Revolutionary Applications of DensePose From WiFi: Enhancing Corporate Security and Empowering Military Tactical Teams

Example DensePose Image vs WiFiCutting-edge technologies continue to push the boundaries of what is possible in the realm of wireless communication and security applications.  It seems like every week there is something new in the technology front that enhances our capabilities in the security world.  Most notably since the revelation of ChatGPT, almost everything recently seems to be “AI” (artificial intelligence) based technology.  Cornell University’s groundbreaking research on DensePose From WiFi has emerged as a game-changer, revolutionizing how we perceive and utilize Wi-Fi signals. This article delves into the potential implications of that technology in corporate security for occupancy and muster reporting, as well as exploring its potential for portable deployment variations for military and tactical teams to visualize assailants through walls and barriers.

Understanding DensePose From WiFi (DensePose WiFi)

DensePose From WiFi is a pioneering research project that harnesses the power of radio frequency (RF) signals to track and analyze human movements in a given area. The technology leverages the existing Wi-Fi infrastructure and transforms it into a sophisticated motion-capture system. By analyzing the reflections and refractions of Wi-Fi signals as they interact with the human body, DensePose can generate accurate 3D representations of people’s movements in real-time.  The technology is based off of previous research (called simply DensePose) that utilizes video images with deep learning networks to correlate video camera imaging data to map the estimations of human body poses within its field of view.  DensePose’s objective is to provide human pose estimation that aims at mapping all human pixels of an RGB image to the 3D surface of the human body.   DensePose From WiFi took the video technology, paired it with WiFi data to feed into an AI deep learning model, and then took away the camera feed.  The result is an imaging capability just using radio waves.  Think of it as a type of bat sonar, except using signals from WiFi routers that can see further, and potentially through walls and other objects.

 

The first row illustrates the hardware setup. The second and third rows are the clips of amplitude and phase of the input WiFi signal. The fourth row contains the dense pose estimation of our algorithm from only the WiFi signal.

Corporate Security: Occupancy and Muster Reporting

One of the most promising beneficial applications of DensePose WiFi lies in enhancing corporate security measures, particularly in the realm of occupancy and muster reporting. Traditional methods of monitoring people’s presence within a building rely on physical sensors such as In/Out card readers, AI cameras, mustering point check-in readers, or even manual headcounts, which can be time-consuming and prone to inaccuracies, especially with visitors. However, with DensePose WiFi, businesses can now leverage their existing Wi-Fi infrastructure to precisely track and report the occupancy of various spaces to determine if a space, or even an entire floor, are “all clear”.  An entire building could be scanned within seconds to determine if the building is clear, and if not, provide security or first responders with the floor and exact location where those remaining individuals are.

When integrated with an intelligent security system, DensePose WiFi can monitor the flow of employees throughout a building, ensuring that everyone is accounted for in case of emergencies or evacuation drills. This technology enables real-time muster reporting, providing an accurate headcount and identifying any areas that may require immediate attention during critical situations.

Other potential applications could include patient wandering systems for hospitals, vacancy verification, or even automatic threat assessment alarms generated by certain poses which represent an obvious threat (gun aiming posture, headlock, standing over another person, etc).

Enhancing Security for Military Tactical Teams

The potential applications of DensePose WiFi extend beyond corporate settings and can prove to be invaluable for military tactical teams. In scenarios where situational awareness is crucial, such as hostage rescue missions or urban combat, this technology can be a game-changer.

By outfitting military personnel with lightweight and portable (or perhaps weapon mounted with heads-up display) Wi-Fi like transceivers, tactical teams can effectively “see” through walls or other obstructions. DensePose WiFi would allow operators to detect and track the movements of individuals on the other side of barriers, providing vital intelligence before initiating any tactical actions. This enhanced situational awareness could save lives and offer a considerable advantage in complex and high-stakes operations.

Ethical Considerations and Privacy Concerns

While DensePose WiFi presents tremendous potential for improving security measures, it also raises ethical and privacy concerns. The technology’s ability to generate 3D representations of human movements demands a delicate balance between security and individual privacy. Striking this balance will be crucial for ensuring public acceptance and responsible deployment of this technology in various domains.

DensePose WiFi represents an exciting leap forward in the realms of security and wireless communication. Its applications in corporate security for occupancy and muster reporting promise increased efficiency and safety in emergencies, while its potential use in military tactical scenarios offers unprecedented situational awareness. As this technology continues to evolve, it is essential to address ethical considerations and privacy concerns to foster its responsible adoption and ensure a secure and ethical future for all.

 

Posted in: Access Control, New Equipment and Gadgets, Security Technology

Leave a Comment (0) →

Another Oops for Cloud Services – InfluxDB Halts Service in Belgium/Sydney with Insufficient Customer Notice

In the latest example of “If you don’t own the server you don’t own the data” cloud events, InfluxData recently closed operations in their Belgium and Sydney locations, with apparently woefully inadequate customer notification and follow up. In both instances, users were apparently notified only via email and via the InfluxDB documentation or status website.  The hows and whys are a little fuzzy, but suffice to say that InfluxData management made some very unusual decisions to turn off services and delete customer data… with what is overwhelmingly being called “insufficient notice”.   It appears that this event may have cost InfluxData some customers, or new customers at least, as they try to dig out from under this fiasco.

In fairness, they did provide notification via their cloud status page, but who looks at that unless there’s an outage or service degradation?   You can follow the thread here if you want to see the drama unfold: https://community.influxdata.com/t/getting-weird-results-from-gcp-europe-west1/30615/19

 

While we are not aware of any security product that uses InfluxDB for it’s cloud database, there are plenty of examples of video and access control products that use cloud based database instances or other cloud dependent services.  InfluxData uses Google, Azure, and AWS for it’s hosting services, so this wasn’t a case of a company that suffered a catastrophic site failure or financial bankruptcy issue.  This was more likely a financial issue to discontinue services for poor performing areas and focus on better areas.  It certainly was well within InfluxData’s rights to do so too, but apparently could’ve been communicated much better.  Further, there was no attempt to migrate the user’s data to another region, or even provide backups of the data for user’s to migrate themselves.

Responses from user’s on the support page was scathing, if not somewhat in disbelief too:

Users from the Sydney region weren’t so lucky, as apparently there were no measures taken to be able to restore their data:

All of this is just to say that thousands of business run on cloud services every day, and many of them probably have no idea about what their hosting provider’s service level guarantee or disruption notification policies are.   Further, just because your cloud service guarantee they are backing up your data doesn’t mean you shouldn’t be backing it up also… to your own storage.. that you own.    If you must use security software in the cloud and store your data there, have a business continuity plan that includes your cloud provider services and the recovery of the data that is stored there.

Now repeat after me, “If you don’t own the server, you don’t own the data”…

 

 

Posted in: Cloud Services, Security Technology, Vulnerability Analysis

Leave a Comment (0) →

The Importance of Security Consultants in Designing Effective Security Systems

In an ever-evolving world with increasing security concerns, it has become imperative for businesses and organizations to prioritize the implementation of robust security systems. However, choosing the right approach and ensuring an effective security setup is not always straightforward.  A renewed trend that was prevalent a couple of decades ago was for integrators to offer “consulting and design services’.   Often, businesses rely on security integrators to design and install their security systems, and for certain size projects that makes sense.  Why hire an outside consultant to design a small retrofit project?    While security integrators play a crucial role, there are significant benefits to involving a security consultant in the design process. In this article, we will explore the virtues of using a security consultant and highlight examples of where security installers have fallen short or encountered conflicts of interest.

  1. Unbiased Expertise: A security consultant brings a unique perspective and unbiased expertise to the table. Unlike security integrators who are often affiliated with specific brands or manufacturers, security consultants have a broader understanding of the security landscape and can offer impartial advice. Their experience in assessing risks and designing comprehensive security strategies ensures that the resulting system is tailored to the specific needs of the organization.   We don’t sell or install anything, and thus have no particular preference for what products the client may choose to consider for their project.  That doesn’t mean we won’t make recommendations about their requested choices (see our past articles about our strong feelings on putting corporate security data in the cloud or using NDAA banned products).  The short version:  if your consultant receives remuneration from a manufacturer or vendor for the products they specify, find another consultant.
  2. Conflict of Interest: One of the key concerns when relying solely on security integrators is the potential for conflicts of interest.  Integrators may be motivated to prioritize their own profit margins or partner relationships over the best interests of the client. This can lead to compromised system designs, subpar equipment selection, or inadequate coverage.   You may be sold a particular brand or product line because there is a sales goal incentive being pushed by management or the manufacturer.   Worse, it is not uncommon for integrators to unload poor selling product or superseded parts in order to clean up their inventory.   This is fine if the client is aware and accepts the product (presumably for a discount), but sometimes it is done without their knowledge.  By involving a security consultant, businesses can mitigate these conflicts and ensure that their security system is designed with their unique requirements in mind.
  3. Prevent Poor Project Management:  Integrators will often bake in “project management” and “system check out” line item fees in their proposals, claiming to offer project management and punch list services for their own installation phase.   This is very much like having the fox watch the hen-house.  In one recent case, we saw a project where a vendor substituted the installed camera
    Poor project management and no punch list results in poor installations.

    Poor project management and no punch list results in poor installations.

    models with inferior (cheaper) models AFTER they received the bid award and purchase order.   The client didn’t catch it, but we did during project field inspections.   Never let the integrator perform their own punch list and acceptance testing.

  4. Post Installation Documentation:   Trying to get as-built documentation is often another problem.   While almost nobody likes doing as-built drawings, their value should never be underestimated.  Ask anyone who has done a retrofit project without them.  If the client does not hold back a percentage of payment until all punch list items are complete and all as-built documentation is submitted, then the likelihood of that work ever being done without further consideration can be very low.  Too, often the integrator will simply take the original design drawings and update them slightly (or not at all) and turn them in as the as-built documentation.  That is insufficient.  Good as-built documents include the original equipment list (mfr/model, qty, serial #s, IP addresses, power, etc) and locations, riser diagrams, installation details, as well as the point-to-point wiring and configuration details for every piece of installed equipment.   If the vendor uses a tool like System Surveyor or Fieldwire, ask for the full report to be printed to PDF and included in the as-built documentation.  (You may also want to request they delete the data being stored on the cloud if your organization has data retention policies that concern this situation).
  5. Comprehensive Risk Assessment: Security consultants conduct thorough risk assessments to identify potential vulnerabilities and areas of concern. This includes evaluating physical vulnerabilities, assessing technological risks, and analyzing procedural weaknesses. By considering these factors during the design phase, consultants can develop an integrated security system that addresses identified risks, ultimately providing greater protection against potential threats.  This may include out-of-scope items that may not be viable under the current project funding, but can be provided to the client so the cost can be projected under future budgets or other projects which can resolve the issue.
  6. Future-Proofing: Security systems should be adaptable and scalable to meet evolving security requirements. Integrators might focus solely on immediate needs, potentially overlooking future expansion or technological advancements that may be outside the scope of their work or capabilities.  Security consultants, however, take a holistic approach by considering the long-term goals and growth plans of the organization. This ensures that the security system is flexible and can accommodate future upgrades or changes without significant disruptions or additional costs.

While security definitely integrators play a critical role in the installation of security systems, involving a security consultant during the design and project management phases offers numerous advantages. Their unbiased expertise, ability to identify vulnerabilities, and focus on long-term planning can significantly enhance the effectiveness of a security system. By avoiding conflicts of interest and addressing potential pitfalls, businesses can ensure a comprehensive and robust security solution tailored to their specific needs.

Remember, investing in the services of a security consultant is an investment in the long-term safety and security of your organization. Don’t leave the design of your security system to chance—seek the guidance of an expert to achieve the peace of mind you deserve.

Posted in: Access Control, CPTED, Premises Liability, Security Consulting, Security Technology, Vulnerability Analysis

Leave a Comment (0) →

Vatican’s Security Dilemma: Dahua Cameras and the Potential Risks

The Vatican City, the spiritual and administrative headquarters of the Roman Catholic Church, is an iconic destination visited by millions of tourists and worshipers each year. With its priceless artworks, historic buildings, and religious significance, protecting the Vatican’s security is of paramount importance. During a recent tour, we noted that the Vatican has implemented a security system featuring Dahua cameras, a leading Chinese manufacturer, for their VMS platform. However, the adoption of Dahua cameras has raised concerns regarding potential security risks. In this article, we explore the utilization of Dahua cameras in the Vatican and the associated challenges.

A Dahua PTZ camera installed on the exterior wall of the Vatican City.

A Dahua PTZ camera installed on the exterior wall of the Vatican City.

Dahua Cameras: Advanced Surveillance Technology

Dahua Technology is a well-known Chinese company specializing in the production of surveillance equipment, including security cameras, recorders, and software. Their products are widely used around the world, known for their affordability. Dahua cameras incorporate cutting-edge technologies like facial recognition, high-resolution imaging, and intelligent analytics, enabling comprehensive monitoring and analysis of security footage.

The Vatican’s Decision to Deploy Dahua Cameras

Given the Vatican’s stature as a symbolic and historical landmark, ensuring security is a complex undertaking. In an effort to enhance their surveillance capabilities, the Vatican opted to implement Dahua cameras in various locations, including public areas, museums, and the St. Peter’s Square. The decision to deploy Dahua cameras was likely driven by their advanced features, wide product range, and competitive pricing (The only other dominant international CCTV brand evident around Rome was Avigilon).

Security Risks Associated with Dahua Cameras

The following are at least some of the obvious identified risks associated with the Vatican’s choice to deploy Dahua hardware:

  1. Data Security Concerns: One of the major concerns with the use of Dahua cameras is the potential for data breaches and unauthorized access. There have been reports suggesting that Dahua cameras may have security vulnerabilities (perhaps government sponsored or otherwise) that could be exploited by malicious actors.  Any vulnerabilities in the software or firmware of the camera system could potentially expose sensitive footage and compromise the safety of the Vatican and its visitors.  There are many examples of previous breaches easily found on the internet to demonstrate the potential damage for this kind of exposure.
  2. Surveillance Backdoors: There have been allegations that certain Chinese-made surveillance equipment, including Dahua cameras, may have built-in “backdoors.” These backdoors could potentially allow unauthorized access or remote control of the cameras, leading to a breach of privacy and security. Although Dahua has addressed some of these concerns by releasing firmware updates, the risk remains a significant consideration and there is some uncertainty in the industry if ALL of the backdoors have actually been removed.
  3. Geopolitical Implications: The utilization of Chinese-made surveillance technology raises geopolitical concerns. The Vatican’s decision to rely on Dahua cameras might inadvertently involve the Vatican in geopolitical controversies, considering the Chinese government’s influence over its technology companies. This situation could have diplomatic implications and potentially impact the Vatican’s relationship with other countries.  While the Vatican is a sovereign country and is not subject to the US NDAA as some  entities may be in this country, there well may be implications and consequences in foreign relations with NATO or EU countries that do have these types of protective legislative measures in place.
  4. Installation methods:  During our tour of the Vatican interior we noted that the cameras were installed using surface mount brackets and then plugged into a CAT5 jack located near the
    Interior Dahua camera plugged into data jack noted during tour of Vatican

    Interior Dahua camera plugged into data jack noted during tour of Vatican

    camera location.  In at least two cases, it would have been trivial for a (tall) person to simply unplug the camera from the jack or even cut the category cable to disable the camera.

Mitigating the Risks

So what should the Vatican do, if anything, to mitigate the risks of having Chinese government backed security equipment with history of known flaws in the firmware and architecture?  Given the resources available to the Vatican, our recommendation would be to hire a professional consulting firm to do a risk assessment on the installed VMS platform and recommend a replacement with a brand manufactured by a reputable company with a good performance record and advanced features needed by a prestigious venue such as the Vatican.   Short of that, other additional measures that should be considered are as follows:

  1. Rigorous Cybersecurity Measures: The Vatican should implement robust cybersecurity protocols, including regular firmware updates, network segregation, and encryption. Conducting regular security audits and penetration testing can help identify and address vulnerabilities promptly.  All security cameras should be on a separate physical network or VLAN that is not routable to the internet, with network intrusion detection systems IDS features implemented on the network switches and routers.
  2. Diversification of Suppliers: The Vatican could explore diversifying its camera suppliers to reduce the risks associated with dependence on a single manufacturer. Adopting a multi-vendor approach would provide more options and potentially enhance security by selecting cameras from different sources.  This can have implications itself in terms of spare parts inventory, and camera configuration and firmware management headaches by having multiple vendors with multiple models.  Using a major brand manufacturer such as Axis, Hanwha, Avigilon, or Bosch would ensure there are enterprise class tools available to manage these aspects.
  3. Enhanced Collaboration: Collaborating with cybersecurity experts, both internally and externally, would help the Vatican stay informed about potential threats and implement appropriate countermeasures. Engaging with experts in the field can ensure the continuous monitoring and evaluation of the security system.
  4. Installation Standards:  The Vatican should develop and apply security equipment and installation standards that should be implemented for all existing and new security devices.  All devices should be vandal resistant where possible, and all cabling should be protected in conduit or other protected raceway to prevent vandalism or sabotage.  Camera devices should have a minimum mounting height and standard for field of view and focal length based upon the objective and purpose.   Advanced analytic methods should be implemented for object detection and classification, facial recognition, license plate recognition, and other intelligent video analytic technologies such as people counting, loitering, object removal, object identification, line crossing, etc.

Conclusion

The Vatican’s decision to adopt Dahua cameras reflects its commitment to improving security and safeguarding its treasures. However, it is important to acknowledge the potential security risks associated with using this technology. The Vatican should diligently address these risks by implementing robust cybersecurity measures, considering alternative suppliers, and maintaining an ongoing dialogue with cybersecurity experts. By doing so, the Vatican can strive to strike a balance between utilizing advanced surveillance technology and mitigating potential security vulnerabilities, ensuring the protection of its spiritual and historical significance for generations to come.

Posted in: CPTED, IP Video, New Equipment and Gadgets, Premises Liability, Security Technology, Vulnerability Analysis

Leave a Comment (0) →

Lockset Functions

This article was taken from another website and modified to add some additional details. I was looking online for some simple definitions of lockset types and found this page by The Flying Locksmiths. I have no connection to this business and they don’t even know who I am, but I liked the information so much I decided to post it here with a credit to them for the good work.

Here is some common industry knowledge and terminology to help make you a more informed consumer:

(There are other functions outside these five, but they are far less common and only needed in special circumstances.)

1. Entry Lockset Function. This is the most common type of lock and chances are, you probably have them on your home or office now. An entry function lockset will have a small button or rotating lever on the inside of the knob/lever handle, allowing you to manually lock the door  when you choose. Most types will allow you to push the button in or push it in and turn the button, causing the lock to remain locked, even after a key is inserted and used. You will most commonly find them on residential homes, on front and back doors.  Deadbolt locks very common in homes and  are auxiliary type locks that have a bolt that extends into the strike plate and supporting door jamb, activated by rotating lever knob or a key.  Sometimes the key operation is on both sides of the lock. 

2. Storeroom Lockset Function. This particular lock, is always locked and requires a key to be used each time you want to enter. There is no button on the inside and does not come with an option to leave the door open. It’s perfect for commercial uses, on a supply closet, because it will ensure that the door is locked, as long as it’s closed. You don’t want anyone stealing those pens and papers!

3. Classroom Lockset Function. Classroom function is used for exactly what you would think, a classroom! Much like to the storeroom function lockset, this lock does not have a button on the inside. However, it DOES have the ability to be left unlock, but ONLY with a key. A full turn will lock or unlock the knob/lever, allowing only the person with the correct key to leave the door open. It’s a great lock for anyone who doesn’t want to leave a door open, unless they authorize it to be.

4. Privacy Lockset Function. This lockset is used primarily in bathrooms and/or bedrooms, intended for the purpose its name suggests; privacy. They will most often have a small hole on the outside, and a push button on the inside. The small hole on the outside can be opened with any kind of pin or paperclip, simply by pushing it in. They are not designed to be used as a main locking device, but just a means to keep someone from walking in when you are using the bathroom or getting dressed in a bedroom.

5. Passage Lockset Function. This is hardly a “real” lock at all! This knob lever doesn’t actually lock, it just keeps the door latched to the frame, so they don’t blow around in the wind. You will commonly find them on closets in a home or doors that just don’t need to be locked in general. Some people will also use them on bedrooms, so you can close the door, but not lock it.

 

Posted in: Access Control, Company News

Leave a Comment (0) →

UPDATED – WRAL and Other News Agencies Effectively Building a “How To” List for Utility Terrorism

It’s not news that two Duke Energy power substations were attacked in Moore county last week.  There is a ton of speculation about why the attacks were carried out and by whom, but the thing we aren’t short of information about is what they did and what law enforcement is doing about it.Photo Credit to News9, Oklahoma City, OK.

Various articles over the last week have been published by local news stations and other news media regarding the attacks, pointing out exactly HOW the attacks were performed, what damage was caused, and the impact upon the power grid by doing so.  All of this information is published under the First Amendment, presumably for the public good.   We think it’s more likely for clicks and advertising viewership, but mmmkay.   One thing is for certain, copy cats and wannabe terrorists are absolutely paying attention, and the media is essentially building for them a “how to” list for carrying out attacks on utility substations and the power grid.   We predict there will be more of this type of activity, with few options for the utilities to actually mitigate this without significant capital expenditures.

The latest “how to” entry is that the FBI is using cell phone data to try to correlate cell phone account holders in the vicinity prior to and during the time of the attacks (we know exactly WHEN the attacks happened because the power went out).  The reality is that there are probably more than a few people that are going to be on that last and will be interviewed by law enforcement about their whereabouts and activities.  Maybe the culprits forgot to turn their phones off or leave them at home will be interviewed and caught.  But rest assured about one thing, the NEXT attack done won’t have anybody carrying an active cell phone…

(Note, we don’t represent Duke Energy in this matter and are not involved in this event in a consulting or investigative capacity) 

We wrote a letter to WRAL requesting the redact portions of their news report (https://www.wral.com/gunfire-caused-damage-that-led-to-moore-county-blackout-schools-closed-monday/20612201/) which provides detailed information about the attack and even quotes former FERC head John Wellinghoff on the effective damage that was caused:

The former head of the Federal Energy Regulatory Commission Jon Wellinghoff explained the severity of the damage to WRAL News.

“Somebody with a high-powered rifle puts a bullet through the case of a transformer and once it goes into the case of the transformer it hits the coils of the transformer, shorts it out, and it’s gone; That that device is no longer operable,” said Wellinghoff. “It can’t be fixed, it needs to be replaced. It cannot be repaired.”

Wellinghoff also shared insight into the repair process.

“A lot of these transformers also are sort of one-offs. It’s not like you can cookie-cutter replace them with another one from some other utility in the next county or the next state,” said Wellinghoff. “They have to be made sort of custom for the particular substation that they’re in. So if they don’t have spares for that particular substation, it could take a considerable amount of time.”

In effect, reading the totality of information presented by WRAL alone helps copy cat criminals build a “how to” list for carrying out similar types of attacks with little risk of getting caught.  This is irresponsible journalism, and they should know better.  For that matter, Wellinghoff should ABSOLUTELY know better.  It’s unfortunately not just WRAL acting alone, but apparently standard journalist practices today to divulge information that could lead to a rash of domestic terrorism that could impact significant portions of the country, and have long lasting effects.

We support and recognize the need for the First Amendment, it’s a critical component that makes America the best country in the world to live and thrive in.  However, the press should honor and respect the need for operational security and the risk for “copy cat” crimes, or even escalation of crimes by their irresponsible reporting.  We’ve seen this effect in school shootings, serial killings, etc, where individuals see news reports and articles and are incepted and maybe even encouraged to perform similar crimes under the guise that such crime will bring them notoriety and fame (or at least infamy).     Yet the media is never held responsible; maybe they should be.   This is the reason you no longer see nude runners streaking on the field during NFL game broadcasts, the cameras are told not to video the streakers so they won’t get their “15 minutes of fame”, just jail time.   That’s called being responsible for what you broadcast.

As a security professional, if you see articles or news broadcasts that represent a danger to society, call or write to that news agency and give them your feedback about irresponsible journalism.  We don’t want censorship, we just want responsible reporting.

UPDATE 12/27/22 – Almost like clockwork, the prediction has come true, with several new attacks on substations in Tacoma, WA.  https://www.nytimes.com/2022/12/27/us/power-substation-attack-washington-state.html

 

Posted in: CPTED, Security Consulting

Leave a Comment (0) →

NEC and Conduit Fills for Communications and Security Cabling

A question that comes up frequently for us when working on security projects with high density device counts is conduit fill.   That National Electrical Code typically wants to limit conduit fill to less than 40% of the capacity for cables in the raceway.  This is based upon the dimensions of the conductors and the potential for “jamming” or stressing the cable and potential thermal issues that could lead to electrical fires.  This is referenced to apply to power cabling for AC power conductors.

We all know (or should know) that metallic low voltage communications cabling (e.g. CAT6 network, dry contact devices, card readers, etc) can’t be run in the same conduit as AC power cabling, so what is the limitation for conduit fill for low voltage security cabling?

Whenever you are in doubt, you should always consult with the AHJ, but in reality the NEC basically doesn’t care and it will likely never be inspected.  The manufacturers of these cables may have some recommendations on maximum fill ratings to reduce the pulling tension to minimize stretching or damaging the cable, however.  There are other factors in play of course: cable type, conduit type, distance, number of bends, and pulling lubricant used.

In short, be conservative with conduit fill for long runs of delicate small gauge multi-conductor cables like 22AWG TSP or CAT6A that could be damaged.   But for vertical cores between floors that are typically very short runs, you can probably fill to 80% without any significant risk, as long as the cable is properly supported and there is sufficient room remaining to properly apply intumescent firestop sealant.

Posted in: Access Control, Security Consulting

Leave a Comment (0) →

Playing Around with the PinPoint Survey Application using Amazon Data

We put together a quick demo of the PinPoint Survey Application using some public data scraped from the web for all the US Amazon sites.  The equipment names and photos are all generated, so don’t get too excited about thinking there are real Amazon security equipment details being posted on the web.

Some of the reporting features are turned off, but the overall objective was to show off the speed and utility of the site data and geospatial mapping capabilities for relating sites and equipment within those sites.

Using the application from a tablet, you can use the built-in GPS to map the device lat/lon data to the database, along with any photos, notes, and punch list information that might be relevant.  This is particularly useful for large external sites like ports, refineries, mines/quarries, or power generation/transmission facilities.

GIF Movie of PinPoint Survey Application using demonstration data for Amazon sites

PinPoint Survey Application Short Demo

Posted in: Access Control, Application Development, CPTED, Premises Liability, PSIM, Security Consulting, Security Technology, Vulnerability Analysis

Leave a Comment (0) →

NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

C++ Code example of memory overrun.

When the NSA makes a post about software best practices to reduce hacking attempts, you know there’s a problem.  For the non-programmers, a memory safe programming language is one that has built-in features to reduce or eliminate the possibility of a poorly crafted program to be exploited (usually by malicious input) by causing a memory buffer overrun or similar failure that can corrupt data, run a malicious payload, or escalate privileges.  These problems have been around for years, and there are several programming languages that are common offenders (C and C++), but are ubiquitous and have long codebase history that makes it unattractive to rewrite.

Fortunately there are quite a few memory safe programming languages to choose from, such as C#, Go, Java, Ruby, Rust, and Swift.  Of course it’s not enough to just change programming languages, good security coding practices, hardening tools, safe compiler options, and thorough testing should also be used as well.

For the NSA full article, click here:  https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3215760/nsa-releases-guidance-on-how-to-protect-against-software-memory-safety-issues/

Posted in: Company News

Leave a Comment (0) →

HID Signo Reader Shortage

As most people in the security industry know by now, Motorola HID has been having supply chain issues for months now for readers.  As a temporary solution, they are offering a new product line, “Signo Priority” readers, which lack the 125Khz Proximity function.

Signo Priority Features
 
– Same lifetime warranty as the traditional Signo readers
– Current lead time is 7 days (Sept 2022)
– Configured by profiles: Standard, Smart, Seos and Custom
– IP65 certified
– Automatic self-calibration when nearby metal surfaces are detected
– Factory equipped with Bluetooth (BLE Smarts) and NFC
 
Differences from traditional Signo Readers
 
– Lead time > 180 days (Sept 2022)
– Signo Priority will not read 125 Khz Proximity
 
If 125Khz reading is not needed, only 13.56 Mhz,  please consider the Signo Priority Reader X0NKS-T0-000000 as a substitute for the Signo Traditional X0NKS-00-000000 readers.

 

 

Posted in: Company News

Leave a Comment (0) →
Page 1 of 5 12345