Tag Archives: Gigaom

Report: Smart home devices have security flaws

1 Reply

Connected home devices like cameras and thermostats can be easy targets for hackers, cybersecurity firm explains. 

With a new breach seemingly every day, consumers are more on-guard than ever before when it comes to ensuring the security of their personal information from cyber criminals. And, rightfully so. Validating the cause for such concerns is a new report from Synack that highlights the ease in which malicious hackers can access a majority of smart home devices on the market today. Quite ironically, many of them are security gadgets — the same products that are supposed to keep you protected.

smart-homes-privacy

Writing for Gigaom, Stacey Higginbotham notes that the firm had conducted an in-depth analysis on a number of today’s most-popular smart home gadgets, including cameras, thermostats, smoke detectors and automation controllers. Upon reviewing 16 of these devices, researchers discovered a vast majority of them possess some serious vulnerabilities.

Colby Moore, a security analyst for Synack, told Gigaom that it took him only 20 minutes to break into all but one of the assorted devices during testing. Furthermore, the company believes the lack of security for such products could derive from the fact that there are no set standards for smart home security.

“Right now the internet of things is like computer security was in the ‘90s, when everything was new and no one had any security standards or any way to monitor their devices for security,” Moore says.

Upon finishing the investigation, Synack found the worst performing devices to be, in fact, connected cameras. Each of the five camera products examined had issues either with encryption or password security. As for thermostats, Nest was deemed to be the most secure, although it did lose points for a weak password policy. Others were cited for having problems with password policies, encryption and a long history of flaws across product lines.

synack_takeaways-100568116-large

Meanwhile, a number of smoke and carbon dioxide detectors didn’t fare so well either. The analyst reveals that this category could fall victim to a supply chain-based attack, meaning someone could intercept the device and change a component.

Lastly, a few of the home controllers are believed to have issues with exposed service and insecure architecture, while others lack proper password policies as well. In all, Moore shares with Gigaom that the security of smart home devices today is “abysmal.” He suggests users hardwire as many devices as possible, enable automatic firmware updates and utilize strong passwords.

“Smart homes are a dumb idea if they are not secure. And that means secure at every node,” Atmel resident security expert Bill Boldt chimed in on the matter. “Who wants a home that allows people to monitor them? There is already a website out there showing pictures of people intercepted from their own home security cameras. That is just the top of the iceberg. Nodes of all types from thermostats to cameras, to meters, appliances need to be authenticated and encrypted. Consumers will soon figure that out and demand it.”

Interested in reading more? Head over to Gigaom’s entire writeup. You can also discover how to add enhanced authentication and encryption into your next design here.

5 things coming to the smart home in 2015

4 Replies

With adoption and ownership of smart in-home devices on the rise, the future of an entirely connected house is not too far off. With major backing from corporations like Apple and Google to the emergence of [Atmel based] startups on Kickstarter and Indiegogo, it is clearer than ever that the market is ready to grow at a rapid pace. From home automation to smart metering, a new generation of intelligent products are set to increasingly power and connect our daily lives.

Ikea-kitchen_2603101b

Writing for Gigaom, Stacey Higginbotham highlights five key trends that she expects will continue to evolve over the next couple of months and finally come to fruition in 2015. Here’s what she had to say…

1. Bluetooth-controlled lights

“At long last, products are coming on the market that will let you use Bluetooth to control light bulbs, outlets and more. These products are using mesh networking to make installing a connected light switch as easy as sticking a new plate to the wall using double-sided tape. Products from Avi-on (which is building bluetooth switches for GE’s Jasco brand), Oort, and Seed will change the way we use lighting in the home and at work. Even Peep, a company showing off a camera that snaps a picture when someone knocks on your door is looking at using Bluetooth as a faster way to get an image to people inside the home, since using Wi-Fi means it would go from the connected camera to the cloud and then to people’s phones.”

Our recent acquisition of NMI immediately expanded the 802.11n Wi-Fi and Bluetooth capabilities of the company’s offerings, thereby accelerating our introduction of low-energy Bluetooth products such as these.

2. Voice-controlled homes

“To talk to your home, you’ll talk to your phone: This isn’t a trend I’m excited about, but it’s obviously where we are heading in the relative near term. Since our phones are equipped with awesome natural language processing already, big companies such as Nest and Apple and small ones like Nucleus will use them to let people control their homes via voice. For example, Nest will integrate with Google Now’s speech recognition while Apple’s HomeKit is sure to have a Siri component. On the startup side, the Nucleus intercom system showed off a way to not only message people in your house, but to speak into the phone to control your lights. Ubi is building similar functionality into it’s app.”

Surely enough, it’s not that uncommon to find yourself spewing to an malfunctioning appliance or sharing your displeasure with a gadget; however, in the near future, when you talk to these devices, they may actually listen. Envision yourself calling out commands to complete tasks such as raising the heat on the thermostat or closing the blinds at night. Thanks to startups like Ubi and Wit.ai, custom voice controls may be coming to a neighborhood near you.

3. Low-power Wi-Fi 

“Two companies, Homeboy and Roost were offering different products that took advantage of low-power Wi-Fi. The benefits of such a set up are pretty obvious — you don’t need a fancy hub to control a device and it can work for almost everyone.”

It’s no surprise to find Wi-Fi as one of the integral technologies enabling devices to connect directly to one another, to wide area networks, or simply to the Internet in order to provide remote monitoring and control of a home system. As such, it is becoming a major driver of the explosion of the ever-evolving Internet of Things, particularly the connected home market. Atmel’s SmartConnect family is comprised of self-contained, low-power, and certified modules that are enabling wireless connectivity in such embedded designs, ranging from battery-operated devices to smart home appliances.

4. No more hubs for automation

“This year’s hot device, the home hub that combines a bunch of radios with a software platform to let people control multiple connected devices is going away. Even SmartThings CEO Alex Hawkinson is ready to build software that is independent of the company’s hub, although he admits it may take some time and won’t include all the devices out there. I also saw a startup, showing off an Android-based controller called the Reach app that lets people pause videos, play songs over their Sonos and control a few other devices like Hue lights. The app is in alpha right now, but I’m eager to see it once it hits beta.”

5. Show me the money!

“The business models that have been lacking in several popular services are beginning to crystalize. From Linden Tibbets. the CEO of If This Then That disclosing that he plans to have consumers pay for premium IFTTT services, to an in-depth discussion from IControl’s CEO on business models for the smart home, it’s clear that while companies have been focused on the user experience, the revenue models aren’t far behind.”

While we may not know exactly what the future holds, it appears that 2015 and beyond are looking much SMARTER.

Smaller electronics, smarter clothing

3 Replies

In a recent Gigaom article, Signe Brewster notes that a new generation of textiles is on the brink of redefining wearable technology.

To date, a great deal of wearable activity has been centered around companies like Arduino and Adafruit, both offering wearable electronic platforms powered by versatile Atmel microcontrollers (MCU).

flora

Though we may have yet to find the easy-to-make smart textile, Brewster encourages startups wishing to do so need to find their fabric and sensors and then independently develop a way to combine them.

“What was missing until now were electronics small enough to fit into clothing the same way as a button or a single cotton fiber.” With the advent of Arduino Lilypad (ATmega328V) and Adafruit’s FLORA (ATmega32u4), we’re seeing the emergence of the softer side of wearable technology, which hides LED lights, battery packs and electronic devices in the folds of clothing fabric. With more platforms readily accessible, we can expect to see more Makers creating a next-gen of wearable gizmos.

Ever wanted a t-shirt that can send and display text messages? Now you can — thanks to the latest innovation of startup, Switch Embassy. The only “scrunchable, washable and connected t-shirt” is embedded with LED lights, each of which are woven directly into the fabric.

TshirtOS

“Until technology, like fashion, can augment who we are in the exact way we want, it won’t be compelling enough to wear on our bodies,” Brewster concludes.

Interested in learning more about wearable tech? Check out what Atmel has been up to in this exciting, evolving space.

Atmel-powered Printoo featured on Gigaom, EDN

Leave a reply

Printoo – powered by Atmel’s ATmega328 microcontroller (MCU) – is a lineup of paper-thin, low-power boards and modules that offer Makers and devs new levels of creative flexibility.

The open source platform, created by the Ynvisible crew, made its official Kickstarter debut last week and has already been covered by a number of prominent publications, including EDN, Gigaom and Quartz.

“A spin-out from YDreams, Ynvisible was founded in 2010 with the goal to bring more interactivity to everyday objects and surfaces, mostly through the use of flexible and printed electronics including the company’s fully transparent electrochromic display. The paper-thin display, which only becomes visible when activated can easily be integrated with different background graphics,” writes EDN’s Julien Happich.

“Running Arduino software, the first Printoo packs include novel printed modules including LED light strips from VTT lab, 1.5V printed batteries from Blue Spark and Enfucell, 0.350mm thin organic photodetectors from ISORG, printed polymer solar cells from Mekoprint, and Ynvisible’s own transparent printed displays running from 1.5V. Also included are modules like Bluetooth LE, DC motor control, flexible LED matrixes, and a variety of sensors. The Printoo core is powered by the Atmel ATmega328 microcontroller.”

As Gigaom’s Signe Brewster notes, printed circuits are currently being considered for everything from shipping labels to tiny spacecraft NASA might send to Mars.

“Ynvisible expects Printoo to find a home among 3D printer owners and DIYers already familiar with Arduino,” Brewster explains.

“The modules are small enough to slip into a 3D printed object, opening up ways to easily create robots and other moving or connected devices. They could also be worn as a bracelet or sewn into clothes.”

Meanwhile, Lio Mirani of Quartz points out that bendable electronics could be the future of the rapidly evolving Internet of Things (IoT).

“When the first Harry Potter movie came out in 2001 the idea of the Daily Prophet, a newspaper that contains moving pictures, qualified as magic. A Kickstarter campaign by Ynvisible, a Lisbon-based technology firm, is bringing that magic to life with its displays, held together with paper-thin circuitry,” writes Mirani.

“Ynvisible’s ‘vision’ is to ‘bring everyday objects to life.’ For that to happen, it isn’t just processing power that needs to get cheaper and smaller, which it has, but the input and output mechanisms also need to be smaller and easily adaptable. Ynvisible is betting there is a broad market for such technology. The roaring success of its Kickstarter campaign is an early validation of that belief.”

Indeed, Ynvisible has already raised close to $36,000 – with support from almost 300 backers. Interested in learning more? You can check out the project’s official Kickstarter page here.

Is Leap Sheep the new Flappy Bird?

3 Replies

There have been quite a number of hardware crossovers in the gaming world as of late, with the physical incarnation of Fawn Qiu’s Flappy Bird taking the Maker world by storm.

As CNET’s Amanda Kooser reports, the Arduino-powered Flappy Bird in a box uses a scrolling background with two controls to move the bird up and down to avoid obstacles. One wrong move and the box lid closes, playing a “game over” sound.

“I think creating a physical game makes the playing experience more approachable. It’s no longer just one player and the phone, but people around you are also aware of the game, which invites collaboration and curiosity,” Fawn told CNET. “Each win and loss is more dramatic, surprising and exciting.”

Recently, a Maker by the name of Tom Randle created a small robot to play Leap Sheep for him on the iPad. While not a full hardware crossover, the Leap Sheep ‘bot has nevertheless garnered considerable attention, with a write up of the project authored by Kevin C. Tofel prominently featured on Gigagom.

According to Tofel, Randle uses an Atmel-based Arduino Uno board (ATmega328) to power the brains of his game-playing robot, which has solenoids and capacitive styli in place of finders.

“A light sensor checks screen brightness and since the sheep are white, they’re relatively easy for the robot to spot,” writes Tofel. “The robot runs on JavaScript, with earlier versions [coded] in Python.”

Randle says his creation isn’t perfect yet, as the original aim was to build a robot that was better at playing the game than a human.

“At the moment, it’s not quite there. The longest I’ve had it running continuously so far is about 5 minutes: 110 sheep,” he explains. “Occasionally it just misses a very fast or slow sheep, and because the solenoids are fixed there’s no way for it to recover. I’m sure with a bit more tweaking I can get it to do much better, but I may have to add a second row of LDRs to more accurately measure the speed of each sheep.”

Interested in learning more? You can check out the Leap Sheep cheating machine on the project’s official page here.