網絡安全與智能家居十妙招

瑞安·杰克遜

Security with home automation provokes an interesting debate and can be the sole purpose of why some might not invest in a smart home. Cybersecurity in smart homes is a perplex issue.

Over the past eighteen months， there has been a wide range of data breaches， but how secure is your connected home in general？ The thoughtless answer， “Probably much less secure than you might imagine.”

IoT brings a tremendous amount of connected devices into the home. The dark flipside is that cybercriminals are now benefiting from many new entry points into your home.

Why is cyber security a smart home issue？

Whats the difference between a standard instance of computer hacking and an attack on your IoT devices？

Well， if someone compromises your connected home， your data could easily be leaked. Imagine what would happen if someone hacks a single device and then obtains all your Wi-Fi credentials.

Perhaps worse， what if a cybercriminal gains access to your smart thermostat and learns when youll be away so they can burgle your home？ Its unlikely， but it could happen.

Luckily， you can fight back in several ways， and none of these approaches to cybersecurity at home involve dipping into your pocket either. So， without further ado， here are ten workable ways to tighten up security at home.

1） Update your router

Back in 2018， the VPNFilter malware infected more than a half-million routers in 50 countries. This malware rendered many routers inoperable. Malware can compromise your router and steal passwords and data.

As a matter of routine， you should reset your router periodically. Once a week is more than enough. If youre using an old router， you should consider an upgrade. Start from firm foundations， and youll keep the risk of a security breach to an absolute minimum.

2） Set up a guest Wi-Fi network

You shouldnt feel bad about setting up a guest network. While guests might naturally expect internet access when theyre visiting， theyve got no need for full access to all your settings.

If youve got a house filled with tech-savvy teens and their friends， youre much better off not providing more than basic internet service without access to everything.

You can extend this by creating separate network identities or SSIDs1. Keep one of these purely for security-conscious tasks like internet banking while reserving the other network for regular browsing and device management. That way， youll reduce the risk of any data being stolen in a security breach.

3） Keep passwords robust and security-conscious

Whats the first thing you should do when youve got any IoT device up and running？ Change the password; thats what. Sadly， entirely， 15% of users leave the default passwords in place， which is reckless.

You should resist the temptation to use passwords that are easy for you to remember or involve personal data like date of birth. Instead， avoid common words， include numbers and symbols， and consider using a password manager so you wont forget your super-strong password.

4） Secure your network fully

Within your router settings， be sure to amp up your security to use the WPA22 protocol. WEP3 might still be the most common protocol， but its much weaker and far more vulnerable to attack. These small details could mean the difference between business as usual or a data breach. Dont overlook the small stuff.

5） Embrace two-factor authentication

We know， two-factor authentication or 2FA can be a pain. It could also protect you against a cyber attack.

After signing in with a username and password， youll be prompted to use a second strand of security to verify your ID. Youll get a 6-digit code pinged to your smartphone， which， of course， a cybercriminal wont have to hand. Which do you prioritize more， slightly swifter log-ins or upgraded security？

6） Stay on top of software updates

If youre accustomed to swiping away and ignoring software updates， you might want to rethink that in the smart home.

Smart devices often have patches released to counter any potential security weak spots. While it would be ideal if these were automatically applied， thats not always the case.

Pay equal attention to security on your mobile device. Keep that smartphone updated， so you dont dip out on any strengthening of security for the sake of sixty seconds of effort.

7） Dont manage your smart devices from public Wi-Fi networks

While it can be tempting to continually check in on smart devices， resist the temptation to do so from an unsecured public Wi-Fi network. While you could always use a VPN4 to beef up security， its better to practice to sidestep accessing your IoT devices from this type of setting.

8） Disable unnecessary features

As a rule of thumb， if you dont need a feature or setting on any given smart device， disable it. If you dont use remote access， for example， leave it out of the equation. Sometimes， less is more. Enjoy a more streamlined and less bloated user experience while fractionally increasing security.

9） Use biometric authentication when available

Biometric ID removes much of the possibility of a security breach. If youve got a smart lock like Ultraloq， fingerprint recognition removes any reasonable chance of foul play. Unfortunately， this functionality doesnt currently encompass too many devices.

10） Make sure you have a firewall and security software in place

Last but certainly not least， make sure youve got robust antivirus and security software in place and dont neglect a firewall， either.

Apply all of the above tips， and you can massively improve smart home cybersecurity without needing to spend a cent.

家居自動化的安全問題引發了一場有趣的辯論，也可能成為部分人士不愿投資智能家居的唯一原因。智能家居的網絡安全問題令人困惑。

過去18個月，各種數據泄露事件發生，但總的來說，聯網家庭能夠有多安全呢？不費思量的回答是：“或許遠遠不如想象的那么安全?！?/p>

物聯網將大量聯網設備帶入家庭，其負面影響是網絡罪犯也因此有了可乘之機，可經許多新的端口潛入家居。

為什么網絡安全事關智能家居？

電腦黑客攻擊的標準案例和針對物聯網設備的攻擊有何區別？

的確，如果有人入侵聯網家居，數據就非常容易泄露。試想，如果黑客入侵某一設備，隨后竊取了所有的Wi-Fi證書，后果將會怎樣。

或許更為嚴重的是，如果網絡罪犯進入智能恒溫器，知道您什么時候離家，這樣他們就能入室行竊，那該如何是好？這貌似不大可能，但卻可能發生。

幸好您可以通過多種方式進行反擊，而且無須為這些家居網絡安保的方法另掏腰包。好了，話不多說，以下10個行之有效的方法可加強家居網絡安全。

1）定期更新路由器

回首2018，名為VPNFilter的惡意軟件導致50個國家的50多萬臺路由器感染中毒。這款惡意軟件致使許多路由器徹底癱瘓。惡意軟件不但破壞路由器，而且竊取密碼和數據。

養成定期重置路由器的習慣，一周一次即可。如仍在使用老舊路由器，則應考慮升級。只要從打好牢固的基礎開始，就能把安全漏洞的風險降到最低。

2）建立來賓Wi-Fi網絡

另建來賓專用網絡，不必感覺不自在。客人造訪固然希望可以上網，但無須為其開放所有設置。

如果家里來了一群精通網絡科技的青少年和他們的朋友，最好只提供最基本的聯網服務，切勿開放全部連接。

可通過創建獨立的網絡身份識別或服務集標識來擴展此功能。其中一個只用于如網上銀行等需要安全意識的任務，而另一個網絡用于常規瀏覽和設備管理。這樣，就可降低安全漏洞引起的數據被竊取的風險。

3）設置高強密碼，保持安全意識

啟動并運行任一物聯網設備之后，應該做的第一件事是什么呢？ 當然是更改密碼?？上?，有15%的用戶完全照用默認密碼，非常麻痹大意。

切勿使用容易記住或者包含出生日期等個人信息的密碼。避免使用常見的詞語，混合使用數字和符號，還可考慮使用密碼管理器，這樣就不會忘記自己的超強密碼了。

4）確保網絡安全

設置路由器時，務必使用無線保真網絡安全接入（第二代）協議以提高安全級別。有線等效保密協議可能仍是最常見的協議，但它更為脆弱，更易受到攻擊。這些細枝末節可能決定是一切正常還是數據泄露，小小問題不容忽視。

5）采用雙重認證

我們知道，雙重認證（2FA）可能是一種麻煩，但它可以保護您免受網絡攻擊。

通過用戶名和密碼登錄后，系統會提示使用第二道安全程序來驗證身份。智能手機就會收到一個6位數字驗證碼，當然，網絡罪犯是搞不到手的。您會優先考慮較快速度登錄，還是提高安全級別呢？

6）軟件更新到最佳狀態

要是您習慣清除軟件更新信息而不做更新，采用智能家居就需要重新考慮軟件更新了。

智能設備通常發布補丁應對任何潛在的安全弱點。自動更新較為理想，但情況并非總是如此。

移動設備的安全同樣需要加以關注。保持智能手機的更新，這樣只要花上一點點時間就不會錯過任何加強安全防護的機會。

7）不要通過公共Wi-Fi網絡管理智能設備

雖然人們總忍不住登錄智能設備，但盡量不要在不安全的公共Wi-Fi網絡上這樣做。雖然可以使用虛擬專用網絡增強安全性，但最好避免通過這種方式訪問聯網設備。

8）禁用不必要的功能

一般來說，可以禁用任何智能設備上某些不需要的功能或設置。例如，如果無須遠程訪問，那就刪除這個程序。有時候，少即是多。享受更精簡、更貼身的用戶體驗，同時還能增加一些安全性。

9）有條件可使用生物特征識別技術

生物特征識別技術很大程度上消除了安全漏洞的可能性。如果擁有一把像Ultraloq這樣的智能鎖，那么指紋識別可消除任何作奸犯科的可能。遺憾的是，目前絕大多數設備并不具備這項功能。

10）確保防火墻和安全軟件到位

最后，尤為重要的是，確保強大的殺毒與安全軟件安裝到位，不要忽視防火墻。

應用上述種種妙招，無須花錢就可大幅提高智能家居的網絡安全。

（譯者單位：臺州學院）