Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Wireless Networking Google Apple Technology

Apple, Amazon, Google, and Zigbee Alliance Standard For Smart Home Tech On Track For 2021 Release (macrumors.com) 69

An anonymous reader quotes a report from MacRumors: Last year, Apple, Amazon, Google, and the Zigbee Alliance, which includes Ikea, Samsung, and Philips, announced a new working group known as "Project Connected Home over IP" that set about developing an IP-based open-source connectivity standard for smart home products, with a focus on increased compatibility, security, and simplified development for manufacturers. The group has today announced a major update on the project, stating that development is ongoing, and that work is on track for a 2021 release.

The update reveals the first concrete information about how the open-source smart home standard will work. A large number of devices will be supported by the protocol, including "lighting and electrical (e.g., light bulbs, luminaires, controls, plugs, outlets), HVAC controls (e.g., thermostats, AC units), access control (e.g., door locks, garage doors), safety and security (e.g., sensors, detectors, security systems), window coverings/shades, TVs, access points, bridges and others," as well as additional "consumer electronics products." The announcement also reveals that the group has grown significantly, now with 145 active member companies. Between these companies there are hundreds of product, engineering, and marketing experts, working across 30 cross-functional teams to deliver the new standard.
The group aims to provide a "draft specification" by the end of the year, and release the completed standard next year.
This discussion has been archived. No new comments can be posted.

Apple, Amazon, Google, and Zigbee Alliance Standard For Smart Home Tech On Track For 2021 Release

Comments Filter:
  • by Joe_Dragon ( 2206452 ) on Tuesday September 08, 2020 @06:29PM (#60486150)

    no forced cloud and maybe Ethernet on some stuff

    • Samsung, who is part of this consortium, is on board with this already, at least somewhat. SmartThings has local automations that require no cloud connectivity and ZWave/Zigbee(which SmartThings acts as a hub for) are completely ethernet/internet independent.
      • by dfghjk ( 711126 )

        Just having "local automations that require no cloud connectivity" doesn't mean "no forced cloud". Requiring creation of an internet account in order to set up a smart things device, which I did yesterday, does.

    • by markdavis ( 642305 ) on Tuesday September 08, 2020 @07:07PM (#60486246)

      >"Re:no forced cloud and maybe Ethernet on some stuff"

      Bingo. I was about to post just that. The only standard I care about is an truly open one that enables ME to control MY stuff using MY stuff with no "cloud", no sharing of my info, and no "subscription" in between those. I doubt Apple, Amazon, and Google have any interest in that, whatsoever.

      And yes, I have a full X10 system in my house, still working. Would have moved to Zwave or similar had they similar devices and for reasonable prices.

      • Or you can have both z-wave and zigbee without needing cloud based crap in the form of hubitat or homeassistant. Personally I use hubitat as it's all self-contained and stable, and the hub is relatively cheap and works with a lot of stuff, plus I've had no problems integrating it with my home made Arduino sensors and controllers.

        • Or you can have both z-wave and zigbee without needing cloud based crap in the form of hubitat or homeassistant. Personally I use hubitat as it's all self-contained and stable, and the hub is relatively cheap and works with a lot of stuff, plus I've had no problems integrating it with my home made Arduino sensors and controllers.

          Hubitat: Would love to live it; but, no HomeKit support: Deal Breaker.

          And $130 is not "relatively cheap".

          So, I guess we're still not quite "there" yet.

          • Hubitat: Would love to live it; but, no HomeKit support: Deal Breaker.

            Pretty much everything would be a deal breaker in that case - homekit doesn't work with anything. It's kind of a POS too because Siri is a dingbat compared to the competition in the form of Alexa and Google, and that's pretty much the only thing you'd ever really need homekit for. Even officially supported devices are a PITA to get working. Like everything else Apple, they want the device makers to pay up in order to support homekit, and most of the better devices out there are made by small startups that c

            • Like everything else Apple, they want the device makers to pay up in order to support homekit, and most of the better devices out there are made by small startups that can't afford to do that.

              Is that still the case? I honestly don't know.

              I know there was an Mdi-Like licensing program when the Authentication had to use Apple-Supplied Microcontrollers; but once they made it so there was a "HomeKit SDK" (don't know the actual name of the Framework, sorry!), then I thought the Licensing requirement was dropped, too. But if there is still the Licensing, then I agree that is a severe impediment to Device-Adoption.

              It is not a "Rah, Rah, Apple!" sort of thing with HomeKit. Rather, it appears to be the o

              • the last thing i need is to have my home network laid bare by some dumbass lightswitch or doorbell-camera

                I'd stick with z-wave or zigbee then, they can't even route to your network. Z-wave S0 has a protocol vulnerability that is only exploitable during the pairing process, and even then they have to be very close by to exploit it; S2 is secure though. Either way, it's a very tiny risk and I'd only worry about it for barrier devices (i.e. garage door openers, door locks.) Some older zigbee devices have protocol vulnerabilities, and because I can't adequately control that I only use z-wave for barrier devices, a

                • the last thing i need is to have my home network laid bare by some dumbass lightswitch or doorbell-camera

                  I'd stick with z-wave or zigbee then, they can't even route to your network. Z-wave S0 has a protocol vulnerability that is only exploitable during the pairing process, and even then they have to be very close by to exploit it; S2 is secure though. Either way, it's a very tiny risk and I'd only worry about it for barrier devices (i.e. garage door openers, door locks.) Some older zigbee devices have protocol vulnerabilities, and because I can't adequately control that I only use z-wave for barrier devices, and zigbee just for things that don't control entry, including motion sensors, leak detectors, door sensors, lightbulbs, etc.

                  In any case, all of these just talk to the controller hub you have them joined to, and one another if in a mesh, and that's it. Your hub effectively becomes your choke point as far as security goes, just keep that secure and you're good. I personally don't bother with IoT, as a general rule if it uses IP networking then it's going to want cloud connectivity, and in addition to that, you're a slave to the vendor for firmware updates for as long as you own it. The sole exception to that rule is my thermostat (ecobee3) which is pretty good about firmware updates, and my arduinos, which I ultimately control the firmware for.

                  Thanks for the info!

                  I looked into Zigbee back in 2008 for an industrial Controller product I designed; but never knew what Z-Wave was. I just wish HomeKit supported it natively.

                  It would sure be nice to be able to use the AppleTV I already have in my living room and bedroom as a Hub for a wider assortment of peripherals. Especially since TVOS 14 (just out this week), definitely increases AppleTV's capabilities in that regard...

    • by AmiMoJo ( 196126 )

      That appears to be possible. Basically the system uses IP and can make use of various transport layers like Zigbee, ethernet or WiFi. Discovery and communication is all done locally.

      So if you have a decent router you can create a separate network for your IoT stuff that can't access the internet. Have a one-way gateway with your primary network that allows devices to talk to your IoT network for control.

  • by marcle ( 1575627 ) on Tuesday September 08, 2020 @06:36PM (#60486172)

    I notice this is all manufacturers. There are no consumer representatives or public advocates involved. The final spec will require subscriptions and locked-down hardware and software. There will be much data collection. Much like current smart TVs.

    Do not want.

    • Zigbee is a standard, isn't it? IEEE 802.15.4.

      I am a bit worried that Google will depreciate their existing Google Home connected standard, though, and I'll need to buy new smart light bulbs.

      • I am a bit worried that Google will depreciate their existing Google Home connected standard, though, and I'll need to buy new smart light bulbs.

        Well that's a major problem with all "Smart Home" systems, isn't it? Once you start fitting equipment for one particular system you're mired in vendor-lockin and can't easily add equipment from other systems. If you want to migrate to another system you have to replace all the equipment you have already.

        • Which is why Zigbee and Zwave are the safest choices. Zwave is closed, but it's widely supported and interoperable by design.
      • ZigBee is a proprietary (license encumbered) standard that technically complies with the IEEE standard. ZigBee is a completely braindead protocol. It's insecure and power wasteful. The IEEE standard is actually pretty decent though.
    • Yes I am also worried that the next generation of tech,like VR,Voice Assistants have no strong open source options.
    • by Merk42 ( 1906718 )
      I'll bite, who would you want to be on this aside from manufacturers? Please be specific.
    • by AmiMoJo ( 196126 )

      The final spec will require subscriptions and locked-down hardware and software.

      Not unless they fundamentally change the scope of what this is and re-write it from scratch, which seems unlikely to happen if it launches next year.

      This is a set of protocols running over IP for discovering and managing IoT devices on a local network. It doesn't require internet access, in fact it only specifies how the local part will work and any internet functionality would be out of scope.

      It's open source on Github, you can go read it yourself. This is good, we might finally get decent interoperability

  • This smells familiar. Oh yeah, I remember why! https://xkcd.com/927/ [xkcd.com]

  • by JustAnotherOldGuy ( 4145623 ) on Tuesday September 08, 2020 @06:47PM (#60486208) Journal

    I've no doubt they'll make this as hard to use for a hobbyist as they possibly can.

    It'll be full exploits and require subscriptions and will also have a shitload of DRM and deliberate interoperability issues. It'll need Alexa or Siri or Bixby or whatever the latest "home assistant" is. You'll see.

    X10 gear sucked but it worked and was reasonably inexpensive- the exact opposite of this crap coming down the pike.

    • SmartThings is pretty easy to use and Samsung is part of this group. I'm somewhat optimistic that SmartThings will continue to be just as easy to leverage with or without this greater group. Apple and Google have their own ideas, but they're not required to continue operating what you already got
    • by cusco ( 717999 )

      Amazon will insist on the same number of exploits as currently exist in their equipment; zero.

      If you think setting up devices under Alexa and/or Home is hard then there is something wrong with you, not the device. They've spent a TON of money to make sure that stuff "just works" in a manner so easy a Louisiana redneck can set it up. Maybe you should take it to your grandma's house to have her do it for you, it's that easy.

      The purpose of standards is to make things interoperable, there are already over 2

      • If you think setting up devices under Alexa and/or Home is hard then there is something wrong with you, not the device.

        Yeah, except I never said that, so piss off.

        • by cusco ( 717999 )

          You said, "they'll make this as hard to use for a hobbyist as they possibly can". Apparently I misunderstood your meaning, care to elaborate?

          • You said, "they'll make this as hard to use for a hobbyist as they possibly can". Apparently I misunderstood your meaning, care to elaborate?

            Yes, you misunderstood my meaning.

            What I said was "they'll make this as hard to use for a hobbyist as they possibly can", and what I meant was "they'll make this as hard to use for a hobbyist as they possibly can".

            Note the word "hobbyist". I'm not talking about you or Joe Sixpack plugging in an Alexa device.

            Maybe you imagined it, but I don't see anything that I said about having "difficulty setting up devices under Alexa and/or Home", and I also never said it was hard to do.

            Perhaps a reading comprehension c

  • by richardtallent ( 309050 ) on Tuesday September 08, 2020 @06:49PM (#60486210) Homepage

    I'll keep cobbling together tech that I'm in full control of, no cloud, and control it either with OSS like Home Assistant, or code I write myself. And if they stop making devices I can communicate with directly, I'll just go back to normal old dumb light switches and thermostats.

    • by cusco ( 717999 )

      This is not directed at geeks like you or I who are capable of setting up and managing a system like that. It's aimed at normal people who don't have a clue how it works nor the interest in finding out, who want to take it out of the box, follow less than a half-page of instructions, and have it "just work".

      I have a professional-grade security camera setup in my house, but that's what I do for a living. I certainly wouldn't expect my niece to be able to set up the equivalent, much less her stupid boyfrien

  • by schwit1 ( 797399 ) on Tuesday September 08, 2020 @06:51PM (#60486216)

    Eventually the home owner won't control who has access to the smart devices or control of the data collected by devices or have a right to repair.

    'Smart' applies to the grifter vendors, not the devices or the suckers that buy into this tech.

  • by Pinky's Brain ( 1158667 ) on Tuesday September 08, 2020 @06:52PM (#60486218)

    It would be really nice to have a modern low cost home automation devices with communication over power, not dragged down by 3 decades old signalling and unauthenticated and unencrypted protocols.

    • There are plenty of options; LMGTFY: See ethernet over power outlet
    • So, to hack into your house all the bad guy needs to do is find an electrical outlet outside to connect to? Every house that I have owned has had an outside outlet somewhere to plug in Christmas lights, power tools, etc. Even your outdoor AC unit would become a point to connect to a communication over power system. I don't want my door lock compromised by a Raspberry Pi rotating through 10,000 unlock codes when connected to my outdoor outlets.

      ---
      • With wireless they don't even need that. When there's a zero day they just do a drive by with a high gain antenna and they'll have a map of every vulnerable home.

        Ethrnet to everywhere is better, but that's a high cost retrofit.

    • by cusco ( 717999 )

      Unauthenticated and unencrypted? What kind of garbage are you buying? Even our backyard trail camera transmits an encrypted signal, and we only got it online by it authenticating with both myself through the device configuration software and the manufacturer, as well as the wireless network.

      • Not buying, but I'm mainly thinking of Universal Powerline Bus. There's some more modern open protocols and signalling technologies, but nothing with significant adoption.

        • by cusco ( 717999 )

          UPB dates from the 1990s, I wouldn't expect encryption since nothing smaller than a desktop PC CPU could have supported the overhead at that time. Anyone not supporting encryption by default on modern hardware needs to get out of the market.

  • I suppose it would have been too much to expect for them to adopt an "IPv6 only" specification.

  • Libertas extremely privacy-focused will be launched for sale in a month. ZERO INFORMATION LEAK! Do simple things that other systems cannot do! We are working around the clock on it. Stay tuned! https://librehome.com/ [librehome.com] Customize your own in-wall switch: https://librehome.com/customiz... [librehome.com]
  • How is it that in this modern age, the closest thing we still have to a decent smart smoke/CO2 alarm is still the Google controlled and monitored Nest devices?

    All of the other choices seem pretty poor by comparison, some not even seeming to work well in terms of being a basic smoke alarm.

    How hard can it be to take a first-rate smoke and CO2 detection unit, and marry that with something that can network a signal that goes out to let you know an alarm was triggered, along with the ability to send a signal bac

    • Personally, I'd like to see smoke alarms continue roughly as they are - that is, a super-simple device with a super-simple interconnect between them. It does what it's meant to - it makes a lot of noise if there's a fire, and if it fails, it fails safe.

      Indeed, such a simple setup is insurable too - dunno about where you live, but no one insures the "smart" smoke alarms as a solution here. You have to have the old simple ones along side whatever smart you want.

      If ever there was an addition to make, it would

      • That way, the smoke alarms just work as they ever were meant to, but the "smart" can see what they're doing and can report that to the user.

        This is what I am basically after, though the additions I would like beyond that are (A) know which one is triggering, and (B) be able to silence them with a smart device (or, even pre-disable one for say a half hour if I'm cooking something I know will smoke a bit).

        I haven't checked, but I suspect the interconnect is just "connect to X volts when activated" though, so

        • I don't know what it is either but it sure seems like it should be possible to make a smart device that listens in for whatever signal traditional alarms use... that alone would be really useful, I agree.

          Every few years, I search for what I agree should be a drop-dead-simple Embedded Project. Never any joy so far.

          I used to think that the issue was cost. But now that we have smartplugs that cost around $20, there really is no excuse for the continued non-existence of this class of devices. For example, Iâ(TM)d be happy as hell to pay $50/node for a HomeKit-connected Smoke Detector. That should be 100% doable at this point. Philips or Samsung could do this in a weekend. And could do it without costing $2

          • For example, IÃ(TM)d be happy as hell to pay $50/node for a HomeKit-connected Smoke Detector. That should be 100% doable at this point. Philips or Samsung could do this in a weekend.

            Yes, there's the mystery to me as well! Or like you say, where is the open source embedded project? It has got to be dirt simple, and cheap with the hardware that is around now.

            • Yes, there's the mystery to me as well! Or like you say, where is the open source embedded project? It has got to be dirt simple, and cheap with the hardware that is around now.

              Actually, I just ran across a "Why didn't I think of that?" Product that answers a few of your (and my) requirements.

              It is called the "SmartBattery" by a company named Roost.

              At $35.95 apiece (2 for $65), it offers the ability to convert virtually any 9V-powered Smoke/CO detector to a home WiFi network!

              Sounds great; but it has a few drawbacks:

              1. You have to buy directly from Roost to get the vastly-improved 2nd generation hardware. Do NOT buy from Amazon!!!

              2. It only communicates over your LAN to a dedicate

              • It is called the "SmartBattery" by a company named Roost.

                I saw those on Amazon when I was looking at smart fire alarm options, but the reviews were pretty bad - thanks for letting me know you can get a better model directly. I think I will try that out as it's a lot better than nothing.

                • It is called the "SmartBattery" by a company named Roost.

                  I saw those on Amazon when I was looking at smart fire alarm options, but the reviews were pretty bad - thanks for letting me know you can get a better model directly. I think I will try that out as it's a lot better than nothing.

                  That's what I thought, too!

          • I think the problem is that there's a lot of commercial SLC loop detectors out there, and they all belong to systems that are paragons of customer lock-in. What you want is one of these with a little box that has a 2 wire connection for the loop, a DC power input and an ethernet socket, allowing any computer to directly poll the detectors. But, if that existed, it would have to be certified as capable of doing it's job by NFPA. And, if it existed and was certified, then that aspect of fire detection would b
            • if that existed, it would have to be certified as capable of doing it's job by NFPA.

              Considering that there are a couple of ridiculously-expensive residential-class devices like that already out there, I'm not sure the stranglehold/collusion is quite as tight as you suggest.

              https://www.tomsguide.com/us/b... [tomsguide.com]

              Now, all we have to do is to get the cost below a fucking chromebook...

              • There's a lot of detectors like these [systemsensor.com] that are slaves to a loop. The individual sensors aren't a huge expense, and their control system isn't complex [douglaskrantz.com], but nowhere have I found a device that will let a computer poll SLC sensors directly.
                • There's a lot of detectors like these [systemsensor.com] that are slaves to a loop. The individual sensors aren't a huge expense, and their control system isn't complex [douglaskrantz.com], but nowhere have I found a device that will let a computer poll SLC sensors directly.

                  I am not sure that is the best idea, anyway. I think that Push-communicating as directly as possible with a cellphone is best, along with a similar Notification sent to a Cloud (yes I said Cloud) Service that can then notify whoever you set-up.

                  Actually, the Roost SmartBattery (2nd gen!), at $34.95/unit, seems to be the best bet so far. And a major advantage is that you can use it with most 9V-battery-driven Smoke/CO Detectors. Not shilling for them; it just looks pretty cool, as long as they stay in busines

  • not by inventing a new system. New standards these days are more about marketing and locking out competitors. We have never been able to design secure systems from scratch because we have no reliable way to understand and find all vulnerabilities. So any new work will be insecure by default. After a decade of updates the systems may start to be secure and reliable if few new features are added and the standard is kept simple. That's the only way we know how to do security and reliability. I would not
  • I like Zigbee precisely because it doesn't create an IP network. For me all this will do is increase the attack surface.

    • by cusco ( 717999 )

      Ah, security by obscurity! What a concept!

      • That's why I don't have any lights in my house.

      • No. Not like that. Because by design a Zigbee device can't automatically connect to Cloud and send 10s of MB data over, as long as you power it up. The main reason they promote wifi is that it is a lot easier to steal.
        • by cusco ( 717999 )

          Disagree completely. The reasons why they promote wifi is because 1) well over a third of the population rents (including the majority of their target audience) so can't run cabling, 2) the vast majority of people aren't competent to run cable throughout their home.

          When wifi was still new, expensive and insecure I ran CAT-5 cable to every room in the house. Only two of those connections have been used in the last ten years, my office and the port the WAP is plugged into. None of our IoT devices use them,

          • The article is about IP network. It is not about wifi. Explain to me why do they want IP over zigbee? Why would anybody trust a $5 IP device that can collect anything ang freely send to cloud?
    • I like Zigbee precisely because it doesn't create an IP network. For me all this will do is increase the attack surface

      IIRC, a Zigbee Mesh PAN is a type of IP network. Just not an 802.11 - style one.

  • ... if privacy is taken into account!
    Now, Apple is part of the group and so far they seem quite privacy oriented, hence probably that will help in coming to an acceptable spec from a privacy POV. However it would be preferable if an independent customer privacy group were involved as well.

Single tasking: Just Say No.

Working...