Skip to main content
  1. Home
  2. Smart Home
  3. News

U of Michigan, Microsoft researchers question whether a smart home is a safe home

By

smart home safety 35 million pool
Sotheby's
The homes of the 21st century may be smarter than ever, but is that synonymous with safety? The rise of the Internet of Things has given way to a hyperconnected household, where everything from our lights to our sprinkler system to our oven can be controlled by a single hub. Unfortunately, however, this convenience may come at a serious cost. 

New research published by researchers at the University of Michigan and Microsoft sheds new light on the vulnerabilities presented by a smart home platform, offering an alarming look at how seemingly helpful devices could open up a backdoor for malicious hackers and criminals looking to turn everyday objects into outlets for hijacking. Specifically examining Samsung SmartThings, the research team drew two major conclusions. First, that while “SmartThings implements a privilege separation model … SmartApps can be overprivileged,” which is to say that these apps can “gain access to more operations on devices than their functionality requires.”

Recommended Videos

Second, the team says, “the SmartThings event subsystem, which devices use to communicate asynchronously with SmartApps via events, does not sufficiently protect events that carry sensitive information such as lock pincodes.” The implications behind these two findings could lead to a number of different attacks, including secretly planting door lock codes, stealing existing door lock codes, or inducing a fake fire alarm. Taken together or separately, each of these attacks could lead to major consequences for smart home owners.

Please enable Javascript to view this content

While the team admits that many of the vulnerabilities they found would take quite a bit of expertise to exploit, the opportunity remains relevant for experienced hackers. And given how much trust we’ve placed in some of these smart home systems, allowing them to lock and unlock our doors, turn off key appliances, and more, caution is key. “If these apps are controlling nonessential things like window shades, I’d be fine with that. But users need to consider whether they’re giving up control of safety-critical devices,” says Earlence Fernandes of the University of Michigan.

Related

Ultimately, experts say, “These software platforms are relatively new. Using them as a hobby is one thing, but they’re not there yet in terms of sensitive tasks. As a homeowner thinking of deploying them, you should consider the worst-case scenario, where a remote hacker has the same capabilities you do, and see if those risks are acceptable.”

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Kwikset’s new Matter-enabled smart lock is now available
The Kwikset Halo Select installed on a door.

The Kwikset Halo Select Smart Lock is now available, and it’s aiming to bring some cool new functionality (and enhanced security) to your front door. Along with premium features like the ability to remotely lock or unlock your door, the smart lock supports Matter and is compatible with a variety of different voice assistants. This is Kwikset’s first new smart lock in years, and it looks to be a big leap forward.

Like all the best smart locks, you'll find a long list of capabilities on the Halo Select, giving you complete control over its performance. Whether you want to set up unique access codes for friends and family, check your door's status remotely, have it automatically unlock as you approach with your smartphone, or get notifications when a wrong code is entered, there’s a lot of cool tech packed into the smart lock.

Read more
Wyze Scale Ultra vs. Wyze Scale X: Which premium smart scale is for you?
The Wyze mobile app next to the Wyze Scale Ultra.

Wyze makes a handful of smart scales, but few are as compelling as the Wyze Scale X and the new Wyze Scale Ultra. Both are capable of measuring over a dozen health metrics, boast eye-catching designs, and clock in at reasonable prices. But what exactly is different between the two? More importantly, which one is the better fit for your lifestyle?

Here’s a closer look at these two smart scales to help you pick the right one for your home.
Pricing and availability

Read more
This premium smart lock is small, stylish, and among the fastest on the market
The Nuki Smart Lock Ultra on a door.

The Nuki Smart Lock Ultra is the fifth generation of Nuki’s popular smart lock, and with previous generations performing well overseas, this one is finally getting a U.S. release. Slated to arrive in Europe later this year and stateside in early 2025, the Nuki Smart Lock Ultra is aiming to be one of the fastest -- and most stylish -- smart locks on the market.

The first thing you'll notice about the Nuki Smart Lock Ultra is its striking design. The stainless steel smart lock exudes luxury, and it’s more elegant than most smart locks available today. With an LED indicator and little else, it’s a streamlined device that should look great on most doors.

Read more