IoT Security and Connected LED Lighting Networks: The Good News, The Bad News and the Way Forward

EIN 43 LightingCyber 400

Nov 12, 2019

A little over a decade ago, the introduction of LED lighting seemed to transform commercial lighting overnight. Now we’re seeing it happen again. This time, connectivity and big data are driving the change, creating a profound shift in how new commercial lighting is evaluated, specified and approved.

Suddenly everyone is talking and writing about connected lighting, networked lighting, smart lighting controls and the Internet of Things (IoT). As more companies explore networkable lighting and connected smart controls, a new player will be sitting at the table: the corporate IT department. And they’re going to be asking a lot of serious questions about cybersecurity.

In general, the more extensively a lighting network is connected to other networks, the greater the exposure to cybersecurity threats. Consider Gartner’s observation in its 2019 review of cybersecurity trends: “Companies have made a ‘smart’ version of basically everything you can think of, but many of those products have glaring security holes.” In fact, according to McAfee, 70% of IoT devices have such security flaws.

What’s worse, cybersecurity and IT experts point out, is that instead of “baking in” security measures as an essential ingredient of product development, many IoT device manufacturers are “bolting on” security after the fact. Which is a bit like constructing an office building without plumbing and electricity. Adding it later is expensive and difficult, if not impossible.

Leading us to the bad news: the security measures protecting the networkable products of many lighting vendors and their customers are almost non-existent or already years out of date.

But doesn’t almost every LED lighting vendor use 128-bit AES encryption and meet the National Institute of Standards and Technolog’s (NIST) FIPS 140-2, Level 1 requirements? In a word, yes. But encryption isn’t the only issue in smart lighting security, and unless encryption is consistently applied as part of a larger cybersecurity strategy, it won’t satisfy enterprise-level IT departments because it won’t protect the network from a myriad of other vulnerabilities.

Here’s the good news: Cree Lighting developed their smart lighting control networks from the ground up with an IT-grade cybersecurity strategy that has proactively excelled in rigorous independent security evaluations.

Cree Lighting recognized from the beginning that its SmartCast Technology would ultimately serve as an open and interoperable IoT platform. With that in mind, Cree Lighting set out to create a secure architecture to protect data and access. Our benchmark isn’t the best practices of the lighting industry; it’s those of the IT industry.

To ensure the security of the platform, Cree Lighting engaged independent cybersecurity consultants to intentionally attempt to hack the SmartCast Intelligence Platform. After extensive penetration testing, this global firm subsequently ranked the cybersecurity measures of the SmartCast Intelligence Platform in the top 10% of all technology companies they’ve tested, which includes leading technology companies that you use every day.

So what’s the way forward?

Today, anyone involved in commercial lighting projects needs to be guided by four basic assumptions:

1. Every lighting control network will eventually be connected to other enterprise networks and/or the Internet.

2. Any lighting control network that doesn’t provide enterprise-level cybersecurity may compromise the company and put valuable assets and resources at risk.

3. Not all lighting manufacturers give cybersecurity the same priority.

4. Since every IoT-enabled lighting network will require the blessing of the corporate IT department, you’ll want to choose a lighting vendor with cybersecurity that will earn IT department approval.

Welcome to the new reality of commercial lighting. Given the stakes, it’s worth the time to learn a little more about IoT security issues and their solutions. 

For additional information, download Cree Lighting’s FAQ on IoT security, developed for lighting designers and specifiers, or our new Position Paper for IT professionals outlining key security features of the SmartCast Intelligence Platform.


Related Articles

Changing Scene

  • 5 Simple Steps Towards Sustainable Lighting

    February 20, 2024 Here are five practical actions you can take –today! – to move towards designing more sustainably. Sustainability in lighting – a broad, sometimes confusing topic, that can be looked at in many ways. Circular lighting economy, material ingredient reporting (MIRs), environmental product declarations (EPDs), life cycle analyses (LCAs), factory working conditions, carbon… Read More…

  • Lighting Design International Calls for Greater Sustainability Across Lighting Design Projects

    February 19, 2024 Leading lighting design consultancy, Lighting Design International (LDI) has been raising awareness of the need for greater sustainability across the built environment. LDI’s Associate, Arianna Ghezzi, shared these principles as part of a panel discussion at the recent and most successful Surface Design Show. The talk focused on Circularity in Lighting, and… Read More…


  • Case Study: Windsor Family Credit Union (WFCU) with Salex SW

    Case Study: Windsor Family Credit Union (WFCU) with Salex SW

    February 6, 2024 Since 1940, WFCU Credit Union is a prominent and forward-thinking financial institution based in Windsor and Essex County. For over 80 years, WFCU has been dedicated to serving Ontario residents, community, organizations, small businesses, commercial entities, and public institutions. Their new headquarters in Kitchener was created as they continue to grow their… Read More…

  • Coaticook Suspended Footbridge: An Ever-Changing Luminous Canvas, Painted by Nature

    Coaticook Suspended Footbridge: An Ever-Changing Luminous Canvas, Painted by Nature

    December 5, 2023 At 170 m (554 ft) long and 50 m (160 ft) high, the Coaticook Canyon Bridge at Parc de la Gorge de Coaticook is one of the longest suspension footbridges in North America and one of the most popular tourist attractions in the Eastern Townships. For several years, the Parc de la… Read More…

New Products

  • LED Hi-Pro Expandable Lamp from Satco Nuvo Offer 320 Degree Rotation for Light Positioning

    LED Hi-Pro Expandable Lamp from Satco Nuvo Offer 320 Degree Rotation for Light Positioning

    February 22, 2024 SATCO|NUVO’s LED Hi-Pro Lamps offer a 320° rotating EX39 base making the installation of these lamps easier than ever. The two different on-unit CCT and Wattage Selectable switches give the user the power to customize the lighting for each unique environment. The notable design of the expandable light panels, when used in… Read More…

  • LED PIR Sensor Lamps from Satco Nuvo

    LED PIR Sensor Lamps from Satco Nuvo

    February 21, 2024 SATCO|NUVO’s PIR screw-base lamps with integrated motion sensor turn any luminaire into a motion activated light source without added wiring. Conveniently install lamps to improve safety and security in any application. Available in A19 and PAR38 bulb shapes and rated for wet locations, these lamps can be used indoors or outdoors, and… Read More…