Videoloft cloud video surveillance app

Let's talk about Videoloft security

Our number one priority

How secure is cloud based CCTV?

Security concerns with traditional surveillance systems

Video is often lost

Video evidence is regularly compromised because the recorder is stolen or breaks, or video is overwritten as there isn’t enough storage.

Vulnerable to infiltration

Enabling remote access to a CCTV system traditionally requires port-forwarding, making it vulnerable to infiltration.

Why is Videoloft more secure?

Extra layer of security

The Videoloft Cloud Adapter adds an extra layer of security, providing a software interface between local recording devices and the Internet.

No outbound internet connection

The cameras or recorders communicate with the Cloud Adapter over the local network and don’t need an outbound internet connection.

No port-forwarding required

With Videoloft, no port-forwarding or router configuration is required. We use HTTPS with TLS so all video travels to and from the Videoloft cloud securely.

Independent software platform

All Videoloft software runs on the Cloud Adapter rather than on the cameras or recorders, meaning the camera manufacturers have no access to the Videoloft cloud platform.

Cloud storage security diagram

Hosted in Amazon Web Services (AWS)

Along with thousands of other major brands, the Videoloft cloud is hosted in Amazon Web Services (AWS). Videoloft currently uses two AWS data centers, one in Northern Virginia and one in Ireland. Video is stored in the nearest data center to the customer location. 

AWS maintain stringent security standards including ISO 27001 and SOC 2.

Additional Videoloft security features

Video encryption

Video files are transmitted over encrypted TLS (HTTPS) channels and are stored at rest in AWS servers using 256-bit encryption.

External security validation

Videoloft commission regular external penetration tests to review the end-to-end platform security protocols. 

Continuous updates

The Videoloft Cloud Adapter software is regularly updated, providing security improvements as well as new features & functionality. 

Password encryption

The users’ Videoloft account password is hashed and salted. The final hash is stored at rest in AWS servers using 256-bit AES encryption. During password verification, data is sent over encrypted TLS channels. When cameras/recorders are paired with the Videoloft cloud, their passwords are encrypted in transit via AES-256. They are then stored on the Videoloft Cloud Adapter, encrypted using AES-128, and are never transmitted outside of the local network. 

Who can access my video?

Videoloft cloud video surveillance security

This is a common question, and the answer is only you.

Only if required by law, or requested by you, a very limited number of Videoloft’s senior employees can access raw video files from AWS. This only happens in extreme circumstances, requires multi-factor authentication and generates a variety of alarms sent to other Videoloft employees.