When buying new devices, hardware warranty is often prioritized over software support. However, both are crucial for optimal device performance. This article highlights the importance of software support in physical security systems and showcases the industry-leading Axis software support.
Hardware and software are in a symbiotic relationship: the hardware provides the physical foundation, while the software enables a device to perform a range of functions. Without hardware, software lacks a platform, while without software, hardware is unusable.
Axis hardware warranty covers manufacturing defects for 5 years, but the actual service life of a device is often double that. That’s because Axis provides software support through AXIS OS for about 8 to 12 years.
The role of software support is to address product usability issues, often resolved through bug fixes. Given today’s cyberthreat landscape where there is a need to maintain security and stay ahead of legislation, software support also addresses newly discovered vulnerabilities through security patches. At Axis, software support also involves new feature releases with device software upgrades, further improving the capabilities of a product after purchase.
Axis software development represents 80% of its R&D organization. Even though software development and maintenance are challenging and costly, Axis is committed to providing long support periods at no additional cost to customers. This reflects how important we believe software support is to ensure the long-term usability and security of our products. Let’s look at the benefits of Axis software support below.
Benefits of Axis software support
Choice of software support that best fits your needs
Users of AXIS OS-based products – from cameras, intercoms, loudspeakers to access control products – can choose either an AXIS OS release on a long-term support (LTS) track, or an active track.
The LTS track is focused on bug fixes and security patches to address security vulnerabilities and ensure compatibility with third-party systems. The active track offers continuous feature growth in addition to bug fixes and security patches to maximize device functionality and security.
For Axis products running on Microsoft Windows®, the Long-Term Servicing Channel (LTSC) is used to provide long-term support with security updates and a focus on stability. It is ideal for devices such as video management software servers, and systems that require consistency.
It’s important to note that Axis, system integrators, and end customers have a shared responsibility for keeping the software up to date to maximize cybersecurity. Axis provides software updates that include security patches, and as a next step, system integrators and end customers must install them.
Access continuous feature growth
Updating an AXIS OS-based device with an AXIS OS version on the active track allows users to truly future-proof the device over time. You get continuous feature growth, whether it be additional cybersecurity functionality, such as MACsec, FIPS 140-2 Level 1 or other updates such as new analytics.
Security considerations integral to software development
Axis has in place the Axis Security Development Model (ASDM) to ensure that software addresses security considerations throughout a product lifecycle, before and after a product is introduced to the market and when it reaches its end of life. This includes vulnerability management. As a Common Vulnerabilities and Exposures Numbering Authority (CNA), Axis vulnerability management policy informs customers about the conditions under which vulnerabilities will be patched. In addition, Axis provides a security notification service that enables customers to take timely action and keep their systems up to date.
Compliance
Legislation increasingly requires customers to be informed about the security of their products, including their physical security systems. In Axis Trust Center we share information about how Axis implements security compliance, transparency, data protection, and privacy. For example, products running AXIS OS 11 or higher are certified to the ETSI EN 303 645 cybersecurity standard. Standards like ETSI EN 303 645 and EN 18031 aim to strengthen security measures for IoT devices and ensure software updates throughout the product lifecycle. In the EU, initiatives like the Cyber Resilience Act and the Radio Equipment Directive (RED) emphasize the need for regular software updates. The UK's Product Security and Telecommunications Infrastructure (PSTI) Act also mandates transparent disclosure of software support and security updates.
Innovation and leadership go hand in hand. Axis Communications' commitment to transparency is unmatched, for example by being first out in our industry to disclose end-of-software support dates and SBOMs. This underscores our dedication to provide best in class software support in the physical security industry.
Software bill of materials
Axis provides a software bill of materials (SBOM) for its products. SBOM can be found on the support web pages of many products.
SBOM is crucial for transparency and IT security. It provides detailed insights into software components to enable the following benefits:
- Transparency and traceability
- Gives detailed insights into all components in the software, including both proprietary and open-source components. This helps customers identify dependencies, search for potential vulnerabilities or outdated versions, and assess Axis cybersecurity posture.
- Regular maintenance of SBOMs also helps Axis identify and fix security vulnerabilities and outdated components at an early stage. This proactive approach significantly reduces the likelihood of data leaks, system failures, and damage to reputation.
- Efficient response to security incidents
- In the event of a security incident, SBOM enables quick and precise analysis of whether and to what extent a system is affected. This allows customers to take immediate countermeasures and avoid major damage. Axis notification service for security vulnerabilities and other security-related issues enables customers to react to potential threats immediately and update systems accordingly.
- Compliance and risk mitigation
- A SBOM helps customers comply with legal and regulatory requirements. At the same time, it minimizes risks that can arise from undocumented software components.
Clearly stated end of software support date
Axis publishes the end date for software support on the web pages of its devices. Axis device management software applications also provide information on end-of-support dates for connected devices. This provides transparency so that customers know what to expect prior to purchasing a product. It also enables customers to prepare for product retirement and replacement in a timely manner.
Software support is the new standard for long-term usability and security
Software support is essential to network products. While the hardware warranty is crucial in the initial phase, software support is not only invaluable, but indispensable throughout a product's life for optimizing usability and continued security.
In the IT industry, extended support is common to prolong the service life of products. This approach enables companies to protect their investments and react flexibly to changing security requirements. And due to cybersecurity regulations, software updates are increasingly a legal requirement. Axis software support is among the longest in the physical security industry, providing significant value for customers. The existence, length and extent of the software support should, therefore, be important considerations as they not only help maximize the potential of devices, but crucially support the secure, long-term operation of the network products.
