At our labs for the 7th time for recertification: the Smart Home System from BOSCH. To mark the occasion, BOSCH provided us with the new, slimmer Smart Home Controller II this year. Together with the latest app versions, it underwent our usual tests and performed just as exemplary as its predecessor. The following short test report will explain whether and what else has changed.
The Smart Home Controller II (in firmware v10.17.3151-29317) itself was again subjected to all scans and vulnerability analyses in the test and, as with its predecessor, no serious problems were identified. Also in version 2, the system still offers a small attack surface, meaning that the risk of a vulnerability being exploited in practice appears to be very low.
As usual for certification, we also looked at all incoming and outgoing communication of the applications and the device itself in order to search for possible implementation or configuration errors in this area that could lead to a vulnerability. We also ran various types of replay, spoofing and man-in-the-middle attacks against the BOSCH smart home system, but were unable to find any evidence of a potential problem.
All in all, also with the new Smart Home Controller II the BOSCH Smart Home system gives us no cause for serious criticism this year. The solution is still at a high level in terms of security and therefore still highly deserves the “Approved IoT Product” certificate. Congratulations and on to the next 7 years!