Firmware

Why Endpoint Firmware Management is Crucial for Modern Security Integrators

In today’s rapidly evolving security landscape, security operations are more critical than ever for modern-day security integrators. For those building managed services, endpoint firmware management must be a core component of their strategy.

The Challenge of Piecemeal Solutions

Integrators often face the challenge of managing a diverse range of systems with various tools, trying to keep everything in sync and up to date. This patchwork approach is not only cumbersome but also unsustainable. If a security device is integrated into a SaaS platform, it should be the SaaS provider’s responsibility to ensure that firmware remains aligned with the platform. This is essential for maintaining system integrity and operational efficiency.

The Value of VSaaS/PSaaS

Video Surveillance as a Service (VSaaS) and Physical Security as a Service (PSaaS) offer a clear advantage in this regard. These services provide coordinated testing and orchestration between the software and the endpoints, minimizing risks and ensuring seamless integration. Unlike disconnected or “bolted-together” solutions, which can lead to discrepancies and increased risk, a unified platform like YourSixOS ensures that all components work together harmoniously.

Building Trust through Automated Firmware Management

At YourSix, we believe in building our partner relationships on TRUST—a principle that extends to both integrators and end-users. Firmware management is included with every YourSixOS subscription, whether it involves Axis Communications cameras, door stations, I/O boards, radars, speakers or door controllers. Our comprehensive ecosystem ensures that firmware is regularly tested and updated to keep devices secure across the entire stack.

Automating firmware management not only simplifies operations but also builds trust with end-users. By proactively managing firmware, integrators can provide peace of mind, knowing that their systems are safeguarded against vulnerabilities and are operating at peak performance.

Modernizing the Industry

This approach represents one of many ways we aim to modernize the security industry. By integrating firmware management into our SaaS platform, we help integrators and end-users stay ahead of potential issues, rather than reacting to them after the fact.

Firmware Maintenance Performed by YourSix

What: Update the device firmware to the latest YourSix approved LTS version provided by Axis Communications.

- - Axis offers two separate tracks of firmware management, the active track and the LTS track (Recommended). The Long-Term Support (LTS) track is designed for customers who prefer to update their products while keeping the product well integrated with third-party equipment or software. Some brand-new models do not offer LTS firmware, so YourSix recommends using the latest active track firmware.
  - When Axis Communications releases a new firmware version, YourSix performs comprehensive QA testing to ensure its stability, security, and compatibility with the platform. Only after passing this evaluation is the firmware added to the maintenance cycle for devices connected to YourSixOS. If a firmware version does not meet QA standards, devices will remain on their current approved firmware until a subsequent version is validated and approved.

When: Quarterly unless a known vulnerability or support issue is known

- - For firmware updates to be applied successfully, the device must have a stable network connection and remain online. Devices that are offline or experiencing connectivity issues will not receive updates. Additionally, all devices must meet the platform’s connection requirements to ensure proper update delivery.
  - Due to the timing of Axis firmware releases, the QA review process, and potential issues such as firmware failing QA, some devices may not receive firmware updates on a strict quarterly schedule.

How: Remotely with limited device downtime

- - Device typically will reboot after a firmware update and will be down for less than a few seconds.

The QA Process

- - The QA process performed by YourSix adds an additional layer of security and reliability, reinforcing confidence in a stable product. During this process, YourSix verifies that the firmware meets both Axis Communications’ standards and YourSix’s own requirements to ensure full compatibility, performance, and platform integrity.

CVEs (Common Vulnerabilities and Exposures)

- - Axis regularly publishes information about known CVEs (Common Vulnerabilities and Exposures), which are publicly disclosed security vulnerabilities identified in software or hardware. However, YourSix does not utilize all components of the Axis framework. As a result, many of the reported CVEs do not apply to devices connected through the YourSix platform. This clarification is intended to help integrators and customers understand that a firmware version flagged with a CVE by Axis may not pose any risk within the YourSix environment. If the affected components are not used by YourSixOS, the vulnerability has no impact and does not require concern or action.

YourSixOS Device & Firmware Support

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.