. For the last five years, Steven has focused his attention on how technology can best complement day to day business operations, specifically addressing operational issues and supporting the A&E consultant community across Northern Europe. Steven is the Director of Systems, Information and Cyber security for ASIS International – UK Chapter, and is the UK technology advisor for TINYg (Global Terrorist Information Network)
Free Download: The Video Surveillance Report 2023
Discover the latest developments in the rapidly-evolving video surveillance sector by downloading the 2023 Video Surveillance Report. Over 500 responses to our survey, which come from integrators to consultants and heads of security, inform our analysis of the latest trends including AI, the state of the video surveillance market, uptake of the cloud, and the wider economic and geopolitical events impacting the sector!
Download for FREE to discover top industry insight around the latest innovations in video surveillance systems.
The critical importance of cyber secure camera solutions in securing retail’s futureExploring the measures that should be put in place to protect and support the retail industry in the face of mounting cyber threats.
Steven Kenny
IFSEC Insider | Security and Fire News and Resources
Related Topics
The future of cargo is visible: Driving digital transformation with video insights
“We create the best opportunities, innovations, and ideas together”: Axis on the power of open communication
Opening security to new opportunities as video surveillance goes beyond its borders
Subscribe
1 Comment
Oldest
NewestMost Voted
Inline Feedbacks
View all comments
brezzsent
August 14, 2023 8:51 am
Your blog is great. I read a lot of interesting things from it. Thank you very much for sharing. Hope you will update more news in the future.
Your blog is great. I read a lot of interesting things from it. Thank you very much for sharing. Hope you will update more news in the future.