Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Smart Firewall for Protection of IoT Devices - Are you using any?
Message
<blockquote data-quote="lunarlander" data-source="post: 810940" data-attributes="member: 66581"><p>I was just looking at CSO's advice on protecting IoT devices. <a href="https://www.csoonline.com/article/3085607/8-tips-to-secure-those-iot-devices.html" target="_blank">8 tips to secure those IoT devices</a></p><p></p><p>It is a little old (Jun 2018). But here's what I gathered from the article.</p><p></p><p>It recommended putting the Io'T device into a separate network. I do that. My Wi-Fi network is on a separate router. And that router links my Google Home and an obsolete smart phone, which runs the app for controlling the Google Home as well as Spotify.</p><p></p><p>The article also recommends using different passwords for each device. I use a separate gmail account for the obsolete Android smart phone and it is the also the gmail for running the Google Home. Got to limit the damage,</p><p></p><p>Turn off UPnP. Did that, turned off at router.</p><p></p><p>Use latest firmware for the IoT device. Don't see any firmware update option fro Google Home in the app. I theorize that the Google Home' is just a microphone and speaker with TCP/IP and all the intelligence is at Google's servers.</p><p></p><p>Be wary of Cloud Services. Can't help with that one. Google Home and Spotify both need cloud servers.</p><p></p><p>Track and assess devices. I only have 1 Google Home. No smart lights, etc. However, this part of defense is weak right now, I do have router with SPI. And syslog is enabled. But I think if I put my spare PfSense to use, I can do better.</p><p></p><p>In essence, my Wi-Fi network is untrusted territory and low security. I can't even enable AP Isolation or else Spotify won't communicate with Google Home. Confidentiality is out the door because Google Home is Google and they want to know everything. Integrity is somewhat protected with a WPA2 key, but the Google Home App can be attacked and has been compromised before. ( of course I reset the smartphone, but that doesn't stop future attacks ) I currently firewall the stupid app into oblivion until I need to configure the Home Availability is also out, because spoofed DoS attacks can come in from the internet.</p><p></p><p>So I guess confidentiality is out. Integrity is somewhat OK. And availability is as good as it can get for a residential site.</p><p></p><p>Are there things I can do to improve? I feel like I need to protect the Google Home more. But then, I always feeeel that security always needs to be improved. Risk based evaluation says I don't need to spend more than the cost of the Google Home and my Spotify yearly subscription.</p><p></p><p>Hey HarborFront, what high end routers are you thinking of?</p></blockquote><p></p>
[QUOTE="lunarlander, post: 810940, member: 66581"] I was just looking at CSO's advice on protecting IoT devices. [URL='https://www.csoonline.com/article/3085607/8-tips-to-secure-those-iot-devices.html']8 tips to secure those IoT devices[/URL] It is a little old (Jun 2018). But here's what I gathered from the article. It recommended putting the Io'T device into a separate network. I do that. My Wi-Fi network is on a separate router. And that router links my Google Home and an obsolete smart phone, which runs the app for controlling the Google Home as well as Spotify. The article also recommends using different passwords for each device. I use a separate gmail account for the obsolete Android smart phone and it is the also the gmail for running the Google Home. Got to limit the damage, Turn off UPnP. Did that, turned off at router. Use latest firmware for the IoT device. Don't see any firmware update option fro Google Home in the app. I theorize that the Google Home' is just a microphone and speaker with TCP/IP and all the intelligence is at Google's servers. Be wary of Cloud Services. Can't help with that one. Google Home and Spotify both need cloud servers. Track and assess devices. I only have 1 Google Home. No smart lights, etc. However, this part of defense is weak right now, I do have router with SPI. And syslog is enabled. But I think if I put my spare PfSense to use, I can do better. In essence, my Wi-Fi network is untrusted territory and low security. I can't even enable AP Isolation or else Spotify won't communicate with Google Home. Confidentiality is out the door because Google Home is Google and they want to know everything. Integrity is somewhat protected with a WPA2 key, but the Google Home App can be attacked and has been compromised before. ( of course I reset the smartphone, but that doesn't stop future attacks ) I currently firewall the stupid app into oblivion until I need to configure the Home Availability is also out, because spoofed DoS attacks can come in from the internet. So I guess confidentiality is out. Integrity is somewhat OK. And availability is as good as it can get for a residential site. Are there things I can do to improve? I feel like I need to protect the Google Home more. But then, I always feeeel that security always needs to be improved. Risk based evaluation says I don't need to spend more than the cost of the Google Home and my Spotify yearly subscription. Hey HarborFront, what high end routers are you thinking of? [/QUOTE]
Insert quotes…
Verification
Post reply
Top
