This firmware is a feature release for the 16-channel video encoders VIP X16 XF E and VIDEOJET multi 4000 and based on firmware release 5.92.0029.
This firmware requires FW 5.91.0006 or higher installed as prerequisite. Earlier firmware must be upgraded to version 5.91.0006 prior to upgrading to this one.
• VIDEOJET multi 4000
All CPP5 devices incorporate a Trusted Platform Module (TPM) with own firmware.
This TPM hardware and firmware have been enhanced over time to allow for additional security features.
Due to security reasons, the firmware or functionality of the TPM cannot be altered in the field.
Thus, not all new security features become available on devices with older TPM hardware or firmware revisions.
Also, license types are related to the TPM version and can only be applied when matching.
The TPM version can be derived from a few bits in the Installation Code, to be found on the Service->Licenses page.
The bits are encoded in the 17th digit and have the following meaning:
8 FW < v1.3, global type 1 licenses up to bit 96, type 2 licenses
C FW >= v1.3, global type 1 licenses up to bit 96, type 2 to 3 licenses
Since firmware version 6.30 all cameras are prepared to receive a unique Bosch certificate during production, assigned and enrolled by Escrypt LRA. These certificates prove that every device is an original Bosch-manufactured and untampered unit.
Escrypt is a Bosch-owned company, providing a public certificate authority (CA).
Enrollment of the certificates in production is asynchronous to this firmware release.
• The user management has been extended to allow free assignment of usernames.
Each user can be assigned a user group representing live, user, or service level.
• New user management system allows to dynamically create a user for whom the password can be treated as token. Also timeout before user account expires is possible.
• Token-based authentication implemented to allow user management based on communication with Microsoft Active Directory Federation Services.
• Secure FTP connection (FTP over TLS) is implemented.
• ICMP redirect messages are not accepted anymore by default. Acceptance can be re-enabled via RCP+ command, if needed.
• Video authentication is now also possible on RTSP streaming. It can be enabled with CGI parameter ‘auth=1’ which requests picture info packets (payload type 97).
• Recording to iSCSI now supports LUN size up to 64 TB.
• ONVIF encoder profile settings can be verified via http://<ipaddress>/onvif_encoder_profiles.
• Manual focus and iris control is now supported via ONVIF command.
• Tamper detection alarms are now forwarded to and included in ONVIF event services.
• Web page layout has been improved for better usability and larger video for configuration.
• Video can now be paused during VCA configuration.
• Reference image is now stored as JPEG instead of TIFF for broader compatibility.
• JPEGs can now include VCA overlays in Live page, alarm e-mails and JPEG Posting.
For JPEG snapshot a new query parameter ‘VCAOverlay’ can be added to the URL, e.g. http://<ipaddress>/snap.jpg?VCAOverlay=1.
• HTML5 video tag is used to display a continuous MP4 video file from the camera on browsers not supporting NPAPI plug-ins (MPEG-ActiveX) like Firefox, Chrome and MS Edge.
• A “Links” section in the main navigation (blue top bar) has been added, leading to a DownloadStore page providing latest tools, apps and supportive software.
• Unicode characters are now also possible on all configuration strings.
• Time server IP address can be accepted to be overwritten by DHCP.