Menu
IoT gear will need better security to win a Z-Wave badge

IoT gear will need better security to win a Z-Wave badge

Z-Wave's S2 security framework will be mandatory for certification starting next year

Tighter security will soon be mandatory for IoT devices that use the popular Z-Wave wireless protocol.

Starting next April, the Z-Wave Alliance will require all products to include its S2 (Security 2) framework before they can be certified as Z-Wave compliant. S2 is designed to prevent hackers from breaking into IoT devices that are on Z-Wave networks.

Home IoT has recently proved to be a dangerous vector for internet-based attacks, such as the one that corralled thousands of IP cameras and other devices into the so-called Mirai botnet that disrupted internet service last month.

Z-Wave is one of the main networking protocols for IoT, especially in consumer devices. Like Zigbee, Thread, and Bluetooth LE, it's used for short-range, low-power communications among devices that may be too small or power-constrained to use Wi-Fi. There are more than 1,500 certified interoperable Z-Wave products on the market worldwide, and more than 40 million units shipped, according to the Z-Wave Alliance.

The industry group introduced S2 last year in a bid to make Z-Wave products safer from takeover by hackers. The framework requires a QR code or PIN on each device for authenticating it to the network, and it uses an Elliptic Curve Diffie-Hellman secure key exchange. S2 also lets Z-Wave over IP networks tunnel traffic through a Transport Layer Security 1.1 tunnel.

The framework secures communication for both end devices, such as light switches and smoke alarms, and hubs and gateways that link Z-Wave networks to the internet.

IoT devices, especially consumer products, have raised Internet security concerns because some ship with big vulnerabilities, such as default passwords that are identical on every unit. Unlike the industrial connected machines of a previous era, IoT devices link up to the internet, so it's easier for attackers to get to them and take over. At that point, they can steal personal data, remotely control the device, get into other systems through the local network, or add the device to a botnet to carry out DDoS attacks.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Brand Post

What to expect from your IT Distributor

Whether you’re just starting out or you’ve been around since before the dot com rollercoaster, choosing the right distribution partner can be a pivotal factor in your success. This definitive guide outlines the traits that every IT partner needs to look for in their IT Distributor.

Featured

Slideshows

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

This year’s Reseller News 30 Under 30 Tech Awards were held as an integral part of the first entirely virtual Emerging Leaders​ forum, an annual event dedicated to identifying, educating and showcasing the New Zealand technology market’s rising stars. The 30 Under 30 Tech Awards 2020 recognised the outstanding achievements and business excellence of 30 talented individuals​, across both young leaders and those just starting out. In this slideshow, Reseller News honours this year's winners and captures their thoughts about how their ideas of leadership have changed over time.​

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners
Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

This exclusive Reseller News Exchange event in Auckland explored the challenges facing the partner community on the cloud security frontier, as well as market trends, customer priorities and how the channel can capitalise on the opportunities available. In association with Arrow, Bitdefender, Exclusive Networks, Fortinet and Palo Alto Networks. Photos by Gino Demeer.

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security
Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomed 2019 inductees - Leanne Buer, Ross Jenkins and Terry Dunn - to the fourth running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing face of the IT channel ecosystem in New Zealand and what it means to be a Reseller News Hall of Fame inductee. Photos by Gino Demeer.

Reseller News welcomes industry figures at 2020 Hall of Fame lunch
Show Comments