Hanwha Vision “ready to meet” advent of Cyber Resilience Act and NIS 2

With a long-standing commitment to cyber security Best Practice and global compliance, Hanwha Vision has announced its readiness for the upcoming regulations, prior to them being ratified as European Union (EU) law, in order to better prepare impacted firms and afford system end users peace of mind.

The EU’s Cyber Resilience Act is a regulation that sets minimum cyber security requirements for products with digital elements. Under this regulation, products including video cameras must be designed and developed with security in mind, protected against known vulnerabilities and updated regularly through security patches. Users must also be provided with detailed information about product security features and how to use them securely.

Although the Cyber Resilience Act is still being deliberated by the European Parliament and Council, Hanwha Vision is already following the guidelines owing to the comprehensive cyber security processes they implement.

Likewise, NIS 2 is a directive that was adopted by the European Parliament and the Council of the European Union in December 2020. EU Member States are expected to comply with NIS 2 by October 2024 in order to meet specific measures aimed at improving the cyber security of network and information systems across the EU.

As a digital service provider, Hanwha Vision must conduct regular risk assessments in order to identify and assess any risks to its networks and information systems, implement appropriate security measures designed to mitigate any risks identified in assessments and also report cyber security incidents to the relevant national authorities.

Hardened security measures

Hanwha Vision has been hardening its security measures for many years now, including through the removal of chipsets manufactured in blacklisted countries from its products and manufacturing in South Korea and Vietnam.

These and other measures have contributed towards Hanwha Vision’s compliance with the US’ National Defence Authorization Act. As an indicator of responsible design and trusted cyber security, the NDAA is also used across Europe, with Hanwha Vision’s products relied on in many sensitive Government, defence and commercial applications across the region.

Hanwha Vision is also one of the few video device manufacturers to achieve the UL CAP certification for its Wisenet 7 chipset cameras. The Wisenet 7 Advanced System on Chip offers “the highest levels of cyber security” possible with its own device certificate issuing system, as well as Root CA, Secure Boot, Secure Storage, Secure OS, Mutual Authentication and App Verification.

To facilitate a rapid response to any possible security vulnerabilities, Hanwha Vision operates a security vulnerability response team (designated S-CERT). As well as responding to new threats and vulnerabilities, S-CERT carries out regular penetration testing and security checks.

Hanwha Vision is also committed to disclosing any potential vulnerabilities as per its Security Vulnerability disclosure policy and was recently authorised by the CVE Program as a CVE Numbering Authority. This allows Hanwha Vision to identify, define and catalogue publicly reported cyber security vulnerabilities for the benefit of end users, partners and, indeed, the wider information technology and cyber security communities.

Cyber-secure products

Pread Um (Suk Bong), product and marketing director at Hanwha Vision Europe, explained: “Hanwha Vision has always been committed to providing leading cyber-secure products as they are critical when it comes to protecting our customers as well as consumers.”

Further, Pread Um (Suk Bong) noted: “Putting cyber security at the centre of what we do allows us to supply trustworthy security products for demanding and sensitive environments. This affords end users peace of mind as cyber security regulations including the Cyber Resilience Act and NIS 2 eventually come into force.”

*For more information access www.HanwhaVision.eu