This is the forum archive of Homey. For more information about Homey, visit the Official Homey website.

The Homey Community has been moved to https://community.athom.com.

This forum is now read-only for archive purposes.
Closed

Non-sexy part: security

AppieAppie Member
in Archive

Hi Guys,

I know it's the least sexy part of the Homey adventure, but could you tell us something about Homey's security measures? Yesterday, this post (in Dutch) was published, saying that (at least) 25% of the IoT devices has security breaches... https://www.security.nl/posting/451363/'Een+kwart+van+Internet+of+Things-apparaten+is+lek’

Comments

  • honeyhoney Member
    edited November 2015

    You will get the same answer from Athom as from any other developer. :)
    It is up to us to find these and report them.


    PS.: Don`t use Homey for security applications. Does not have battery or 3G/4G module. Of course you can add an external PSU and some battery powered wireless 3G modem (and write an app for it) but when Homey was designed these were not among the priority. Probably these things will be added to the Homey 2.

    If you use homey for streaming, IR, philips hue than security is not a life-death issue. Only thing hackers can do turn these on/off and play around with. The issue starts if you put on the system oven, electric door/window openers, kattles, etc... Think twice before you do that.

  • AppieAppie Member

    Thanks! I was thinking about connecting my electric rooftop hatch and an intercom with remote door opener to Homey, so that is something I will think twice on...

  • JaapPeltJaapPelt Member

    The most dangerous factor in security is always human stupidity (or lack of knowledge). Most of us will have tons of security leaks from our smartphones, TVs, routers and computers. Rather than securing everything, I prefer to make people aware of what they actually do and what the impact could be.

    For example: If you use a computer for banking, you better have some sort of firewall/virus scanner on it and an up-to-date browser. But who cares if the whole world can read one of my temperature sensors?

    Web cams, baby monitors and smart locks are a whole different ballgame. Personally, I think the consumer market is not yet mature enough. You should assume anyone could be watching your webcam and it is surprising how often that is true. Smart locks still have a pretty good rep, so I have high hopes that they will be or become more secure then conventional locks very soon.

    As far as Homey itself is concerned, we'll have to see. It is a new product with astronomical challenges. I'm sure it is better my current Smart hub which sends the password unencrypted via the URL. Since I use port forwarding, I simply assume everyone can see when I'm home or not. With that in mind, there's not much what can go wrong... right?

This discussion has been closed.