Join or Sign in

Register for your free asmag.com membership or if you are already a member,
sign in using your preferred method below.

To check your latest product inquiries, manage newsletter preference, update personal / company profile, or download member-exclusive reports, log in to your account now!
Login asmag.comMember Registration
https://www.asmag.com/project/resource/index.aspx?aid=17&t=isc-west-2024-news-and-product-updates
asmag logo
You are at : Home > News > Smart Building & Home
INSIGHTS

Z-Wave’s new security framework for certified IoT devices takes effect

  • Source: Elvina Yang
  • Date: 2017/04/10
  • Related tags:
Z-Wave’s new security framework for certified IoT devices takes effect
Z-Wave’s new security protocol took effect recently, requiring more strict and uniform security standards for all Z-Wave compatible devices.
Z-Wave’s new security protocol took effect recently, requiring more strict and uniform security standards for all Z-Wave compatible devices.

Back in November 2016 the Z-Wave Alliance announced the new standard Security 2 (S2) framework, claimed to be the most advanced security protocol for smart home devices, gateways and hubs in today’s market. All the products certified after April 2 will be required to install with the latest security framework.

The S2 framework features AES-128 encryption and eliminates latency or additional power consumption on devices. It improves protection against eavesdropping with the Elliptic Curve Diffie-Hellmann (ECDH) key exchange system, making it impossible for intruders to decipher the network key.

Also, it removes the man-in-the-middle attack aims by physically processing authentication by PIN code or QR code during inclusion. Lastly, it passes all IP traffic through a secure TLS 1.1 tunnel to exclude cloud vulnerability.

A big change with S2 is the device-specific pairing codes that come packaged with or printed on devices themselves. At initial setups, users need to use these codes to pair with devices in order to control them – just like a two-factor authentication system for smart home devices. With these codes, hackers won’t be able to take over control of users’ home gadgets easily for malicious purposes.

All existing gateways with 500 series chips and devices allowing over-the-air (OTA) upgrades may add the S2 framework. If a home controller or hub in the network has been upgraded to the S2 standard, connected devices can also be included as part of the S2 network, according to the Z-Wave Alliance.

Z-Wave’s technical certification program, which is operated by third-party testing authorities in Europe, U.S. and Asia, will start to check whether all S2 security requirements are correctly implemented.

There are over 1,500 Z-Wave certified products worldwide and more than 375 companies have joined the Z-Wave Alliance.
Subscribe to Newsletter
Stay updated with the latest trends and technologies in physical security
Sign up

Share to:
Most Viewed Articles