Friday, May 25, 2018
Posted by: Mitchell Klein
Security is a top priority for smart home device makers and consumers alike. Recently, a test conducted by security researchers questioned the implementation of our S0 and S2 security frameworks.
We want to be clear: installed Z-Wave-based smart locks are secure and are not vulnerable to threat. During setup with an S2 device, a forced downgrade is possible but is not a hack. This capability exists in the Z-Wave framework in order to accommodate backwards compatibility and allow S2 devices to work in an S0 network (and vice versa). To take advantage of this feature in a harmful way requires advanced equipment very close to the home in a fractional window of time. And, if done, the homeowner would be alerted to the change by the S2 gateway.
The Z-Wave Alliance, in cooperation with Silicon Labs, will continue to work with security experts as they test devices and questions arise. We believe strongly in the importance of the S2 framework and we believe that together, we can create the strongest, most secure IoT ecosystem on the market.