A Comprehensive Look at Privacy and Cybersecurity in the Connected Home

EIN CABA report 400

April 9, 2021

It is critical to put the consumer at the center of the discussion, says new report that sets out a measured response plan the industry can use to fast-track solutions.

Cybersecurity and privacy concerns in the smart home have the potential to worsen with device ownership and demand for gadgets growing. In building their solutions, industry participants should therefore treat cybersecurity protections as the norm. Looking past functionality and user experience, privacy also needs to be factored into the process.

These were among the key recommendations of CABA’s Privacy and Cybersecurity in the Connected Home Landmark Research project, carried out by CABA member Frost & Sullivan. “Cybersecurity and privacy remain perhaps the foremost challenges for the connected home industry right now, compounded by technology adoption by new demographic segments, such as older adults and children and large numbers of young adults,” said Ron Zimmer, CABA President & CEO.

“This research sets out a measured approach that stakeholders can use to assess cyber risks and privacy infringement challenges in the connected home, hasten the development of market-wide solutions, and support the industry in a positive way.”

The research focused on understanding the implications of cybersecurity and privacy risks and ways of managing them. It reviewed the challenges of implementing protection measures and evaluated the perceptions of various industry stakeholders—including their level of accountability in managing the challenges. The analysis also provided best practices that can be prioritized to address the issue.

Strong adoption potential with high threat exposure
The consumer-focused portion of the research included a survey of approximately 1,100 consumers in North America. As much as 29 percent of connected-home adopters surveyed experienced some form of cyber breach over the last 12 months.

Consumers’ sophistication and vigilance with regard to connected-home solutions is increasing. Over 80 percent of survey respondents said they used unique, complex passwords for multiple devices and 49 percent were aware of privacy guidelines. However, consumers perceived the levels of privacy protection given by vendors and service providers to be very low.

“The privacy and cybersecurity concerns highlighted in the research pose a serious threat to the market prospects of connected-home solutions,” says Konkana Khaund, Director of Consulting, Energy and Environment with Frost & Sullivan. “This is further complicated by the growing ecosystem and the expanding technology stack that are increasing the potential for various vendors and service providers to inflict security breaches on each other’s networks.

“As different approaches strive for consensus in the areas of regulations, guidelines, and policy to address the stakeholder interests, it will be crucial for those efforts to account for interdependencies in risk mitigation, as well as to mature over time.”

Dynamic response plan
With a projected continued evolution in cyber threats, a dynamic response is required of key industry participants. Privacy is also a changing concept as consumers are introduced to novel experiences with emerging technologies and service experiences, the report notes. It is likely that expectations from vendors will shift as consumers weigh functionality, usefulness, and compromises to their privacy and anonymity.

For vendors and service providers, it is important to chart out a nimble and scalable response plan that can cope with their growth needs and consumers’ evolving demands for new connected products and solutions, the report recommends.

The research calls on solution providers to enhance their compliance levels, given the growing consumer sophistication and vigilance regarding the use of their devices and their expanding expectations of cybersecurity and privacy. But instituting prescriptive cybersecurity requirements and minimum privacy provisions in products requires collaboration between alliances and standards-development bodies to ensure that interoperability and cyber compliance is achieved consistently.

What remains to be seen is how much of this compliance can be institutionalized and mandated. As the report notes: “Interdependencies and crossover impacts will continue to challenge regulators, assimilators, integrators, aggregators, and above all, consumers. Adopting some of the best practices described in this research will help support the compliance agenda and fast-track the consensus needed to address cybersecurity and privacy challenges.”

The 120-page final report from this $130,000 US research project has just been released to the funding organizations. Anyone can download the 27-page Executive Summary—available as a free product in the CABA Store. The full report will also be added to the store following a 4-month embargo period.


Related Articles

Changing Scene

  • Acuity Brands Fiscal 2022 Fourth-Quarter And Full-Year Results

    December 6, 2022 Acuity Brands, Inc. (NYSE: AYI) (the “Company”) a market-leading industrial technology company announced net sales of $1.11 billion for the fiscal fourth quarter ended August 31, 2022, an increase of 11.8 percent, or $117.6 million compared to the same period in 2021. Diluted earnings per share (“EPS”) was $3.48 in the fourth quarter of fiscal 2022, an increase of 27.9… Read More…

  • Orion Energy Systems Q2 Revenue, FY’23 Revenue Outlook

    December 6, 2022 Orion Energy Systems is a energy-efficient LED lighting and controls, maintenance service and EV charging station solutions provider out of Wisconsin. Q2 Financial Highlights CEO CommentaryMike Altschaefl, Orion’s CEO, commented, “The first half of our fiscal year was impacted by the continuation of customer project delays which began in the second half… Read More…


  • LIT Lighting Design Awards: Capital Park Landscape, Victoria, BC

    LIT Lighting Design Awards: Capital Park Landscape, Victoria, BC

    December 5, 2022 Located in one of Victoria’s most historic neighborhoods, the Capital Park Mixed-Use Development is made up of seven buildings stretching across three lots and is responsible for nearly an entire city block of Victoria’s downtown core. The project took place over the span of three phases and eight years. The first phase… Read More…

  • Smith + Andersen Toronto 2022 IES Award Winning Projects

    Smith + Andersen Toronto 2022 IES Award Winning Projects

    December 5, 2022 This year, the Smith + Andersen Lighting Team received the Toronto IES 2022 Illumination Section Award and the IESNA Illumination Award of Merit for two projects: Grasett Park (Exterior Lighting Design), and St Paul’s Church (Interior Lighting Design). Each of these Toronto-based projects demonstrate a level of design excellence expected by the… Read More…

New Products

  • Stanpro Retro 5 CCT Selectable Downlight

    Stanpro Retro 5 CCT Selectable Downlight

    December 1, 2022 This Retro LED downlight offers a simple and economical retrofit solution for all traditional recessed applications. Easy installed with a quick connects wire and the E26 socket adaptor, this LED downlight is ideal for retrofitting into most of traditional 4″ and 5″-6″ housings, it will be installed in no time. The color… Read More…

  • Eureka Introduces Tangram-Trace Architectural Luminaire

    Eureka Introduces Tangram-Trace Architectural Luminaire

    November 30, 2022 Eureka announced the release of its Tangram-Trace architectural luminaire. Using bold straps and a prismatic lens, Tangram-Trace creates a dramatic aesthetic and provides high quality, diffused linear illumination. It is intended for modern environments such as conference and executive areas, hospitality applications, or reception spaces. Tangram-Trace luminaires are suspended using four-inch-wide straps,… Read More…