Your safety and privacy are essential to us, so we’ve designed Homey to be a highly secure device for your smart home.
Family members
Homey can only be accessed by those you give access to as the owner. The owner can invite and revoke others’ access at any time.
Secure devices
Homey supports many devices across various protocols. Whether the communication between Homey and a device is secure depends on the device’s capabilities.
For example, devices operating at 433 MHz typically lack strong security, while protocols like Z-Wave and Zigbee offer better security features. Homey always tries to use the most secure method available.
Secure communication
- When you’re not at home, Homey always uses a secure cloud connection (HTTPS).
- When you’re at home, Homey first tries to use a local secure connection (HTTPS).
- Only when local TLS does not work does Homey use an insecure local connection (HTTP).
Some routers block a feature called DNS Rebinding
For a local secure connection to work, this feature must be disabled. We do not advice to do this, but it's something to consider.
Security and updates
With internet-connected devices like Homey, it’s important to update them when issues arise. We recognize that responsibility.
We update Homey regularly with new features and updated versions of incorporated parts to ensure your home is safe.
Using Homey as a single, updated, well-maintained controller to control a smart home of local devices via Zigbee, Z-Wave, or 433 MHz is recognized as the most secure way to manage a smart home, as there’s only Homey directly connected to the internet, and its software is well-maintained with an eye for security.
This is not always the case with every water cooker or toaster oven that directly connects to the internet.
