Communications of the ACM

Home/News/When Strangers Can Control Our Lights/Full Text

ACM TechNews

When Strangers Can Control Our Lights

By Friedrich-Alexander niversity Erlangen-Nurnberg (Germany)
September 11, 2017
Comments

View as: Print Mobile App Share:

Components of a smart lighting system. — Friedrich-Alexander University Erlangen-Nurnberg researchers have detected security problems in a number of smart lighting systems.

Credit: Philipp Morgner

Researchers at Friedrich-Alexander University Erlangen-Nurnberg in Germany have discovered security problems in smart lighting systems developed by GE, IKEA, Phillips, and Osram.

The team caused connected lighting systems to flash for several hours with a single radio command sent from a distance of more than 100 meters. In addition, the researchers modified the bulbs using radio commands so the user was unable to control them, and in certain situations they were able to change the color or brightness of the light.

The team discovered the security vulnerability in ZigBee, a wireless standard used in more than 100 million products around the world.

The researchers showed the security features of touchlink commissioning are inadequate and leave the system vulnerable to attacks. The team recommends disabling touchlink commissioning in all future ZigBee products, and notes some manufacturers already have made an update available to customers that significantly reduces the risk of an attack.

From Friedrich-Alexander University Erlangen-Nurnberg (Germany)
View Full Article

No entries found

When Strangers Can Control Our Lights

The Campaign Against Deepfakes

Leveraging Professional Ethics for Responsible AI

The Role of Autonomous Machine Computing in Shaping the Autonomy Economy