Skip to main content

New guidelines to protect smart home devices from botnets and privacy invasion

Are there Trojan horses in your home and in your neighbors’ homes and apartments waiting for signals to attack? The inherent vulnerability from untended internet connectivity is an unplanned, unsavory, and unacceptable consequence of the rapid proliferation of smart devices in homes. In an attempt to control or at least minimize security and privacy threats, a major industry group released recommendations for Internet of Things (IoT) manufacturers, especially those that make products sold for use in consumer’s homes.

The Broadband Internet Technical Advisory Group (BITAG) represents a broad cross-section of internet companies. The group’s purpose is to bring transparency and clarity to internet management and to the interactions among networks, applications, devices, and content that can affect users’ internet experience.

Recommended Videos

The potential threats to your security and privacy are one side of the major concern of IoT smart home devices. The recently demonstrated potential for individual home devices to be recruited into botnets for ill purposes represents the other side of home device threats. On October 21 a recruited botnet Distributed Denial of Service (DDoS) attack on the DYN name server was a wake-up call. As a result of that attack, major internet sites including Twitter, GitHub, and Spotify were unavailable for large parts of the day because they were bombarded by requests from unprotected crib cams, smart thermostats, and garage door openers.

Internet-connected smart home devices are particularly vulnerable to outside snooping and control. The BITAG report states, “Although consumers face general security and privacy threats as a result of any Internet-connected device, the nature of consumer IoT is unique because it can involve nontechnical or uninterested consumers …”

The BITAG report, “Internet of Things (IoT) Security and Privacy Recommendations,” addresses six major areas of concern: security vulnerabilities in some IoT devices that ship with outdated software; insecure communications including a lack of encryption and data leaks; susceptibility to malware; potential for service disruption; persistent security and privacy threats from a lack of software updating; and devices that do not abide by best software and best security practices.

The report has additional recommendations to manufacturers that focus on device and communications robustness and security. Because the recommendations are just that, with no force of law, they are not enforceable. The guidelines are a start, however, and at some time in the future may form the basis of minimum good practices for market acceptance.

Bruce Brown
Bruce Brown Contributing Editor   As a Contributing Editor to the Auto teams at Digital Trends and TheManual.com, Bruce…
Earth Day with Reolink: Protecting nature, one camera at a time
earth day with reolink protecting nature one camera at a time hero crop

This Earth Day, Reolink is celebrating the incredible intersection of technology and conservation. With help from environmentally conscious users and dedicated NGO partners, Reolink is proving that small actions, powered by smart outdoor technology, can lead to a big impact for our planet's wildlife and natural landscapes.
Smarter, Greener Outdoor Monitoring
Reolink's lineup of outdoor cameras, including the Go PT Ultra, Go Ranger PT, and TrackMix LTE, do more than safeguard homes. They empower nature lovers to connect with the wild while treading lightly on the environment.

Each camera is engineered for sustainability and performance. Solar power compatibility keeps them running without contributing to battery waste. Their rugged, waterproof designs ensure they survive the toughest outdoor elements. And with stunning 4K 8MP ultra-clear footage, they capture the beauty of wildlife — from the shimmer of a bird's wings to the subtle prowling of a fox at dusk — without disturbing natural behavior.

Read more
Roku expands smart home lineup with two upcoming security cameras
The Roku Battery Camera on a tree

Roku might be known for its streaming sticks and smart TVs, but the brand also has a strong presence in the smart home market. From video doorbells and smart lights to plugs and motion sensors, Roku’s smart home catalog is surprisingly robust. The catalog is set to expand in the coming months, as Roku has officially revealed two upcoming security cameras -- the Roku Battery Camera and Roku Battery Camera Plus.

The Roku Battery Camera Plus is the most enticing of the two, as it can get up to two years of battery life on a single charge (the Battery Camera gets up to six months). They can also be combined with an optional solar panel to extend their battery life. Beyond that, most specs are shared -- including 1080p resolutions, color night vision, and the option to receive motion alerts when activity is detected around your home.

Read more
Aqara releases new Matter hub, security system, and climate sensor
The Aqara Matter Hub

Aqara has been busy as of late. The company announced Matter support for 50 new device types earlier this month, and now it’s launching three new products -- the Aqara M100 Hub, Climate Sensor W100, and Camera Protect Kit Y100. All three are now available for purchase.

If you’re interested in syncing all your smart devices together, the Aqara Smart Hub M100 is bound to be the most exciting of the bunch. The next-gen smart hub is designed for seamless Matter compatibility, allowing you to set up complex automations between Aqara products and Matter-enabled products from other platforms.

Read more