How do smart plugs of domotic IoT work?












1














I was wondering how smart plugs work, how they can be controlled and how secure they are.



Since they are part of your local network and since they can be controlled remotely even from another network I am expecting they have have some port-forwarding method: do they? If not how can they be controlled from outside?



Isn't port-forwarding a little insecure for controlling these kinds of applications?



Do they use RESTful APIs? If so can I control them using for example Postman?



I checked if the ones I have any kind of API documentation but I could not find anything.










share|improve this question



























    1














    I was wondering how smart plugs work, how they can be controlled and how secure they are.



    Since they are part of your local network and since they can be controlled remotely even from another network I am expecting they have have some port-forwarding method: do they? If not how can they be controlled from outside?



    Isn't port-forwarding a little insecure for controlling these kinds of applications?



    Do they use RESTful APIs? If so can I control them using for example Postman?



    I checked if the ones I have any kind of API documentation but I could not find anything.










    share|improve this question

























      1












      1








      1







      I was wondering how smart plugs work, how they can be controlled and how secure they are.



      Since they are part of your local network and since they can be controlled remotely even from another network I am expecting they have have some port-forwarding method: do they? If not how can they be controlled from outside?



      Isn't port-forwarding a little insecure for controlling these kinds of applications?



      Do they use RESTful APIs? If so can I control them using for example Postman?



      I checked if the ones I have any kind of API documentation but I could not find anything.










      share|improve this question













      I was wondering how smart plugs work, how they can be controlled and how secure they are.



      Since they are part of your local network and since they can be controlled remotely even from another network I am expecting they have have some port-forwarding method: do they? If not how can they be controlled from outside?



      Isn't port-forwarding a little insecure for controlling these kinds of applications?



      Do they use RESTful APIs? If so can I control them using for example Postman?



      I checked if the ones I have any kind of API documentation but I could not find anything.







      smart-home smart-plugs rest-api






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Jan 5 at 13:39









      Francesco BoiFrancesco Boi

      287111




      287111






















          2 Answers
          2






          active

          oldest

          votes


















          2














          Most smart plugs use cloud providers to toggle the power state of the device, there are a few (big) issues with this:




          1. If your internet is down you can't use it, even if you are on the same network.


          2. (And probably the biggest) data security, what data are these cloud servers able to access, what do they do with the data, what happens if they get hacked, what happens if they get sold?



          The easiest and cheapest way to battle both of those issues is to setup a home automation server, you can do this a few ways.
          Search for either of these:




          • Home Assistant

          • OpenHAB


          Then get yourself devices that integrate with them.
          I would recommend anything that is compatible with Tasmota.






          share|improve this answer























          • If it's a home automation server, you have to open some port don't you?
            – m4l490n
            Jan 5 at 15:02










          • Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
            – Falz
            2 days ago



















          1














          Most consumer IoT devices do not use port forwarding, they connect out to a central cloud based Command/Control server.



          This is for several reasons:




          • Port forwarding limits the number of devices that can be deployed

          • Port forwarding either requires the owner to be technically capable of enabling it or UPnP to be enabled on the router to open ports.

          • Port forwarding needs the controller to knowing which port is mapped to which device.

          • Connecting out removes the need for port forwarding and works though nearly all firewalls with out without NAT.


          The remote connection can either be a long pole HTTP or MQTT or similar messaging protocol.



          Some will also have local interfaces to control them from on the same network e.g. Ikea Trafri devices use CoAP locally or Belkin WeMo devices use SOAP






          share|improve this answer























            Your Answer








            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "666"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: false,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: null,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














            draft saved

            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fiot.stackexchange.com%2fquestions%2f3752%2fhow-do-smart-plugs-of-domotic-iot-work%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            2 Answers
            2






            active

            oldest

            votes








            2 Answers
            2






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            2














            Most smart plugs use cloud providers to toggle the power state of the device, there are a few (big) issues with this:




            1. If your internet is down you can't use it, even if you are on the same network.


            2. (And probably the biggest) data security, what data are these cloud servers able to access, what do they do with the data, what happens if they get hacked, what happens if they get sold?



            The easiest and cheapest way to battle both of those issues is to setup a home automation server, you can do this a few ways.
            Search for either of these:




            • Home Assistant

            • OpenHAB


            Then get yourself devices that integrate with them.
            I would recommend anything that is compatible with Tasmota.






            share|improve this answer























            • If it's a home automation server, you have to open some port don't you?
              – m4l490n
              Jan 5 at 15:02










            • Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
              – Falz
              2 days ago
















            2














            Most smart plugs use cloud providers to toggle the power state of the device, there are a few (big) issues with this:




            1. If your internet is down you can't use it, even if you are on the same network.


            2. (And probably the biggest) data security, what data are these cloud servers able to access, what do they do with the data, what happens if they get hacked, what happens if they get sold?



            The easiest and cheapest way to battle both of those issues is to setup a home automation server, you can do this a few ways.
            Search for either of these:




            • Home Assistant

            • OpenHAB


            Then get yourself devices that integrate with them.
            I would recommend anything that is compatible with Tasmota.






            share|improve this answer























            • If it's a home automation server, you have to open some port don't you?
              – m4l490n
              Jan 5 at 15:02










            • Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
              – Falz
              2 days ago














            2












            2








            2






            Most smart plugs use cloud providers to toggle the power state of the device, there are a few (big) issues with this:




            1. If your internet is down you can't use it, even if you are on the same network.


            2. (And probably the biggest) data security, what data are these cloud servers able to access, what do they do with the data, what happens if they get hacked, what happens if they get sold?



            The easiest and cheapest way to battle both of those issues is to setup a home automation server, you can do this a few ways.
            Search for either of these:




            • Home Assistant

            • OpenHAB


            Then get yourself devices that integrate with them.
            I would recommend anything that is compatible with Tasmota.






            share|improve this answer














            Most smart plugs use cloud providers to toggle the power state of the device, there are a few (big) issues with this:




            1. If your internet is down you can't use it, even if you are on the same network.


            2. (And probably the biggest) data security, what data are these cloud servers able to access, what do they do with the data, what happens if they get hacked, what happens if they get sold?



            The easiest and cheapest way to battle both of those issues is to setup a home automation server, you can do this a few ways.
            Search for either of these:




            • Home Assistant

            • OpenHAB


            Then get yourself devices that integrate with them.
            I would recommend anything that is compatible with Tasmota.







            share|improve this answer














            share|improve this answer



            share|improve this answer








            edited Jan 5 at 16:21









            hardillb

            6,4411826




            6,4411826










            answered Jan 5 at 14:34









            FalzFalz

            1015




            1015












            • If it's a home automation server, you have to open some port don't you?
              – m4l490n
              Jan 5 at 15:02










            • Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
              – Falz
              2 days ago


















            • If it's a home automation server, you have to open some port don't you?
              – m4l490n
              Jan 5 at 15:02










            • Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
              – Falz
              2 days ago
















            If it's a home automation server, you have to open some port don't you?
            – m4l490n
            Jan 5 at 15:02




            If it's a home automation server, you have to open some port don't you?
            – m4l490n
            Jan 5 at 15:02












            Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
            – Falz
            2 days ago




            Yeah for some, you could also setup a VPN, or use home assistant's paid service to setup a secure connection.
            – Falz
            2 days ago











            1














            Most consumer IoT devices do not use port forwarding, they connect out to a central cloud based Command/Control server.



            This is for several reasons:




            • Port forwarding limits the number of devices that can be deployed

            • Port forwarding either requires the owner to be technically capable of enabling it or UPnP to be enabled on the router to open ports.

            • Port forwarding needs the controller to knowing which port is mapped to which device.

            • Connecting out removes the need for port forwarding and works though nearly all firewalls with out without NAT.


            The remote connection can either be a long pole HTTP or MQTT or similar messaging protocol.



            Some will also have local interfaces to control them from on the same network e.g. Ikea Trafri devices use CoAP locally or Belkin WeMo devices use SOAP






            share|improve this answer




























              1














              Most consumer IoT devices do not use port forwarding, they connect out to a central cloud based Command/Control server.



              This is for several reasons:




              • Port forwarding limits the number of devices that can be deployed

              • Port forwarding either requires the owner to be technically capable of enabling it or UPnP to be enabled on the router to open ports.

              • Port forwarding needs the controller to knowing which port is mapped to which device.

              • Connecting out removes the need for port forwarding and works though nearly all firewalls with out without NAT.


              The remote connection can either be a long pole HTTP or MQTT or similar messaging protocol.



              Some will also have local interfaces to control them from on the same network e.g. Ikea Trafri devices use CoAP locally or Belkin WeMo devices use SOAP






              share|improve this answer


























                1












                1








                1






                Most consumer IoT devices do not use port forwarding, they connect out to a central cloud based Command/Control server.



                This is for several reasons:




                • Port forwarding limits the number of devices that can be deployed

                • Port forwarding either requires the owner to be technically capable of enabling it or UPnP to be enabled on the router to open ports.

                • Port forwarding needs the controller to knowing which port is mapped to which device.

                • Connecting out removes the need for port forwarding and works though nearly all firewalls with out without NAT.


                The remote connection can either be a long pole HTTP or MQTT or similar messaging protocol.



                Some will also have local interfaces to control them from on the same network e.g. Ikea Trafri devices use CoAP locally or Belkin WeMo devices use SOAP






                share|improve this answer














                Most consumer IoT devices do not use port forwarding, they connect out to a central cloud based Command/Control server.



                This is for several reasons:




                • Port forwarding limits the number of devices that can be deployed

                • Port forwarding either requires the owner to be technically capable of enabling it or UPnP to be enabled on the router to open ports.

                • Port forwarding needs the controller to knowing which port is mapped to which device.

                • Connecting out removes the need for port forwarding and works though nearly all firewalls with out without NAT.


                The remote connection can either be a long pole HTTP or MQTT or similar messaging protocol.



                Some will also have local interfaces to control them from on the same network e.g. Ikea Trafri devices use CoAP locally or Belkin WeMo devices use SOAP







                share|improve this answer














                share|improve this answer



                share|improve this answer








                edited 2 days ago

























                answered Jan 5 at 16:34









                hardillbhardillb

                6,4411826




                6,4411826






























                    draft saved

                    draft discarded




















































                    Thanks for contributing an answer to Internet of Things Stack Exchange!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.





                    Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


                    Please pay close attention to the following guidance:


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fiot.stackexchange.com%2fquestions%2f3752%2fhow-do-smart-plugs-of-domotic-iot-work%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    Popular posts from this blog

                    "Incorrect syntax near the keyword 'ON'. (on update cascade, on delete cascade,)

                    Alcedinidae

                    Origin of the phrase “under your belt”?