Profile

Cover photo
Sondre Eikanger Kvalø
Works at Sonat Consulting
Attended Universitetet i Bergen
Lives in Bergen
338 followers|210,946 views
AboutPostsPhotosYouTube+1'sReviews

Stream

Sondre Eikanger Kvalø

Shared publicly  - 
 
Velkommen til oss +Petur Bjorn Thorsteinsson
 ·  Translate
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 ·  Translate
Økende etterspørsel gjør at Sonat Consulting ansetter tre nye konsulenter.
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Be aware :-)
 
My dumb smart home
tl;dr It isn't that the home automation system HDL-BUS Pro has any security holes, it doesn't have any security. If your house, the hotel you're staying on or your business uses HDL you should definitely read on.

This spring I moved into my new house. When building a house in 2014/2015 you kind of feel obligated to make it a bit smart. Being a programmer it makes it a must. I looked into quite a few systems and protocols for home automation. Since this is a new building I preferred a cabled system instead of a wireless one. The electrical contractor for the house wasn't much updated on smart homes, but luckily they had a few electricians which knew and installs HDL-BUS Pro systems. So a bit coincidentally I ended up with HDL.

Long before the actual installation I went to a training for "programming" (configuring really) the system. I was very curious about the underlying protocol and how stuff worked under the hood. Luckily HDL is open about its buspro protocol - and that's a healthy sign - and I learned about and was given the specification for the internal communication between the components. This was when I first was a bit surprised about the lack of security. It's a straight forward simple protocol - and that's a good thing - but it completely lacks encryption, authentication and authorization.

HDL has a component called IP gateway which is a gateway between ethernet and the wired HDL components. The IP gateway necessary to configure the components through the their Windows application called HDL-BUS Pro Setup Tool. It also supports remote configuration from anywhere on the Internet.

Security precaution #1
If you have an IP gateway connected to your ethernet you want to make that a network that isn't reachable for unauthorized parties - meaning that both wired and wireless network shouldn't be available for anyone you don't trust. My neighbour was over the other day and casually asked "What's the password for the Wi-FI?" Of course, I run the guest Wi-Fi in my house on a separate network so I could give him access. However, I suspect that most people (or businesses) with HDL don't realize the dangers and let anyone access the same network. If you want your IP gateway to be available via your Wi-Fi you want to make sure that the encryption, password and security in general is at a high level.

Security precaution #2
Very much like the precaution #1 regarding Wi-Fi and cabled ethernet, you should think twice if you have your ethernet available over your powerlines. What about that power outlet you have outside your house or just inside the garage?

Security precaution #3
With so many "trusted" devices connected to your Wi-Fi chances are that the security in or more of them have been comprimised. A typical home Wi-Fi for a family have several phones, tablets, laptops, TVs, and a video game console connected. Also with Internet of Things on the rise more and more units are allowed on your local network. If only one of those are compromised, someone could theoretically get access to your smart home. Considering precaution #1-3 you probably shouldn't have the IP gateway connected to the ethernet at all.

Security precaution #4
Do you have any outdoor sensors for e.g. temperature or motion connected to your system? Well, I don't think you should. What happens if someone hooks up an IP gateway and a computer on that unit or the unit's wires? Correct, they have full access to your system.

Security precaution #5
Being on a ethernet with a HDL system and recent version of the IP gateway's firmware lets you enable remote access. So, have you possibly had any unwelcome guests connected to your local network at some point? Have you checked if someone has enabled remote access to your system? Or maybe they just fetched the IP address, username and password from the IP gateway. Either way someone could access your system from remote at any desired time later on. My advice is to have the remote connection disabled.

Security precaution #6
If you have ever accessed your HDL system from remote through the IP gateway you should consider changing the login info and/or disable the remote access. As mentioned, HDL doesn't have any encryption, meaning that nearly anyone could possibly have picked up your login info when connecting through the Internet.

Security precaution #7
HDL has an SMS gateway that lets you text commands to the HDL system. Typically a set of phone numbers are whitelisted for sending commands. Commands can be something like "VACATION", "ALARM OFF", "OPEN GARAGE". It is very easy to spoof a phone number when sending a text. If someone knows - or guesses - the phone number you send commands from, so can they. If someone has/had access to the SMS gateway that someone could know the commands and even set up other commands.

Hacking scenario #1
So, what's the problem with having anyone connected to your HDL system either remotely or locally? Well, what if someone reads the status of the motion sensors? Then it could be possible to know if there's anybody home, maybe they could even make educated guesses about who's home depending on which areas that are in use. You don't post a sign outside your home telling potenial burglars that you aren't home, so you shouldn't let your smart home do that either.

Hacking scenario #2
Okay, somebody knows that noone's home, but you're protected by your smart home aren't you? Motion detectors, alarm sound, blinking lights, SMS warnings on intrusion. If someone has access to your HDL system they can easily turn this off. They could even turn it off, break in, turn the alarm system back on after leaving, and you wouldn't have a clue what happened.

Hacking scenario #3
If you have smoke detectors connected to the system any communication with the HDL system can be disabled.

Hacking scenario #4
Got your garage door connected to the system? Or even your front door? Well, you've probably figured it out by now. The doors can be opened (after disabling any alarms).

Hacking scenario #5
Someone could connect to your system and do vandalism like turning the heat on for full or control the blinds. Some things might be considered just a brank, but what if someone pushes the dimmers, relays and heating to the edge by either turning them on and off quickly or turning them to a 100%? Would it do damage to the components? Cause a fire?

Hacking scenario #6
Those previous five scenarios were the ones on top of my head. I'm sure you can think of a sixth and endless more yourself.

Conclusion
This isn't some zero-day vulnerability disclosure of HDL-BUS pro. The system is working as intended. These are just my observations, worries and security tips when dealing with HDL. Make your local network secure, consider not having an IP gateway connected, make sure wires and components aren't accessible for anyone who shouldn't have access. I wish they taught this on the HDL training.

For the ones of you trusting on your local network security I want to quote a great book I'm reading now - "Abusing the Internet of Things" by Nitesh Dhanjani: "As we add additional IoT devices to our homes, the reliance on WiFi security becomes a hard sell. Given the impact to our physical privacy and safety, it's difficult to stand by the argument that all bets are off once a single device (computer or IoT device) is compromised. Homes in developed countries are bound to have dozens of remotely controllable IoT devices. The single point of failure can't be the WiFi password. What's more, a compromised computer or device will already have access to the network, so a remote attacker does not need the WiFi password."

#hdl #smarthome #homeautomation #iot #security #hdl-bus #buspro #automation
6 comments on original post
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Do you use both #DropWizard  and #Hystrix  in your development projects? Then you may find my new hystrix-dropwizard-bundle project useful.. https://github.com/zapodot/hystrix-dropwizard-bundle #java  
hystrix-dropwizard-bundle - Hystrix bundle for DropWizard
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Do you ever run in-memory H2 in your JUNIT tests? This JUnit RULE may be convenient for you: https://github.com/zapodot/embedded-db-junit 
Version 0.2 is now available! Lisence: ASL 2.0   #java   #junit  #H2database #tdd  
embedded-db-junit - JUnit Rule that provides a H2 Embedded in-memory database
4
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Version 2.2.0 of the swiss army knife of configuration called Constretto has just been released. It contains various fixes and enhancements #constretto  #java Get it while it's hot ;-)  https://github.com/constretto/constretto-core
constretto-core - Main implementation of the Constretto framework
2
Add a comment...
Have him in circles
338 people
Arvid Sallaup's profile photo
Alva Kvalø's profile photo
Gry Henriksen's profile photo
Lars Erik Tangen's profile photo
Jo Christian Oterhals's profile photo
Jan-Helge Bergesen's profile photo
Marius Dragsnes's profile photo
christer evanger's profile photo
Arianna Kyriacou (NSD, DBH)'s profile photo

Sondre Eikanger Kvalø

Shared publicly  - 
 
Hi everyone!

Some time ago I release an initial version of a new #JUnit @Rule that makes it easier to test your DB integration code by setting up an in-memory #H2 database to use in your test (see https://github.com/zapodot/embedded-db-junit for more details)..

Guess what? I just added a #Liquibase initialization plugin that enables you to run apply your Liquibase change log to the embedded database before running your test code.
Look at http://embedded-db-junit.zapodot.org/changelog/release/2015/12/13/Liquibase-support-has-been-released.html  for further details..

Comments and/or suggestions for further development are more than welcome :-)
embedded-db-junit - JUnit Rule for providing a H2 Embedded in-memory database for your tests
1
1
Steinar Tolleshaug's profile photo
 
Fantastisk, du er flink Sondre. Just kidding, du er jo det. 😊👍skjønner ikke en dritt av det du skriver, men sikkert ment for et annet publikum 👍blir kjekt å feire jul sammen 👍😊
 ·  Translate
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
 ·  Translate
Økende etterspørsel gjør at Sonat Consulting ansetter tre nye konsulenter.
View original post
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Linus is not afraid to make himself extinct :-)
 
The Creator of Linux on the Future Without Him

Linus Torvalds is the creator and sole arbiter of the Linux operating system, which is used in everything from Google servers to rockets.

http://www.bloomberg.com/news/articles/2015-06-16/the-creator-of-linux-on-the-future-without-him
Linus Torvalds is the creator and sole arbiter of the Linux operating system, which is used in everything from Google servers to rockets.
7 comments on original post
1
Add a comment...
 
Ever needed to test your #LDAP   integration code? This brand new #junit  Rule makes it easy to run an integrated LDAP server based on the UnboundID LDAP SDK.. https://github.com/zapodot/embedded-ldap-junit
embedded-ldap-junit - A JUnit rule for running an embedded LDAP server in your JUnit test
1
Add a comment...

Sondre Eikanger Kvalø

Shared publicly  - 
 
Just released version 1.1.0 of the Akka JUnit Rule library.

- Added support for specifing configuration using fluent API
- Added support for easy enablement of event logging   

https://github.com/zapodot/akka-test-junit #akka   #java   #junit  
akka-test-junit - JUnit @Rule for easy setup of ActorSystem for tests
1
Add a comment...
People
Have him in circles
338 people
Arvid Sallaup's profile photo
Alva Kvalø's profile photo
Gry Henriksen's profile photo
Lars Erik Tangen's profile photo
Jo Christian Oterhals's profile photo
Jan-Helge Bergesen's profile photo
Marius Dragsnes's profile photo
christer evanger's profile photo
Arianna Kyriacou (NSD, DBH)'s profile photo
Education
  • Universitetet i Bergen
    1996 - 2002
  • Lindås gymnas
    1993 - 1996
  • Knarvik ungdomsskule
    1990 - 1993
  • Knarvik barneskule
    1984 - 1990
Basic Information
Gender
Male
Apps with Google+ Sign-in
  • Solitaire
Story
Introduction
"The answer is in the source code"
Work
Occupation
System development consultant
Employment
  • Sonat Consulting
    Partner, 2012 - present
  • Webstep
    Senior consultant, 2011 - 2012
  • EDB Consulting Group
    2007 - 2011
  • Norsk samfunnsvitenskaplig datatjeneste
    1997 - 2007
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Bergen
Previously
Knarvik
Sondre Eikanger Kvalø's +1's are the things they like, agree with, or want to recommend.
LastPass: Free Password Manager
chrome.google.com

LastPass, an award-winning password manager, saves your passwords and gives you secure access from every computer and mobile device.

500px – Discover great photos – Android-apper på Google Play
market.android.com

The Best Way to Experience 500px on a Mobile Device, Now on Android!TL;DR The whole app has been redesigned from the ground up to offer a br

Fransk verbbøyer – Android-apper på Google Play
market.android.com

Vatefaireconjuguer, et gratisverktøy for bøying av franske verb. Franske verb bøyes enkelt med denne hendige applikasjonen. Hvis du ikker er

TAG -Threshold Assessment Grid – Android-apper på Google Play
market.android.com

The TAG is a short, quickly completed assessment of the severity of an individual's mental health problems. It was developed to help identif

Solitaire - Android Apps sa Google Play
market.android.com

Solitaire by MobilityWare is the #1 Solitaire card game on the iPhone and it's now on Android!If you like Windows Solitaire, you're going to

ready steady play
market.android.com

Ready Steady Play is a Wild West-themed game starring an affable cowboy and his trusty hobby horse. Easy to learn and hard to master, Ready

Dragon Dipper
market.android.com

Dragon Dipper is a brutally difficult and charming one-button survival game you can dive into when you have a few minutes to spare. Both kid

Pebble
market.android.com

The official Pebble smart watch app. Works on both the original Pebble and Pebble Steel. The Pebble smart watch connects to your Android pho

Clean Master (Cleaner) - FREE
market.android.com

Most downloaded Android Cleaner and Ram Booster in the world from a top 10 global developer. ☆Over 100 million users, supporting 32 language

Raindrop Free
market.android.com

Raindrop is a child friendly arcadegame where your goal is to collect drops for staying alive and stay clear for bad weather!Let us know wha

I Want to Make Love to You Like In the Movies.
www.mcsweeneys.net

Girl, I’m tired of playing around. I’m ready for that real deal romance. Flowers and butterflies and fireworks. Baby, I want to make love to

LARS VAULAR - STICK TRICK II
www.youtube.com

The good old Tommy Lee fakie, one of my favourites, done during the track RETT OPP OG NED. Went bold, went high - almost missed it. Oscarsbo

Play Framework
plus.google.com

Play framework makes it easier to build Web applications with Java and Scala

Watch Now - Al Jazeera English
www.aljazeera.com

Broadcast Schedule. Broadcast Schedule. How to watch Al Jazeera English on TV. How to watch Al Jazeera English on TV. How to watch Al Jazeer

Moon Breakers
chrome.google.com

Multi-player space action!

WulffMorgenthaler.com – Daily strip 08.05.2012
feedproxy.google.com

Entertainment - Since 2002. Wulff & Morgenthaler's Personal humoristic social commentary on life, nostalgia and the World in general

Google Web Fonts Ubuntu
code.google.com

The Ubuntu Font Family are a set of matching new libre/open fonts in development during 2010-2011. The development is being funded by Canoni

Nice store with a wide selection of international food. Probably the biggest and best international grocery store in Bergen
Public - 5 months ago
reviewed 5 months ago
Excellent food. Very family friendly.
Public - 9 months ago
reviewed 9 months ago
Food: Very GoodDecor: Very GoodService: Very Good
Public - 3 years ago
reviewed 3 years ago
7 reviews
Map
Map
Map
The veal was great. The kids was satisfied as well
Public - 9 months ago
reviewed 9 months ago
Food: ExcellentDecor: Very GoodService: Excellent
Public - 4 years ago
reviewed 4 years ago
Public - 4 years ago
reviewed 4 years ago