Hello Home Assistant Users! I’m Annika, I recently joined Nabu Casa as a UX Researcher. We’re currently investigating how Home Assistant can better support in evaluating and protecting a home’s privacy. If you want to help us, we’d be happy to learn about your approaches, thoughts, and experiences.
Imagine the following scenario:
A close friend/family member/colleague is moving into their new home and finally has the chance to set up the smart home they’ve always wanted. They trust your advice and specifically ask how to protect privacy in their new smart home. What would you recommend that person to do?
Please help us create a list of best practices for that person.
A list of things I have thought and would recommend:
Limit third party devices and if you have to use them, set them up on a guest network that has network isolation. You can go further here and start setting up VLANs and limiting outbound network traffic but that may be beyond most people’s desires due to some of the complexity.
Set up remote access securely!
Strong passwords for everything - use a password manager.
Limit the information you collect from devices and inform people what information is collected on them e.g. if you set up the HA app for someone and set location to on and don’t tell them, they might not realise their location is always tracked and recorded. Another thing to consider is do you really need that information or can it be reduced in some way to improve privacy?
Be careful of the custom add-ons and integrations you install and make sure they are genuine and doing only what they say they are.
General network recommendations like setting up a dedicated firewall device (e.g. pfSense, OPNSense plus Zenarmor) and moving all IoT devices to a VLAN with restricted network access etc. would completely overwhelm nearly all of my friends.
So I’d suggest to them to only use IoT devices that don’t need an internet connection, including the vacuum cleaner with built in camera (they pretend to like to store the room maps but then maybe they also upload videos in the cloud). I think HA should make it more clear which integrations are completely offline and which actively use the internet. No matter if for a lamp, a intercom, a fan or a vacuum robot, there are lots of integrations that only work online. They should include a clear warning sign in the HA UI so people stop buying from these brands.
Also I would suggest to ditch all companies where you’re not purchasing a product but you as a person are the product. E.g. Android & Google services, as their business model relies on learning as much as possible about you and then selling your profile.
While everybody here is focusing on security, especially from network perspective, I’d point to other aspect; selection of home automation technologies/ecosystems to be integrated:
Estimate number and type of devices you want to setup in your smart home upfront. This might influence technology selection (WiFi vs. Zwave vs. Zigbee, vs Matter, etc.)
Do not jump into impulsive buys just to start; make planning and select target ecosystem wisely. While HA can deal with lots of different ecosystems via proper integrations, it will make your life easier to select limited number of them and stick to.
Select technolgy that is easily scallable for your needs. For example using large number of WiFi connected devices might easily saturate your network/router/AP (consumer grade devices have some limitations), so consider technology limitations carefully. Or be prepared for upgrades as you go.
Judge your technical skills carefully. Consider simpler to use tech/ecosystem if you do not feel comfortable with tinkering with tech and just want some level of simple automation. Select more advanced or even DIY solutions if you feel comfortable with with and want some more joy from creating of your smart home.
Consider smart devices you might already have at home! Will they integrate? Might be good starting point into adventure.
There are some very good points above, which align well with the foundational values of HA, especially, local control. Of course there’s a natural tension between that philosophy, and the desire most people have for “hands-off” technology which they don’t have to set up or manage. I’m not sure HA can ever be a mass-market product without sacrificing some core values.
But, while I have your attention, since Nabu Casa is hiring, how about putting someone in charge of going through the hundreds of FRs and starting to work down that list?
These are things that users actually want. Too often lately it seems changes are being forced on users, rather than responding to their actual needs.
Anyway, if we are narrowing it to “smart home” then I recommend starting by only going with Z-Wave Plus or Zigbee 3.0 devices depending on budget. Z-Wave and/or Zigbee is IMHO the best way to stay secure.
I recommend avoid buying WiFi and LAN devices too unless they are open-source and fully local-only.
And while slightly off-topic I currently also recommend getting all Ubiquiti “Unify” series network equipment for WiFi and LAN, + if cameras are wanted then Unifi Protect if it can be achived within the persons budget).
Next is getting a Synology NAS with RAID-1 (mirrored disks) for local backups and network storage.
I also recommend iPhone instead of Android phone and tablets today because you get 5+ years updates.
Other general recommendation is to alway use different random passwords + a password manager.
PS: Maybe goes without saying today, but I first recommend buying the Home Assistant Green applicance (and until two days I also recommended buying Home Assistant SkyConnect USB dongle for Zigbee).
Have all IOT devices (sensors) on their own VLAN and that should be cut off altogether from the internet. Then only open that connection to the internet for that VLAN to update firmware, then lock it down again.
Get rid of every single device connected to the internet that listens to your voice. This includes turning off the ability for your phones to liten to voice commands.
For your outgoing internet connections, from within your router (so all devices in your network are automatically included) set up multiple VPN tunnels with mutiple external VPN service providers that do not have their headquarters in any nine-eyes countries. Set up each tunnel to be connecting to a server in a country that is not a member of any nin-eyes country. Then, either pool those connections together as the internet connection for everything in the home, or set up a round-robin scenario where the connectiouns to the internet alternate between the tunnels. I actually do the former*, I am using two vpn service providers and 5 open tunnels with each, all 10 of those tunnels are then pooled together as the internet connection. Every time I open a browser, or even refresh it, the connection appears to be coming from a different location (this can be checked with whoer.net or whatismyip.com).
Ensure all dns queries on your network are encrypted with DoH or DoT.
Ensure you have a strong firewall in place at all times.
Set up your internal network such that guests are on a guest vlan and ssid, and only have acces to a couple things (e.g., chromecasst, printers) as appropriate.
*This is primarily because even the best VPN Service provider’s have servers that go down from time to time, and if you are using that one server for your anonymous outgoing internet connection, the tunnel will be broken. Since I have 10 tunnels set up there are always at least 6-8 of them open and functioning properly, so the internet connection still goes through the ones that are working, thereby ensuring there is no interruption to my internet service.
For a given reason it should be mention that this is not limited to smart “speakers” like alexa and google whateveritscalled but as the enshittification get’s pace we are now in a world where it can be common that smart TV’s or cleaning robots use microphones and cameras against you(r privacy)