AAU Student Projects - visit Aalborg University's student projects portal
A master's thesis from Aalborg University
Book cover


Security Analysis of IP-cameras

Authors

;

Term

4. term

Education

Software, Master

Publication year

2021

Submitted on

Pages

84

Abstract

Dette projekt undersøger sikkerheden i IP-kameraer (netværkstilsluttede overvågningskameraer) og udvikler en praktisk måde at forbedre den på via automatiske firmwareopdateringer. Firmware er den indbyggede software, som styrer enheden. I vores analyse fandt vi, at automatisk scanning af firmwarebilleder for kendte sårbarheder ikke var en realistisk løsning. I stedet byggede vi et automatiseret opdateringsframework, der afhænger af, at producenterne udvikler og vedligeholder officielle firmwareopdateringer. Sådanne opdateringer kan øge sikkerheden, men kun hvis de rent faktisk bliver installeret. Vores løsning skal automatisere og effektivisere opdateringer på tværs af flere producenter; i projektet er den implementeret for enheder fra Hikvision og Herospeed. Frameworket vælger den rigtige firmware til hvert kamera, kontrollerer integriteten med checksums (et digitalt fingeraftryk), tager backup og genanvender brugerindstillinger efter opdateringen. Overordnet konkluderer vi, at måden firmware udvikles, distribueres og anvendes på, alle er medvirkende faktorer for IP-kameraers sikkerhed, og at automatisering af opdateringer kan hjælpe med at reducere risikoen, når leverandører stiller opdateringer til rådighed.

This project examines the security of IP cameras (network-connected security cameras) and develops a practical way to improve it through automated firmware updates. Firmware is the built-in software that runs the device. In our analysis, we found that automatically scanning firmware images to detect known vulnerabilities was not a feasible approach. Instead, we built an automated update framework that depends on device manufacturers to create and maintain official firmware updates. These updates can increase device security, but only if they are actually installed. Our solution aims to automate and streamline updates across cameras from multiple vendors; in this project, we implemented it for devices from Hikvision and Herospeed. The framework selects the correct firmware for each camera, checks its integrity using checksums (a digital fingerprint), makes backups, and reapplies user settings after the update. Overall, we conclude that how firmware is developed, distributed, and applied all contributes to the security of IP cameras, and that automating updates can help reduce risk when vendors provide updates.

[This summary has been rewritten with the help of AI based on the project's original abstract]

Documents

Download
View record in AAU Student Projects