G+_Jason Perry Posted May 23, 2017 Share Posted May 23, 2017 Just thinking about security in my home brew home automation setup. It is becoming more obvious that I can't 100% avoid wireless of some sort. In the grand scheme of things I don't care too much if someone sees the data I am sending, my worry is data injection. If I am assuming, encryption or not, someone is viewing my data, is there a solution out there that I can prepend data to verify authenticity of the sender? Link to comment Share on other sites More sharing options...
G+_Travis Hershberger Posted May 23, 2017 Share Posted May 23, 2017 Might be a bit much for what you're doing, but have you considered running your own RADIUS server? Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted May 23, 2017 Author Share Posted May 23, 2017 I have thought of it. I haven't looked into how I would implement it. I was also thinking of Kerberos. I was hoping to find something in code that I could implement like a time based token. That way regardless of the platform I could add the code. Link to comment Share on other sites More sharing options...
G+_Ben Reese Posted May 23, 2017 Share Posted May 23, 2017 What kind of wireless are you using? Just wifi? I've wanted to play with the MySensors stuff for a while, but it's also not encrypted. In the forums some are adding a cryptographic signature to verify authenticity, so that may be an option for your setup - if it fits your model. Link to comment Share on other sites More sharing options...
G+_Lance Foxcoonbit2019 Posted May 23, 2017 Share Posted May 23, 2017 If you prefer NO Wifi and like most of us have on old PC lion alroud getting an Z-Wave USB stick off amazon is an good option. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted May 23, 2017 Author Share Posted May 23, 2017 Ben Reese?, I am looking at LoRa for long range things and bouncing between Zigbee and Esp8266 for local things. I have also been thinking of ways to not use Zigbee or the ESP. IR? Ultrasonic? Something that doesn't penetrative walls. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted May 23, 2017 Author Share Posted May 23, 2017 Lance Foxcoonbit2019?, I have good things about their security lately. Do you know if they have a development board? Link to comment Share on other sites More sharing options...
G+_Peter Hanse Posted May 24, 2017 Share Posted May 24, 2017 WPA2 personal with updating password will work using enterprise with RADIUS can work but last time I tried this many devices do not support. You can also create a VLAN for wifi and keep separate from rest of your network. Also using second NAT router can help keep separation Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted May 24, 2017 Author Share Posted May 24, 2017 Just found out I might be able to use Google authenticator, they have client side code in C# and server side script in Java. Link to comment Share on other sites More sharing options...
Recommended Posts