Axis Communications announced support for the IEEE 802.1AE MACsec security standard in the latest release of its operating system, AXIS OS 11.8, for more than 200 network devices, including cameras, intercoms and audio speakers.
According to the company, the development enables such devices to automatically encrypt data at a foundational level to enhance zero-trust networking. Axis says it is the first manufacturer of physical security products to support MACsec (Media Access Control Security).
With AXIS OS 11.8, MACsec is enabled by default (through EAP-TLS/Dynamic CAK mode). Data is encrypted at the Ethernet Layer 2 (data link) network level, safeguarding the integrity of data being transferred between Axis devices and MACsec-enabled Ethernet switches.
Axis says that, even if a user is already implementing HTTPS or a different form of encryption at another layer, adding MACsec at layer 2 effectively double encrypts the data, meaning that an attacker would need to intercept and decrypt both layers in order to see or steal critical information.
“Customers benefit from security features that are enabled by default and that do not require any pre-configuration,” said Andre Bastert, global product manager, AXIS OS, in a statement. “They lower installation complexity, and thereby, literally save time and money. These security features are great examples of zero-trust security that do not require more time from customers. With the increase in the convergence of OT (operational technology) and IT (information technology), these standard security mechanisms are what IT professionals expect of smart IoT products, and we are meeting their needs as part of Axis’ long-term strategy to enable secure, zero-touch integration of Axis network products into zero-trust networks.”