Secure, From Anywhere
The Market Ticker - Commentary on The Capital Markets
Logging in or registering will improve your experience here
Main Navigation
Display list of topics
Sarah's Resources You Should See
Sarah's Blog Buy Sarah's Pictures
Full-Text Search & Archives
Legal Disclaimer

The content on this site is provided without any warranty, express or implied. All opinions expressed on this site are those of the author and may contain errors or omissions.

NO MATERIAL HERE CONSTITUTES "INVESTMENT ADVICE" NOR IS IT A RECOMMENDATION TO BUY OR SELL ANY FINANCIAL INSTRUMENT, INCLUDING BUT NOT LIMITED TO STOCKS, OPTIONS, BONDS OR FUTURES.

The author may have a position in any company or security mentioned herein. Actions you undertake as a consequence of any analysis, opinion or advertisement on this site are your sole responsibility.

Market charts, when present, used with permission of TD Ameritrade/ThinkOrSwim Inc. Neither TD Ameritrade or ThinkOrSwim have reviewed, approved or disapproved any content herein.

The Market Ticker content may be sent unmodified to lawmakers via print or electronic means or excerpted online for non-commercial purposes provided full attribution is given and the original article source is linked to. Please contact Karl Denninger for reprint permission in other media, to republish full articles, or for any commercial use (which includes any site where advertising is displayed.)

Submissions or tips on matters of economic or political interest may be sent "over the transom" to The Editor at any time. To be considered for publication your submission must include full and correct contact information and be related to an economic or political matter of the day. All submissions become the property of The Market Ticker.

Considering sending spam? Read this first.

2018-11-07 06:57 by Karl Denninger
in Small Business , 50 references Ignore this thread
Secure, From Anywhere
[Comments enabled]

So about those locks.....

 

One of the challenges I've had with allowing the manipulation of lock state (other than lock/unlock, or setting the keypad on or off) is the risk of someone picking off a code from your phone -- and then being able to break into your house.  For obvious reasons that would be bad.

I've decided to leverage the notification system built into the software for this purpose.  This has several advantages, chief among them being that neither the phone or the base software has to store a code from a lock in any case.

If you select "Get Code in Slot" and enter the slot number when you click Execute HomeDaemon-MCP retrieves the code in real time over the AES-encrypted channel from the lock and sends it back to your device via the encrypted notification system.  It never touches anything else (like the cloud) and is not stored anywhere other than in RAM on the device when displayed in the notification pane, which can be dismissed.  In addition there is no storage off-site, anywhere, of the event itself either so Mr. Subpoena (or "Mr. NSL") can pound sand since nobody can produce what they don't have.

If you set a code it is transmitted to the lock.  Ditto for deleting a code.

Codes on most common locks (they're all using the same basic board) can be 4 to 8 numeric digits.  8 is quite secure; 4, not so much, although after a few (wrong) attempts the lock will raise an alarm exception.  In all cases when the change "takes" an exception is raised back to the phone, so you know it went through, exactly as is the case for an asynchronous event (e.g. someone uses the code to open the lock.)

Disabling the keypad locks out all the codes, instantly (very useful if you're not at home, don't expect to be home, and don't want anyone to be able to open the door.)  The state of the lock in the background is currently set this way ("Prohibited" .vs. "Accessible.")  Oh, and the manual operation of the lock (e.g. with a key or the inside knob) is also instantly reported.

Again -- no cloud, no BeeEss, no stealing.

HomeDaemon-MCP is available to the firm, large or small, that wants to disrupt the model of "smart home" systems.  All rights, source and all, to both the base code running on a $35 piece of hardware and the Android app are included.  Look to the right and email me today!

Go to responses (registration required to post)
 



 
Comments.......
User: Not logged on
Login Register Top Blog Top Blog Topics FAQ
User Info Secure, From Anywhere in forum [Market-Ticker]
Jal
Posts: 627
Incept: 2009-03-25

Report This As A Bad Post Add To Your Ignored User List
What happens if there is a power outage and the batteries are dead?
Tickerguy
Posts: 154907
Incept: 2007-06-26
A True American Patriot!
Report This As A Bad Post Add To Your Ignored User List
You use a key.

----------
Winding it down.
Wellthen
Posts: 2
Incept: 2018-10-29

Report This As A Bad Post Add To Your Ignored User List
I would be interested, but I won't have any available funds for a few years as I'm getting rid of my student loans.

College was certainly a mistake.
Reefwalker
Posts: 10
Incept: 2010-07-03

Durango, CO
Report This As A Bad Post Add To Your Ignored User List
Karl,

What brands of light switches and thermostats is HomeDaemon-MCP compatible with and which would you recommend in the absence of its general availability? I really wish you were making this available now as opposed to selling the whole kit and kaboodle, but I understand your rational. Ive been reluctant to jump into home automation in a big way for all of the reasons you write about.
Tickerguy
Posts: 154907
Incept: 2007-06-26
A True American Patriot!
Report This As A Bad Post Add To Your Ignored User List
Anything Z-wave it will talk to. The better thermostats have immediate notification on local changes (at the unit itself) but it's a minor difference.

The only issue I'm aware of is a few older switch models that don't do association. These cannot report local changes from the switch itself asynchronously at all. They work but the code can't follow a local change since it never sees it.

----------
Winding it down.
Login Register Top Blog Top Blog Topics FAQ