National Security Inspectorate Sentinel House, 5 Reform Road, Maidenhead, SL6 8BY E: nsi@nsi.org.uk | W: nsi.org.uk Page 1 of 5 © NSI 2018 Date: 18 January 2018 To: All NSI NACOSS Gold and Systems Silver approved companies and applicants TECHNICAL BULLETIN No: 0043 BS 8418:2015+A1:2017 – Installation and remote monitoring of detector-activated CCTV systems – Code of practice (Supersedes BS 8418:2015) BS 8418:2015+A1:2017 was published in October 2017 and is available to companies with the online subscription to BSI standards via the NSI website or through licensed outlets including NSI who can supply hard copies at a discounted rate. Implementation timescale for Applicant Companies Applicant Companies will be audited against BS 8418:2015+A1:2017 with immediate effect and any Improvement Needs recorded against clauses of the Standard will have to be satisfactorily addressed before approval can be granted. Implementation timescale for existing Approved Companies Existing NSI Approved Companies will be audited against BS 8418:2015+A1:2017 with immediate effect. Where companies are found to be non-compliant with the recommendations of the new standard, Improvement Observation or Improvement Need reports will be raised accordingly. Note: BS 8418:2015+A1:2017 applies to all new installations and to any modifications to existing installations complying with the 2015 edition of BS 8418 where a remote device is used to control and monitor the CCTV system. Note regarding the status of BS 8418:2015+A1:2017 Although issued as a code of practice by the British Standards Institution, it is important to note that compliance with the recommendations given in BS 8418:2015+A1:2017 is regarded as mandatory for all companies wishing to maintain an NSI approval, subject to any additional clarifications and guidance included within this Technical Bulletin or issued subsequently. The recommendations given in BS 8418:2015+A1:2017 must therefore be regarded as requirements in relation to NSI approval for NACOSS Gold and Systems Silver. Technical Bulletin No: 0043 Page 2 of 5 © NSI 2018 Details of the changes Where the actual wording of the standard is quoted, it is reproduced in bold text. Where it is considered relevant to further clarify the specified requirement, additional guidance is included in italics. We will consider alternative methods of achieving compliance with specified requirements where these can be demonstrated to be equivalent. 3 Terms, definitions and abbreviations 3.1 Terms and definitions A note has been added to clause 3.1.13 to clarify that a remote device is not considered to be a digital key. 3.1.13 digital key NOTE 2 A remote device is not considered as a digital key. A new definition for remote device has been included at clause 3.1.30. All subsequent clauses have been renumbered. 3.1.30 remote device remote non-CCTV system interface which enables a user to control and monitor the CCTV system NOTE 1 The remote device might be a bespoke system component or an application running on a PC, tablet, phone or other computing device. NOTE 2 External network connections might be made through a direct IP or dialled connection or through a Cloud or proxy server service. 7 Setting/unsetting procedures of the remotely monitored CCTV system The heading of Clause 7 has been amended from ‘Setting/unsetting procedures of the CCTV system on the supervised premises’ to ‘ Setting/unsetting procedures of the remotely monitored CCTV system’ . 7.1 General The second sentence of Clause 7.1.1 has been amended from ‘ The CCTV system state (set/unset) should be clearly indicated and visible from the last place the CCTV system is set or from the entry point to the supervised premises’ to ‘ The CCTV system state (set/unset) should be clearly indicated and visible from the place the CCTV system is set or from the entry point to the supervised premises ’. Technical Bulletin No: 0043 Page 3 of 5 © NSI 2018 This is to account for the possibility that a remote device may be used to set/unset the CCTV system. 7.2 Setting and unsetting outside secure areas at the supervised premises No changes. 7.3 Setting and unsetting inside secure areas No changes. 7.4 Automatically timed setting and unsetting No changes. 7.5 RVRC initiated setting/unsetting No changes. 7.6 Setting and unsetting using a remote device Clause 7.6 is a new clause and includes the requirements for setting and unsetting systems using a remote device. These requirements are similar to those in Annex A.5 of PD 6662:2017 for the setting and unsetting of intruder and hold up alarm systems using a remote device. The requirements include the need to consider cyber security best practices (7.6.1) , the need to configure a timed setting procedure when using a remote device to set the system (7.6.2) , the need to revert to a default setting procedure or cancel setting if there is a fault with the system (7.6.2) , the capability for users on site to cancel the setting procedure (7.6.2) , consideration of providing audible indications to personnel on site during a setting procedure (7.6.2) , the need to indicate to the user setting the system the status of the system via the remote device (7.6.2) , the need to configure a default unsetting procedure (7.6.3) and the need to attribute and log all events associated with the remote device or the user (7.6.4) , a general notice to be included in all system design proposals and as-fitted documents where the ability to use a remote device is also included (7.6.5) . 7.6.1 General Where use is made of a remote device for control and monitoring of a CCTV system, including for the purposes of setting and/or unsetting, cyber security best practices should be applied. The use of a remote device to set and/or unset the CCTV system introduces a potential network vulnerability in the system which must be assessed and any threats mitigated. 7.6.2 Use of remote devices for setting of the CCTV system Completion of full setting can be achieved by one of the methods described in 7.1, 7.2 and 7.3.2 which should be the configured default method of setting. Technical Bulletin No: 0043 Page 4 of 5 © NSI 2018 Where a remote device can be used to set the CCTV system, at least one of the recognised means for setting must be configured as the default . Provision should be taken to enable users at the premises to cancel the setting procedure if people are still on the premises. Initiation of setting should be by user action at the remote device. Providing no conditions exist that would prevent setting of the CCTV system, a timed setting procedure should commence. NOTE Consideration may be given to an audible indication throughout the supervised premises during the setting procedure so that any persons present are informed that the setting procedure has started. When using a remote device, completion of setting must be a timed procedure and users at the premises must be able to cancel the setting process; therefore it is recommended that an audible indication is provided to inform users on site when the system is setting. If, during the timed setting procedure, any detector is in an active condition, the timed setting procedure should be cancelled. Alternatively, according to the CCTV system configuration, the setting procedure may instead automatically revert to the configured method of completion of setting in accordance with 7.1 and 7.2 or 7.3. If this option is taken, the remote device user should be informed that the setting procedure has changed and this should be recorded in the event log at the supervised premises in addition to 4.6.10. If, at the end of the timed setting procedure, no conditions exist that prevent setting, the CCTV system should set. Confirmation of whether the CCTV system has set, failed to set, or that an error has occurred should be provided to the user by the remote device on the basis of information sent to it by the CCTV system. In respect of this, the information that was sent to the remote device should be recorded in the event log at the supervised premises in addition to 4.6.10. The remote device must be able to indicate to the user the status of the system after the setting process has been completed. This information must also be recorded in the system event log. 7.6.3 Unsetting with remote device The CCTV system should be configured to achieve unsetting in accordance with one of the methods in 7.1, 7.2 and 7.3 by default. NOTE In addition unsetting of the CCTV system may be achieved by use of a remote device. Technical Bulletin No: 0043 Page 5 of 5 © NSI 2018 Where a remote device can be used to unset the CCTV system, at least one of the recognised means for unsetting must be configured as the default . 7.6.4 Event log (additional to that listed in 4.6.10) The event log at the supervised premises should record all instructions to unset and initiate setting received from the remote device. Event records related to the remote device should include identification of the user or, if this is not possible, the remote device. 7.6.5 Customer advice about remote setting/unsetting NOTE If a supervised premise is left unattended without the CCTV system set, users of a remote device might inadvertently be in breach of interested insurer’s policy wording, conditions or warranty. The CCTV company should reproduce the following notice, in bold type, in the CCTV system design proposal and as-fitted document as part of the “services for which the customer is responsible” [see 4.2.2 j)]: “IMPORTANT If using a remote device to set/unset your detector-activated CCTV system, your attention is drawn to the fact that whenever a premises is unattended but its detector-activated CCTV system(s) is (are) not fully set, any related insurance cover might be invalidated. For advice on this matter, it is recommended that you consult your insurer(s).”