The modern home is always connected to the internet. From smart TV’s, gaming consoles, cameras, computers, mobile phones and your smart home. Regardless if you are home or not, your home is always under threat by cybercriminals.
Security is a top priority at Clare, and there are many software and hardware features in place to protect your home and identity. While we cannot cover every security and technological detail that is keeping your home and system safe, we would like to give you a brief overview.
THE SECURITY FEATURES BEHIND YOUR SMART HOME:
4-Stage Secure Access:
One of the biggest security features we use involves a 4-stage access authentication the first time you connect to your system. This must be done on every device that will have access to the controller.
Stage 1: Your first connection to the Clare controller requires you to be physically on-site
Stage 2: You must know the password and be connected to the home’s Wi-Fi
Stage 3: You must know the ClareHome systems Username and Password
Stage 4: You must enter the ClareHome system PIN
Smart Home System PIN:
Your ClareHome system requires a unique PIN. We highly recommend you change your default PIN every 30-90 days. Additionally, avoid using an easy to guess PIN such as “1234”, or “0000”.
To change your PIN, navigate to: Settings > Configuration > Reset PIN
Secure System Validation Tokens and Keys:
ClareHome uses secure tokens and keys for connecting and controlling your devices in the home. These tokens and keys are automatically generated, have a very short authorization period, and change regularly. This means it would be extremely difficult and virtually impossible to spoof an authorization token or key before its life expires.
Reverse Proxy Tunnel:
Whenever you use your ClareHome App, any command or action is automatically sent to our Cloud servers through a secure and encrypted tunnel. Unlike many other controllers, your CLIQ smart controller does not require a lowered firewall security setting or opened ports. Your smart controller initiates all connections to devices and does not allow traffic without authorized credentials. This makes any unauthorized devices unable to connect to your ClareHome system.
Homeowner Notifications When System is Accessed using Install Assist App:
If your system is ever accessed through Installer Tools like the Install Assist App, you will always receive a pop-up notification on all your connected Android and iOS devices alerting you.
Encrypted Connectivity:
Your ClareHome controller only uses encrypted SSL (Secure Socket Layer) protocols to communicate with devices and Apps. Every action or command is authenticated based on your credentials before being passed on to the home automation controller. There are no further communications made to other internet services.
There are several other powerful security features that are enabled and constantly running in the background. Unfortunately, we cannot reveal all the hidden features, but rest assured, your home is well protected.
WHAT CAN I DO TO FURTHER IMPROVE MY HOME NETWORK AND SYSTEM SECURITY?
While Clare has many protective features in place to keep your smart home system secure, there are several things all users can do to further enhance and secure their system and home. Here is the list:
Change Your Default Router Administrator Username and Password:
Most Wi-Fi routers and access points have default administrator usernames and passwords that can be found on the internet and exploited. If left unchanged, this leaves you and all your connected devices (including personal phones, TV’s, gaming consoles, and computers) vulnerable to cybercriminals. A secure router password should be at minimum: 20 characters long and include numbers, upper and lowercase letters, and symbols.
For instructions on how you can change your default username and password, contact your internet service provider, review the manual, or search your router online.
Always Use a Strong Wi-Fi Network Password:
Your Wi-Fi network password is different from the router administrator password. This is the password you use when connecting your devices to the Wi-Fi network. Like router admin passwords, default Wi-Fi passwords are also easy to guess and exploit. Be sure to change yours to a complex series of upper and lowercase letters, numbers, and symbols.
Use Network Encryption:
Most modern routers allow for encrypting your wireless connectivity to the router. WPA2 AES is the current security standard. Avoid using outdated encryption technology such as WEP, WPA or older as these systems are susceptible to hacking.
Hide, or at Minimum Change Your Network SSID:
Many routers allow you to hide the broadcasted name, allowing you to manually enter it to connect. If not hiding the SSID, at minimum, we recommend all users change the broadcast SSSID name. This makes it more difficult for hackers to identify the type of router you are using.
Strategically Position Your Internet Hardware:
Avoid placing your router and modem away from the center of the home. This broadcasts your Wi-Fi signal further into your neighborhood. Placing your internet hardware near the center of the home ensures you have strong Wi-Fi signal coverage all around, and broadcasts little outside your walls.
Disable Remote Access:
Some routers allow you to connect to the router remotely, giving hackers additional ways of exploiting your home and security. Disabling this feature helps prevent hackers from connecting to your home using devices that are not connected to your wireless network.
Keep Your Router Firmware & Software Up To Date:
Routinely check for router and modem firmware and software updates from the manufacturer. These updates are easily to install, often enhance performance, and most importantly, fix security loopholes and vulnerabilities. Some routers even allow for auto-updating. Be sure to check your settings for this feature.
Use a Firewall:
Modern routers often include network firewalls. Improve your security by ensuring your routers firewall is enabled, and if possible, make sure the SPI (Source Packet Inspection) setting is turned on. This option verifies that all incoming and outgoing packets (data transferring) are from authorized senders/devices.
Ready to get started with Clare? Visit www.clarecontrols.com
