Hi everyone. Before anything else, I would like to mention that I do not plan to expose absolutely anything to the internet other than using a VPN, and that’s if necessary.
Now, if I understand it correctly, ZigBee compatible devices need a controller attached to the computer to decipher messages? Since we are talking about security, it seems that the ZigBee network has its own encryption technology.
Coming to WiFi which was my original plan, we have established protocols like WPA2. I had intended for all of my IoT devices to be locked in a separate VLAN with no external access.
Which one of them do you think is better for privacy and longevity? I am going to use the basics such as lights, temperature/motion sensors (would like to flash with custom firmware like Tasmota if possible) - alongside some custom devices, which would also be programmed from scratch (ESP32 based). The problem I have with the devices from the latter proposition is that I have to keep on top of security trends myself, but I suppose that’s the trade-off one makes with custom devices.
Please tell me what you use at home and why, between Zigbee and WiFi?
Thanks
“Security” by itself is a meaningless concept. You need to formulate a threat model before you can say anything.
If your threat model is actors on the internet getting into your network using something related to the devices, then WiFi is many times worse. The devices are full network devices, and given for example a rogue firmware update, they can spawn a reverse shell let the actor into your network. This can and should of course be mitigated using the usual network engineering techniques. Zigbee is inherently different. Your light bulbs have no ip address, can’t route IP into your network on their own.
Another threat model is local information leak, someone in your area is listening to your radio emissions to determine if you’re home etc. This is about the same for zigbee and WiFi. They are both encrypted, but the real information is in whether there is communication, not the payload.
In terms of longevity, I would be wary of adding more 2.4 devices on your WiFi network. I can’t wait forcing the whole band.
Lots of people instantly think of security when they look at WiFi-connected IoT devices, but oftentimes they never think of the WiFi signal itself - what with all the added communication noise and send time limitations of having lots of small devices.
Especially with regular consumer equipment, it doesn’t actually require that many devices to fully saturate a regular home router or AP.That’s a good point. Another one I have is sort of failure tolerance. I used to have a really unreliable router which would often crash and could only be reset using a full power reset. While it was in this state, wifi obviously stopped working but my zigbee devices where still available. I used to have a zigbee button linked to a smart plug for toggling my router off and on again.
This shouldn’t be a concern for most people obviously but I wanted to share my experience.
Another point I want to mention is that zigbee works at 2.4Ghz just like basic wifi so they can still interfere with each other.
Zwave on the other hand uses another frequency (I think it was around 860MHz) but is more expensive.
ZigBee devices use less power, which means if they’re battery powered, it can last longer than wifi devices. It has faster handshake too. it can wakes up from sleep and transmit data in less than a second, while a WiFi devices may need several seconds to connect to your AP if it has been sleeping for some time. The difference in latency is really noticable for stuff like door sensor or movement sensor where the device may be sleeping for extended amount of time. But if you build your own device using esphome, I guess there is no option but to use wifi.
As for security, if they’re both offline, is it really matter?
Esp32-h2 now has ZigBee. I just ordered some so I can replace my current ones to get rid of wifi.
Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I’ve seen in this thread:
Fewer Letters More Letters AP WiFi Access Point IP Internet Protocol IoT Internet of Things for device controllers Zigbee Wireless mesh network for low-power devices
4 acronyms in this thread; the most compressed thread commented on today has 5 acronyms.
[Thread #269 for this sub, first seen 9th Nov 2023, 10:10] [FAQ] [Full list] [Contact] [Source code]
