All Bosch IP cameras come with an onboard security chip, which they call the Trusted Platform Module (TPM).
The TPM serves as a safe for critical data - protecting certificates, keys, and licenses - from unauthorized access even when the device is physically opened.
The TPM is a self-contained system that acts like a cryptographic coprocessor to the camera system. Communication between the camera firmware and the TPM chip happens via secure apps inside the TPM, which provide the interfaces and commands for certain functionalities.
All critical cryptographic activities are handled by the secure apps which make use of the TPM's internal resources. Private keys, if loaded with a certificate, are stored inside the TPM and are then no longer retrievable without the cryptographic operations provided by the TPM. Private keys that result from certificate signing requests are created internally and never revealed outside the TPM, making certificate enrollment via certificate signing requests the highest level of security.
Learn more about cyber security protection of security cameras here.
Featured Technical Note
A new technical note: "Trusted Platform Module explained: What it is, what it does and what its benefits are" provides more detail on this topic and also compares the security of a device with a TPM to one without.
Contact our security experts for free advice