To protect a confidential video stream from unauthorized viewing, smart cards with encryption certificates can be used.
Security Center uses asymmetric cryptography to securely encrypt the video data. This is achieved by using public-key encryption.
Public-key encryption, also known as asymmetric encryption, is a type of encryption where two different keys are used to encrypt and decrypt information. The private key is a key that is known only to its owner, while the public key can be shared with other entities on the network. What is encrypted with one key can only be decrypted with the other key.
The public part of the certificate is used to encrypt the video. The private part of the certificate is used to decrypt the video.
The public part of the smart card certificate is installed on the Archiver server to encrypt the original stream.
The public part of the privacy protection server certificate is installed on the Archiver server to encrypt the stream so that privacy protection can decrypt it.
- Archiver and Directory server
- Privacy Protector™ server
- Security Desk workstation
Archiver
The Archiver encrypts the original video stream using the smart card public key and the Windows standard certificate public key. In this situation, the Archiver is unable to decrypt the encrypted video, it only records the encrypted stream.
Privacy Protector™
The Privacy Protector™ decrypts the original video stream encrypted by the Archiver using the Windows standard certificate private key and produces one privacy protected stream that is not encrypted.
Security Desk
Security Desk can display the privacy protected stream without any certificate. However, to see the original stream a smart card with the relevant private key is required.