For client-server communication, we use 128 bit AES encryption in combination with Diffie-Hellman key exchange. By default, the key is updated every 5 minutes. This is true for all data except video stream, audio stream and blob (map images, etc…) data.
For server-camera/device communication, the encryption is camera dependent and does not use SSL. We use HTTP Basic or HTTP Digest Authentication for all data except video and audio streams.