-
Notifications
You must be signed in to change notification settings - Fork 0
1.3.1 PiHome Core
PiHome is to be the heart of the system. It's goals are to route requests from trusted devices to Device Hubs and therefore Devices.
It must have strict firewall rules and provide the necessary interface for controlling the devices.
Also, it is responsible for generating new secret keys and deploy them to the Device Hubs as to prepare new keys for the trusted devices. Also, it is responsible to order new key generation from the SeckPack, from a configured set schedule
When a device is trusted, an app should be installed to guarantee trust, regarding them as Friends. Any other devices should be treated as Foe.
Even the Foes have the App installed, if the device is not recognized as part of the household still negates access.
The Core should keep always a clean backup of the system at all times. This backup should be kept in a ROM ( or other secure device that would not leave the system ) so that it cannot be easily tampered with.
As a rule of thumb, the manufacturer cannot access remotely a PiHome core for maintenance. Each PiHome can only maintained in loco, with some of the family members e-id and the manufacturers employees specially issued and temporary company card.