IP Camera Hardening and Cybersecurity Guide |
Secure Configuration and Operation
13 |
14
Data subject to change without notice | August 22
Security Systems / Video Systems
Disposal Guidelines
At a certain point in the life cycle of a product or a system, it might be necessary to replace or to take out of order a device
or a component. As the device or the component may hold sensitive data, like credentials or certificates, make sure to
delete these data completely and securely.
You can set the most devices to factory default. For the most IP cameras and encoders, you can use for this the reset
button. For the ones that do not have a reset button, use the factory default function via the web interface before
dismounting them from the network.
All users and their respective passwords will be deleted, and the settings will be set back to the factory default settings. All
certificates and the respective keys that were stored in the TPM or secure element will also be deleted.
It is recommended to set devices to factory default also in case that they must be moved into another installation that may
use other credentials or certificates.
Reporting Security Vulnerabilities
It is an essential part of the Bosch Quality Promise that we provide product security and protect our customers’ privacy
throughout the entire product life cycle. To achieve this Bosch established a global Product Security Team and made
security an integral part of Bosch’s processes. The Bosch Product Security Incident Response Team (PSIRT) is the central
point of contact for external security researchers, partners, and customers to report security concerns related to products of
Bosch and its brands.
To report a vulnerability, please refer to this page:
https://psirt.bosch.com/report-a-vulnerability/
Bosch is supporting responsible disclosure of vulnerabilities, see our disclosure policy here:
https://psirt.bosch.com/bosch-responsible-disclosure-policy/
