Focus on Physical and Cyber Linkages -- Security Today

Focus on Physical and Cyber Linkages

By Bud Broomhead
Feb 01, 2021

All the discussions in recent years about the “convergence” of physical and cyber security have fallen short in one crucial area. The arguments about how best to organize the departments, set the budgets, and who should report to whom have not succeeded in making organizations more secure. Network penetrations are still happening, doors are still being propped open, and ransomware attacks are still succeeding.

As recently as December 2020, the federal government confirmed perhaps the largest and most damaging cybersecurity breach in history, and the most sobering thing about that breach is that we still do not know the intentions of the attackers. Instead of organizational debates, leadership at every organization should be squarely focused on preventing security breaches of all kinds, and engaging the entire team with processes and actions to work toward that result.

Physical Security Vulnerabilities Are Cyber Vulnerabilities
We now know that physical security devices – including not only cameras but also every networked device that is part of these systems – is a potential entry point for cyber attackers and breaches. Physical security devices are themselves IoT devices (Internet of Things) and designed to access networks. But while most IT departments have specific processes for protecting networked PCs and similar organizational devices, the same is often not the case for physical security IoT equipment.

For example, unlike with traditional computers or mobile devices, there are no built-in mechanisms to address new vulnerabilities that are discovered after physical security devices are placed in service. Often the devices are installed with out-of-date firmware that is vulnerable to known attack methods. This is one reason why physical security systems are the #2 most successful attack surface used by cyber criminals to breach an organization.

Even worse, the problem is quickly becoming bigger – the number of connected devices that could compromise network security is increasing at a phenomenal rate. The consensus of a number of market analysts is that the number of network-connected devices will exceed 25 billion within the coming year – and that more than half of those devices will be unmanaged and/or IoT devices. Examples of the devices in this category include not only security cameras, but also VoIP terminals, printers, point-of-sale terminals, medical devices, and many more. These devices will greatly outnumber the traditional enterprise devices such as PCs and servers, as well as managed BYOD devices such as tablets, smartphones, and laptops.

Protecting Physical Security and IoT Devices
Taking action to protect these devices from unauthorized access also helps to protect your entire network. Protecting an IoT device involves reducing the device’s attack surface by eliminating or hardening points of attack, especially for these three areas of vulnerability:

Logon credentials
Firmware vulnerabilities
Digital certificates used for device ID and data encryption

Let’s look at proactive strategies for each of these areas.

Logon Credentials
Logon credentials, such as for security video cameras, are especially vulnerable in high device count deployments because it is hard to conform to good password practices using a manual management process. Typical risky practices include the use of default, repeated, or shared passwords across groups of devices, and delegation of password management to service firm technicians.

A good strategy would be to use automated tools to ensure that default passwords and easily-guessed passwords are not allowed, while requiring secure (i.e. HTTPS) network connections to ensure that passwords are not transmitted over the network in plain text.

An even better strategy would be to use an automated password management application to harden all connected IoT device logons. In this way, unique names and passwords can be assigned to each individual device, while also providing a single sign-on capability so that human users require just one set of logon credentials to access any device, which could be enabled as-needed for short periods of time and be cancelled when user authorization ends.

Firmware Vulnerabilities
Experts have predicted that by 2022, 70% of organizations that have not implemented a firmware upgrade process will be breached due to firmware vulnerabilities. Recent studies of ransomware distribution methods also implicated compromised firmware as a common infection vector.

It is critical for an effective network security program to incorporate sound firmware management. A strong program would include, for example, automation to track current device firmware versions with a cross-reference matrix documenting compatibility with each application that uses the devices. It would incorporate the ability to quickly update device firmware as new firmware versions are released, and it would maintain a log of when firmware updates were performed and by whom for verification of compliance to security policies and practices.

Digital Certificates
Public key encryption based on digital certificates is the strongest known form of encryption, and increasingly used in IoT systems. In a network-based IoT system, such as a security video surveillance system, digital certificates are used for:

Identification of each specific device
Authenticating that the device is not an impostor
Allowing the secure exchange of encryption keys

For a strong protection strategy, digital certificates should be set to expire at intervals that make sense based on their use. If a certificate has been compromised without discovery, expiration shortens the length of time that the compromise can be used to advantage by an attacker. Many organizations with strong security postures rotate their certificates frequently to minimize their risks – and again, automating certificate management is a protective strategy for the effective management of large scale intelligent device deployments with hundreds or thousands of devices.

Moving Forward
We encourage every business, and every security provider, to review their security stance and move forward to improve their processes to make use of available security and management automation. Automation can be used to efficiently and effectively manage firmware, certificates, and passwords at scale – these are the critical linkages between physical and cyber security that can either deny hackers access, or provide an easy entry point. Increasing your attention and proactive prevention efforts on these linkages will not only improve your safety and security, but also provide a path for easily showing that these devices are in compliance to cyber security protocols.

Convergint Opens New U.S. Headquarters
10/13/2025
ONVIF to End Support for Profile S, Recommends Profile T as Replacement
10/09/2025
Totem Achieves Immix Central Station Certification Status
10/09/2025
SIA Names Yazmina Rawji as 2025 SIA Progress Award Honoree
10/07/2025
SIA Announces Names Martin Gren as 2025 George R. Lippert Memorial Award Honoree
10/07/2025
LocklyPRO Strengthens Sales Leadership Team With Two Industry Veterans
10/07/2025
Keenfinity Launches Radionix as its New Intrusion Systems Brand
09/29/2025
ASSA ABLOY Opening Solutions Puts Customer Collaboration Center Stage at GSX 2025
09/29/2025

Featured

Report: AI is Supercharging Old-School Cybercriminal Tactics

AI isn’t just transforming how we work. It’s reshaping how cybercriminals attack, with threat actors exploiting AI to mass produce malicious code loaders, steal browser credentials and accelerate cloud attacks, according to a new report from Elastic. Read Now
- Cybersecurity
Pragmatism, Productivity, and the Push for Accountability in 2025-2026

Every year, the security industry debates whether artificial intelligence is a disruption, an enabler, or a distraction. By 2025, that conversation matured, where AI became a working dimension in physical identity and access management (PIAM) programs. Observations from 2025 highlight this turning point in AI’s role in access control and define how security leaders are being distinguished based on how they apply it. Read Now
- Access Control
- Artificial Intelligence
Report: Cyber Attackers Continue to Turn to AI-Based Tools to Avoid Detection

Comcast Business recently released its 2025 Cybersecurity Threat Report, a comprehensive analysis of 34.6 billion cybersecurity events detected between June 1,2024 and May 31, 2025. Now in its third year, the report offers business leaders a unique perspective into the evolving threat landscape and provides actionable insights to help organizations strengthen their defenses and align cybersecurity with business risk. Read Now
- Artificial Intelligence
- Cybersecurity
Axis Communications Creates AI-powered Video Surveillance Orchestra

What if cameras could not only see the world, but interpret it—and respond like orchestra musicians reading sheet music: instantly, precisely, and in perfect harmony? That’s what global network technology leader Axis Communications set to find out. Read Now
- Artificial Intelligence
Just as Expected

GSX produced a wonderful tradeshow earlier this week. Monday was surprisingly strong in the morning, and the afternoon wasn’t bad at all. That’s Monday’s results and asking attendees to travel on Sunday. Just a quick hint, no one wants to give up their weekend to travel and set up an exhibit booth. I’m just saying. Read Now
- Industry Events
- GSX

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.
PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.
FEP GameChanger

Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.