▾ G11 Media Network: | ChannelCity | ImpresaCity | SecurityOpenLab | Italian Channel Awards | Italian Project Awards | Italian Security Awards | ...
InnovationOpenLab

Axis Products With AXIS OS 11 Now Support IEEE 802.1AE MACsec, Significantly Enhancing Security in Zero-Trust Networks

Axis Communications, a leader in network video, announces the support for the IEEE 802.1AE MACsec security standard in the latest release of the Axis operating system, AXIS OS 11.8, for more than 200 ...

Business Wire

Added layer of security and encryption—long recognized and required by IT departments— now incorporated into Axis devices

CHELMSFORD, Mass.: Axis Communications, a leader in network video, announces the support for the IEEE 802.1AE MACsec security standard in the latest release of the Axis operating system, AXIS OS 11.8, for more than 200 network devices, including cameras, intercoms, and audio speakers. The development enables such devices to automatically encrypt data at a foundational level to enhance zero-trust networking. Axis becomes the first manufacturer of physical security products to support MACsec (Media Access Control Security), underscoring the company’s ongoing commitment to both device and data security.

With AXIS OS 11.8, MACsec is enabled by default (through EAP-TLS/Dynamic CAK mode). Data is encrypted at the Ethernet Layer 2 (data link) network level, safeguarding the integrity of data being transferred between Axis devices and MACsec-enabled Ethernet switches. Because it operates at layer 2, MACsec can encrypt and protect data that could not previously be encrypted such as NTP, DHCP for general device operation, and RTP/RTSP for video streaming. Even if a user is already implementing HTTPS or a different form of encryption at another layer, adding MACsec at layer 2 effectively double encrypts the data, ensuring that an attacker would need to intercept and decrypt both layers in order to see or steal critical information. This makes the attacker’s job considerably more difficult, significantly increasing protection against attacks including denial of service, intrusion, man-in-the-middle data insertion and eavesdropping.

“Customers benefit from security features that are enabled by default and that do not require any pre-configuration,” says Andre Bastert, Global Product Manager of AXIS OS. “They lower installation complexity, and thereby, literally save time and money. These security features are great examples of zero-trust security that do not require more time from customers. With the increase in the convergence of OT (operational technology) and IT (information technology), these standard security mechanisms are what IT professionals expect of smart IoT products, and we are meeting their needs as part of Axis’ long-term strategy to enable secure, zero-touch integration of Axis network products into zero-trust networks.”

The adoption of IEEE 802.1AE MACsec builds on Axis’ implementation of the IEEE 802.1AR Secure Device Identity (DevID) standard, together with IEEE 802.1X EAP-TLS network access control. Default support for the three IEEE standards on Axis devices enables automated device onboarding, authentication, and end-to-end encryption, providing IT professionals with standard mechanisms to efficiently and securely integrate Axis devices into a corporate network.

MACsec allows for an exchange and verification of encryption keys between a MACsec-enabled device and switch. Data within each Ethernet frame is then encrypted and decrypted in real time using AES-GCM 128-bit, enabling fast and secure transfer of data. AXIS OS 11.8 supports the two standard IEEE 802.1AE security modes: dynamic CAK (EAP-TLS), which is automatic and enabled by default, and static CAK (pre-shared key) for manual configuration.

Secure onboarding of an Axis device can be done through IEEE 802.1X EAP-TLS port-based network access control, in combination with an Axis device’s support for IEEE 802.1AR. IEEE 802.1AR is part of the Axis Edge Vault cybersecurity platform and enables automatic authentication in an IEEE 802.1X network. Axis loads unique, IEEE 802.1AR-compliant Initial Device Identifiers (IDevIDs) into a tamper-protected hardware cryptographic computing module that is embedded in Axis IoT products at the time of manufacture, protecting the IDevIDs against probing.

Seamless onboarding can be achieved with any network access control solution that supports the IEEE standards; for instance, with HPE Aruba Networking ClearPass Policy Manager, for which an integration guide is available.

For more information on IEEE 802.1AE MACsec, please visit the Axis solutions page for enterprise IT or the AXIS OS knowledge base.

Fonte: Business Wire

If you liked this article and want to stay up to date with news from InnovationOpenLab.com subscribe to ours Free newsletter.

Related news

Last News

RSA at Cybertech Europe 2024

Alaa Abdul Nabi, Vice President, Sales International at RSA presents the innovations the vendor brings to Cybertech as part of a passwordless vision for…

Italian Security Awards 2024: G11 Media honours the best of Italian cybersecurity

G11 Media's SecurityOpenLab magazine rewards excellence in cybersecurity: the best vendors based on user votes

How Austria is making its AI ecosystem grow

Always keeping an European perspective, Austria has developed a thriving AI ecosystem that now can attract talents and companies from other countries

Sparkle and Telsy test Quantum Key Distribution in practice

Successfully completing a Proof of Concept implementation in Athens, the two Italian companies prove that QKD can be easily implemented also in pre-existing…

Most read

Chai Discovery Unveils Chai-2 Breakthrough, Achieving Fully De Novo Antibody…

Chai Discovery, which builds frontier artificial intelligence to predict and reprogram the interactions between biochemical molecules, today announced…

NiCE Unveils 2025 International CX Excellence Award Winners, Spotlighting…

#AI--NiCE (Nasdaq: NICE) today announced the winners of its 2025 International CX Excellence Awards, honoring organizations from across EMEA and APAC…

Roblox to Report Second Quarter 2025 Financial Results on July 31, 2025

Roblox Corporation (NYSE: RBLX) today announced that it will report the company’s second quarter 2025 financial results before the opening of the U.S.…

LambdaTest Announces Deeper Collaboration with Appium as Strategic Partnership

#AI--LambdaTest, a unified agentic AI and cloud engineering platform, has announced it has become a strategic sponsor of Appium, the world’s most widely…

Newsletter signup

Join our mailing list to get weekly updates delivered to your inbox.

Sign me up!