BGR_safety

Network security and Streamit players

There is an unmistakable trend for everything on the internet to go secure. The green browser address bar is quickly becoming the standard for any website. Businesses are tightening their security regime, including stores and retail chains. And they should, as they deal with sensitive business and customer information, like credit card data.

This means that in-store audio increasingly finds itself in a network environment that is highly secure. Firewalls are open only for standard secure ports and there are no exceptions to the rule. To what extend are Streamit players prepared?

There are several aspects to network security for Streamit players, such as operating under strict firewall rules and posing no threat to other systems or the network. Read on and you will see that Streamit devices fully embrace the trend to increased security in in-store audio.

Operate under strict firewall rules

How about a firewall that allows only connections from inside to outside, on port 443, while traffic must be SSL-encrypted? All Lisa internet audio players support this out of the box, all features and functions keep working. No single setting needs to be changed on the Lisa. Device portal supports this too, simply select ‘Device portal (SSL/TLS)’ as platform. Clearly, if even the most secure network of your most demanding customer is supported, you need not worry about less strict setups.

Presenting no security risk

IT staff of your customer may be worried about the effect of the Lisa in their network. Is this a potential security threat or stability issue? Neither.

There is no possibility to get ‘into’ the Lisa and use it as a springboard: It only uses connections that it initiates itself to the configured URLs and has no built-in webserver. Moreover, the Lisa has no capabilities to control other systems, rendering a hijacked connection (even if possible) useless. Still worried about hijacked connections? The Lisa can authenticate the server to which it connects, to ensure it is the correct server. To be honest, this option is never used in practice.

The data traffic load that the Lisa imposes on the network is limited and the timing can be controlled. By using streaming or store-and-forward with planned content update times, the data traffic for the music itself can be managed as desired. The other data traffic for the Lisa, e.g., for configuration and monitoring, is so small that it usually is ignored in practice.

More about security and Streamit players

There is more to say about Streamit players and security. However, covering all aspects, including for example encryption, would be too much. Instead, we invite you to contact Streamit sales if you have additional questions regarding Streamit players and security.