They are the latest must-have gadgets, but “smart” domestic appliances might not be so clever after all.
In a groundbreaking study, Scottish scientists, have discovered security is lacking on such devices that are managed remotely.
Experts at the University of Edinburgh have identified steps that manufacturers could take to improve the products’ security, in a market that is forecast to be worth £80 billion by 2022.
They have identified flaws in the design of home automation systems, which could enable theft of passwords or other sensitive information.
These weaknesses could also allow online attackers to interfere with the use of domestic devices, potentially causing stress and damage to their victims.
Researchers studied the security of popular “smart” home ecosystems.
The team found vulnerabilities in the design of the smartphone app that is used to control smart appliances, and in the way in which these devices are configured to use home wifi networks.
The university stated: “These weaknesses could enable cyber attackers to obtain users’ wifi passwords and access to their online activities.
“Researchers were also able to connect a fake device, created using computer code, which can appear to the user as a legitimate smart appliance.
“This has the potential to underpin phishing attacks – in which users are misled into disclosing account details that attackers can use to access other online accounts and private information. The team have developed ways to help manufacturers remove similar weaknesses from designs and improve security.”
Dr Paul Patras, of the university’s School of Informatics, who took part in the study, commented: “Smart home systems and the many benefits they offer are proving popular with consumers.
“It is important that these are developed with security in mind, and that regulations keep pace with developments in technology and its
applications.”
In the coming weeks, only subscribers will be able to comment on The National articles. Subscribe now or log in to make sure you stay a part of the conversation.
Why are you making commenting on The National only available to subscribers?
We know there are thousands of National readers who want to debate, argue and go back and forth in the comments section of our stories. We’ve got the most informed readers in Scotland, asking each other the big questions. What should we do with our second vote in 2021? What happens if Westminster says no to indyref2?
Unfortunately, though, these important debates are being spoiled by a vocal minority of trolls who aren’t really interested in the issues, try to derail the conversation, register under fake names, and post vile abuse. We’ve had hundreds of emails from you complaining about this, asking us to take steps to ensure that these people aren’t given a platform on our site.
We’re listening to you, and here’s how we plan to make that happen.
We have decided to make the ability to comment only available to our 10,000 paying subscribers. That way, all the trolls who post abuse on our website will have to pay if they want to join the debate – and risk a permanent ban from the account that they subscribe with.
The conversation will go back to what it should be about – people who care passionately about the issues, but disagree constructively on what we should do about them.
We’ll be monitoring this change over the first few weeks, and we’re keen to know your thoughts. Email us at letters@thenational.scot if you want to have your say.
Callum Baird, Editor of The National