loading words...

Feb 11, 2019 22:27:42

Home Automation - Security

by @valentino | 365 words | 274🔥 | 274💌

Valentino Urbano

Current day streak: 274🔥
Total posts: 274💌
Total words: 132995 (531 pages 📄)

IOT devices are taking over your house by storm, but are you sure they're as harmless as they seem?

Most IOT devices have zero security audits. They only audits are made by the manufacturer and it has been proven many times that is not sufficient. It's like the climate change studies sponsored by Exxon Mobil, who is going to trust that?


What they can do

1. Spy on you

Most of them are equipped with a sensor that tracks data and report it to some servers. If someone gets access to the device they can get access to your data.

2. Lock / Unlock your house

If you have a smart lock they can even remotely unlock your house to steal stuff more easily when you're not home.

3. Control your house

Let's say I want you to annoy you, so I just turn the radio on full blast for 2 seconds at random times during the week so you never know when it's going to happen.


An Example

One example with apple that is probably the most secure of the bunch. But the real problem lies in the hardware and its firmware.

Even if you use open source software you still need to buy the hardware itself. There's no escape.


No Updates

Unfortunately, not all manufacturers update their devices. It's common to find devices that have never been updated since they were installed or devices that still use HTTP to send data.

When APIs change they break and usually are not supported. For example in 2017 a Samsung fridge broke down when the google calendar API was changed.


Solutions

I don't see any solution that the consumer can do to protect themselves apart from not getting any IOT device. The resolution needs to come from the manufacturer.

The Android way of having a million manifacturers that never release updates can't be allowed to repeat itself (I really hope Google will force manufacturers to keep updating their phone to the new OS in a timely fashion. Cause now it's not happening.). This is not just phones that are going to get hacked, but actual devices that you use in your home.

The lock of your front door. Your thermostat. Your fridge.


Originally published at www.valentinourbano.com

  • 1

    @valentino This is scary. I refuse to turn over the critical functions like locking of doors to IOT devices. I also won't have any Amazon device with Alexa. Apple can do even more to protect privacy and ensure security, but I am more comfortable with those devices than those from other manufacturers.

    Brandon Wilson avatar Brandon Wilson | Feb 11, 2019 14:56:39
    • 1

      @brandonwilson it's peculiar how working in tech I'm way more wary of tech gadgets than most people. Smaller companies are surely way worse than Amazon at security for sure

      Valentino Urbano avatar Valentino Urbano | Feb 12, 2019 11:59:13
contact: email - twitter / Terms / Privacy