ONVIF (Open Network Video Interface Forum) is an international open standard that guarantees compatibility between network video monitoring devices.

Check it out!

ONVIF (Open Network Video Interface Forum) is an international open standard that guarantees compatibility between network video monitoring devices, such as IP cameras, NVRs (Network Video Recorders), and video management software (VMS).

In this article, we will cover everything about the ONVIF standard, analyzing its main technical aspects and its practical application in configuration, media transmission, and communication security between IP devices.

Check it out!

[elementor-template id=”24446″]

What is ONVIF?

Created in 2008 by Axis Communications, Bosch Security Systems, and Sony, ONVIF allows devices from different manufacturers to communicate in a standardized way.

  • Interoperability: Ensuring compatibility between security devices from different manufacturers.
  • Flexibility: Providing a scalable framework that supports the evolution of video monitoring technologies.
  • Ease of Integration: Reducing complexity in the development of video-based security solutions.

ONVIF defines its specifications through profiles, each one meeting different integration needs. The profiles standardize how devices exchange information and provide services within security networks.

ONVIF Profiles

Each profile specifies services, protocols, and APIs that devices must implement to ensure standardized integration with third-party systems. Below, we detail the main ONVIF profiles.

Profile S

Profile S establishes the technical requirements for live video streaming in IP cameras and video encoders, ensuring compatibility with video management systems (VMS).

Compliance with this specification requires devices to implement a standardized media-streaming model. Support for media profile configuration must allow the definition of essential operational parameters such as resolution, frame rate (FPS), compression, and bitrate, in addition to PTZ control and two-way audio transmission when supported.

All compatible devices must implement minimum authentication and security mechanisms to ensure communication integrity and restrict unauthorized access.

Profile G

Profile G defines the technical requirements for video storage and retrieval, ensuring compatibility between devices that perform local recording or recording on external servers.

Compliance with this specification requires the implementation of a standardized recording model, allowing video retention and retrieval with support for search by date, time, and recorded events.

Profile T

Profile T enhances live video streaming by adding support for H.265 encoding and integration with video analytics metadata.

It allows advanced video quality configuration, in addition to the implementation of events based on intelligent analytics.

This profile is frequently used for cameras with embedded artificial intelligence and advanced monitoring applications.

Profile M

Profile M expands video analytics capabilities, allowing interoperability between devices that generate and process metadata.

It defines standards for transmitting information such as motion detection, facial recognition, and object tracking, enabling the integration of artificial intelligence and machine-learning algorithms.

This profile is used in perimeter security applications, people-flow control, and intelligent automation.

Profile D

Profile D addresses access control, establishing a standard for communication between controllers, electronic locks, and management software.

It supports credential and permission management, monitoring of door and lock status, as well as detailed logging of access events.

This profile is applied in security systems that integrate biometrics, RFID cards, and PIN-based authentication.

Profile Q

Profile Q focuses on the initial configuration and automatic discovery of ONVIF devices, allowing cameras and systems to be located on the network without manual configuration.

It includes mandatory authentication mechanisms to ensure security during initial configuration.

This profile is especially useful for facilitating the fast installation and configuration of equipment in large security infrastructures.

Communication Architecture

Communication between ONVIF devices is based on web services and follows message-exchange standards such as SOAP (Simple Object Access Protocol) and WSDL (Web Services Description Language). This enables:

  • Automatic device discovery via WS-Discovery.
  • Remote configuration and management of devices.
  • Authentication and encryption for secure communication.

Discovery and Configuration

Device discovery is an essential process in ONVIF, performed through WS-Discovery, a protocol that allows devices to be detected on the network without manual configuration. After discovery, management may include:

  • Network and credential configuration (DHCP, static IP, authentication).
  • Video streaming configuration (resolution, bitrate, codecs).
  • User and permission management.

Security and Authentication

Security in ONVIF is based on WS-UsernameToken, ensuring that only authenticated users can access and configure devices. In addition, ONVIF supports TLS (Transport Layer Security) for encrypted communication.

  • Username/Password via WS-UsernameToken: Protects SOAP calls with user credentials.
  • Digital Certificates (PKI): Allows certificate-based authentication using X.509 certificates.
  • TLS for secure communication: Encrypts communication between client and device.

Streaming and Device Control

ONVIF standardizes video transmission using protocols such as:

  • RTSP (Real Time Streaming Protocol) for live streaming.
  • RTP/RTCP for media-packet control.
  • Multicast and Unicast for efficiency in video transmission.

In addition, it allows remote control of PTZ cameras, configuration of media profiles, and synchronization with events and notifications based on Web Services.

Events and Notifications

ONVIF implements an event system based on the WS-BaseNotification protocol, allowing devices to notify management software about specific events, such as:

  • Motion detected by video analytics.
  • Configuration changes on the device.
  • Errors or failures in the system.

Video Storage and Retrieval

The ONVIF Profile G allows devices to record and retrieve video stored locally or on remote servers. This includes:

  • Search and retrieval of recordings via SOAP.
  • Integration with NVRs and storage servers.

Implementation and Integration

The development of ONVIF-compatible applications can be done using libraries and SDKs, such as:

  • gSOAP: One of the most widely used libraries for integrating ONVIF in C/C++.
  • Python ONVIF Library: A Python library for communication with ONVIF devices.
  • ONVIF Device Manager: An open-source tool for testing and configuring ONVIF devices.

ONVIF Device Manager (ODM)

The ONVIF Device Manager (ODM) is a tool used for the detection, configuration, and management of devices compatible with the ONVIF standard within a video monitoring infrastructure.

The use of ODM enables automated discovery of devices on the network, configuration of operational parameters, and execution of diagnostics to validate communication and the integrity of video and audio streams.

Compatibility with ONVIF profiles allows the tool to be used to verify device adherence to established technical standards, ensuring interoperability and compliance with integration requirements.

Importance of the Solution Being Compliant

Compliance with ONVIF standards is essential to ensure interoperability between video monitoring devices and systems, avoiding dependence on proprietary solutions and ensuring scalability in the implementation of security infrastructures. Adherence to ONVIF profiles allows equipment from different manufacturers to be integrated into a unified environment, promoting standardization in communication and in the management of video, audio, and access-control flows.

Implementing ONVIF-compatible devices reduces operating costs and facilitates system maintenance and upgrades, ensuring that new devices can be incorporated without the need for complex reconfiguration or dependence on proprietary protocols. Compliance also ensures greater transparency and predictability in equipment operation, allowing video management systems (VMS), NVRs, and cameras to operate in a standardized way within the defined infrastructure.

In addition to interoperability, ONVIF compliance strengthens security requirements, ensuring that devices follow authentication, encryption, and protection guidelines against unauthorized access. The implementation of standardized protocols allows robust access-control mechanisms to be applied, mitigating vulnerability risks and ensuring the integrity of transmitted information.

Conclusion

The unification of security systems required standardization capable of ensuring interoperability between equipment from different manufacturers, reducing dependence on proprietary technologies and facilitating the integration of different solutions.

The definition of Profiles S, G, T, M, D, and Q allows each device or software application to meet specific transmission, storage, metadata, and security requirements, enabling robust solutions adaptable to different operational scenarios. The application of these profiles ensures that communication occurs in a structured and predictable manner, optimizing the efficiency of security systems.

The communication architecture based on web services and standardized protocols enables automated and secure discovery, configuration, and authentication of devices. The adoption of access-control and encryption mechanisms strengthens transmission integrity, ensuring compliance with cybersecurity best practices.

The continuous evolution of ONVIF reinforces its position as the benchmark for the integration of IP security systems. Adoption of this standard establishes a reliable model aligned with market demands, ensuring that technological innovation occurs without compromising compatibility between devices and software. Standardization, combined with robust security and authentication practices, strengthens the reliability and efficiency of video monitoring systems, making them safer, more scalable, and better prepared for future technological developments.