From what I read, Matter is based on IP, or is IP over various mediums (Thread, WiFi, etc). Since these devices have to talk to a Matter Controller, how can we ensure that a Matter device isn’t accessing the internet via its controller?
I think I can probably expect HA as a controller to have configuration to disallow that, but if I had another device acting as a controller or utilized as a border router, how could I be sure that none of its IP traffic is actually IoT device traffic?
For example, an AppleTV or an Amazon or Google speaker is a device someone would probably want to allow through their firewall, so it’s useful for its main purpose, but if it’s managing Matter/Thread traffic, how can we know that it’s not making internet requests on behalf of some random Matter device?
I’m open to learning I’m totally misunderstanding this, but if not, it seems like a huge downgrade in security/privacy vs Zigbee.