Our Commitment to Product Security
Carrier is committed to the security of our building automation and controls. We investigate all reports of security vulnerabilities affecting our products. If you believe you have found a security vulnerability in one of our products, please send an e-mail to product security.
For all product inquiries or correspondence unrelated to security vulnerabilities, please use our Contact Us form.
Note: When reporting a vulnerability, do not include sensitive information in your email. You should receive a confirmation of receipt or a similar response within 48 hours, along with additional instructions to enable secure communication. If you do not receive a response within this timeframe, please follow up with us.
Our products and services are covered under Carrier’s Global Product Security Program, which ensures that products manufactured and supported by Carrier adhere to robust secure development practices and process control requirements aligned with commercially appropriate cybersecurity standards. Through The Carrier Way for product security, we emphasize proactive risk management, industry best practices, comprehensive support, and deep domain expertise to help ensure the stability and resilience of our offerings.
Security Best Practices Checklists for Building Automation Systems (BAS)
Customers – please download Security Best Practices Checklists for Building Automation Systems (BAS) (for i-Vu Pro) or Security Best Practices Checklists for Building Automation Systems (BAS) (for i-Vu Standard/Plus) to ensure that you are following our best practices installation guidelines for protecting your building automation system.
Advisories & Disclosures
Product security advisories for all Carrier products may be found on the Carrier website.
Please refer to the "Affected Product" column to see which apply to i-Vu BAS.