“Home control is certainly comfortable, but what if someone is able to hack into the wireless protocol and to open the garage?” The developer of the Homematic system, eQ-3 AG, counters safety concerns in the smart home with strong facts. All devices of the Homematic IP system use the established security standards AES-128 and CCM which ensure that no unauthorized person can read or even manipulate data streams. Furthermore, even teaching-in of new devices is cryptographically secured.
Since the very beginning of eQ-3, security has been one of the main subjects. Homematic was one of the first home control systems on the market that has established general security standards for all devices. This basis has been further developed by eQ-3. The new Homematic IP system for IPv6 connections takes security to a new level as the teach-in procedure for new devices is already cryptographically secured. Unlike other radio technologies such as WLAN, Bluetooth (devices without display), ZigBee, Z-Wave or EnOcean, the interception of keys during installation is not possible.
Cryptography Prevents Manipulation
During operation, Homematic IP encrypts and authenticates all data packets. One benefit is that data cannot be read, modified or repeated so that unauthorized persons are not able to open garage doors that have been closed by the Homematic user, for example. Also, own data packets can not be generated. This is secured by using the universally accepted and published security standards AES-128 (advanced encryption standard) and CCM (counter with CBC-MAC). Last but not the least, communication of the Home Control Access Point to the Homematic IP cloud as well as the connections of the app with the cloud via Internet security procedures are securely protected.
ESCRYPT Confirms Security
The security of the Homematic IP protocol specification has been confirmed by the renowned security experts of ESCRYPT: All the user data is encrypted and authenticated with AES-CCM, a universally accepted NIST standard. This field is state of the art. During installation of Homematic IP devices in the network, the keys are established by a key server operated by eQ-3. This method has been developed by eQ-3 and is based on AES-CCM as well. Especially based on the protection of the device key establishment in the network, Homematic IP offers a higher level of security than many other smart home protocols today. In this way, even the installation of devices in the network is secure against interception and manipulation. For the installation without Internet access, Homematic IP also offers a local teach-in procedure using supplied device keys based on AES-CCM, which has also been without any complaints concerning the encryption.