Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

Startup Gives Video New Look

SteelBox's new capabilities for video traffic management and storage could make large-scale surveillance workable in the enterprise

An attacker walks up to the door of a corporate headquarters building, waits nonchalantly for someone to come by with a passcard, and then walks right in. Security doesn't see him -- there's no video camera at that door.

This situation is not uncommon at many large enterprises where video's high-bandwidth demands have caused many network managers to put the kibosh on companywide surveillance systems.

Now, a startup company, SteelBox Networks Inc., is hoping to change all that. SteelBox, which has been living on angel funding and founder financing for the last few years, today received a $10 million cash infusion from Sierra Ventures, a well-known venture capital firm.

"Up to now, we've been selling mostly through partners and focusing on some big applications in the transportation industry," says Richard "Chip" Howes, founder and CEO of SteelBox. "But by the end of the year, enterprises will hear a lot from us, and it could make a difference in the way they look at video surveillance."

SteelBox has developed a video surveillance device -- essentially an IP network switch -- that is capable of prioritizing and storing large amounts of video data without sucking up enterprise network and storage resources.

"Where similar types of [network video recorders] can only handle maybe 64 cameras in a single box, ours can handle 500," Howes says.

The secret is a new video-specific quality-of-service capability that allows the SteelBox system to prioritize the most important video traffic over the IP network while minimizing the bandwidth used for uneventful video. Similarly, the system uses video compression to store petabytes of data in a single box, minimizing the impact of the surveillance technology on enterprise storage resources. The system can store MPEG2, MPEG4, and MJPEG files on the same storage subsystem at the same time, SteelBox says.

"We have high hopes for SteelBox," says Mike Scanlin, a partner at Sierra Ventures. "It enables hundreds of video streams per system, compared to the tens of streams that competing products offer."

The SteelBox technology has also been installed in several transportation-related projects to monitor the security of roads, tracks, and terminals. Working with Telindus Surveillance Solutions Ltd., SteelBox installed an IP switched closed-circuit television system as part of the U.K. Highways Agency's National Roads Services Telecommunications Services (NRTS) project earlier this year.

The SteelBox technology was "ideal" for the project, "as it is able to record high-quality video images on a reliable image recording device and provide low latency images across the network," says Mark Hutchinson, managing director of Telindus U.K.

Howes declined to say exactly when the startup will begin rolling out products for the corporate enterprise, or exactly what its price point will be. "We will be price competitive with other NVR systems that are out there," he says.

— Tim Wilson, Site Editor, Dark Reading

  • SteelBox Networks Inc.

    Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Attackers Leave Stolen Credentials Searchable on Google
    Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
    How to Better Secure Your Microsoft 365 Environment
    Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win an Amazon Gift Card! Click Here
    Latest Comment: We need more votes, check the obituaries.
    Current Issue
    2020: The Year in Security
    Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
    Flash Poll
    Assessing Cybersecurity Risk in Today's Enterprises
    Assessing Cybersecurity Risk in Today's Enterprises
    COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2021-1070
    PUBLISHED: 2021-01-26
    NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an un...
    CVE-2021-1071
    PUBLISHED: 2021-01-26
    NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to...
    CVE-2020-23774
    PUBLISHED: 2021-01-26
    A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed.
    CVE-2020-23776
    PUBLISHED: 2021-01-26
    A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request.
    CVE-2021-3309
    PUBLISHED: 2021-01-26
    packages/wekan-ldap/server/ldap.js in Wekan before 4.87 can process connections even though they are not authorized by the Certification Authority trust store,