ONVIF, the global standardization initiative for IP-based physical security products, has introduced its Transport Layer Security (TLS) Configuration Add-on (Release Candidate) for secure communications between devices and clients.

TLS Configuration

According to the organization, TLS Configuration is the first in a new category of ONVIF add-ons, which are specifications that extend ONVIF conformance to product features that address a specific use case or end-user need.

Add-ons enhance the ONVIF profile model by enabling conformance to additional features and capabilities not already included in ONVIF profiles.

Profiles are permanent, fixed sets of features that enable a functional product to be developed solely on the profile.

In contrast, add-ons are easily adaptable to evolving technology/specification requirements and support version handling to accommodate new technology additions or updates.

Secure communications

“The TLS Configuration Add-on Release Candidate is a great case for an add-on,” said Leo Levit, Chairman, ONVIF Steering Committee.

“It enables ONVIF conformance in a crucial area of security: secure communications between devices and clients.

“TLS and other cybersecurity specifications must constantly be kept up to date and the add-on concept enables those critical adjustments to be made within the confines of the ONVIF conformance process.”

ONVIF says that the draft add-on supports configuration for TLS encryption, enabling a conformant video management system to initially configure or update TLS settings in a conformant device to support encrypted communications between the device and client.