High Marks For TAG On OWASP Security Audit
Once logged in you can set content preferences to let us know what you are interested in and whether you want to receive email from us.
Already Registered? Login
TAG Video Systems has received high marks for its security protocols following a rigorous and thorough two-part audit based on criteria developed by the Open Web Application Security Project (OWASP).
According to Paul Briscoe, TAG’s chief architect, the results of this audit are a testament to the Company’s success in providing heightened security to its customers.
“One of the hottest topics today is security,” explained Briscoe. “Our customers deserve to know that their systems are pristine and their most valuable asset – their content, is safe. TAG supports all the standard safety protocols such as HTTPS and FTPS, offers Proxy capabilities to prevent unauthorized Internet access, and is constantly integrating updated security levels into our MCM-9000. We welcomed the opportunity to be audited and we’re proud to announce that the audit verified the effectiveness of our safety protocols.”
The security of TAG’s software-based MCM-9000 Multiviewer and monitoring solution was the subject of the dual-phased audit. The first part, Penetration Testing, assessed the solution’s ability to withstand breach attempts aimed at harming the system itself, or at gaining access to other applications on the infrastructure. TAG’s MCM-9000 scored high marks, proving itself resistant to unauthorized access.
Phase two of the audit, developed by OWASP and known as the Application Security Verification Standard (ASVS), evaluated the MCM-9000’s ability to address and mitigate the TOP 10 most critical security risks facing web developers and applications, including: injection flaws, broken authentication and access control, sensitive data exposure, poorly configured XML processors, security misconfiguration, cross-scripting flaws, insecure deserialization, vulnerable components and insufficient logging and monitoring. Phase two examined the procedures that were undertaken to develop the software and the security processes implemented to safeguard the data against risks. TAG’s MCM-9000 was verified for compliance with ASVS Levels 1 and 2, the stages that address applications containing sensitive data.
“Our MCM-9000 not only met the criteria set forth by OWASP but surpassed expectations,” added Briscoe. “We’re beyond pleased that our customers can be secure in the fact that their data and internal systems, and in turn their revenues, are securely protected from content hackers. This confirmation goes a long way to providing peace of mind for content owners.”
You might also like...
IP Security For Broadcasters: Part 12 - Zero Trust
As users working from home are no longer limited to their working environment by the concept of a physical location, and infrastructures are moving more and more to the cloud-hybrid approach, the outdated concept of perimeter security is moving aside…
Disruptive Future Technologies For HDR & WCG
Consumer demands and innovations in display technology might change things for the future but it is standardization which perhaps holds the most potential for benefit to broadcasters.
Microphones: Part 6 - Omnidirectional Response In Practice
Having looked at how microphones are supposed to work, here we see that what happens in practice isn’t quite the same because the ideal and the actual are somewhat different.
IP Security For Broadcasters: Part 11 - EBU R143 Security Recommendations
EBU R143 formalizes security practices for both broadcasters and vendors. This comprehensive list should be at the forefront of every broadcaster’s and vendor’s thoughts when designing and implementing IP media facilities.
Live Sports Production: The Rise Of Remote Hybrid Workflows
A discussion of the rise of remote production, why OB workflows remain first choice in tier one production and the emergence of new hybrid workflows.