Well, they don't need to listen to everyone that knocks. I'm sure we would be de... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		lrem on Oct 31, 2018 \| parent \| context \| favorite \| on: Google Home (in)Security Well, they don't need to listen to everyone that knocks. I'm sure we would be delighted when devices would only talk to clients with valid certificates from the vendor, right? Edit: disclaimer: I work for Google, but my only contact with the home ecosystem is having a Chromecast.

TeMPOraL on Oct 31, 2018 [–]

Would we? The next thing that would happen is those certificates would end up inside secure chips, and suddenly the only way to talk to an IoT device would be through an official vendor's app, over an official vendor's bridge. No thank you. Turning physical products into services is not what I want.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact