Eaton’s Wiring Devices
Home Network Security Best Practices
Security is top priority at Eaton. This document contains a brief
description of how Eaton Home protects your security and some
suggestions for keeping your home network secure.
Eaton Home
Eaton values the customer’s security and has worked hard to make sure that the Eaton Home app is protected.
SmartHome system PIN (personal identification number)
Eaton Home secures app access through a PIN, assigned by default and the customized by the user.
The default SmartHome PIN should be changed immediately after your first connection to the SmartHome with the app. To change the
PIN, open the app and browse to Reset PIN (Settings > Configuration > Reset PIN), and then select a PIN that contains a combination
of letters (upper and lowercase), numbers, and symbols. Avoid selecting an easily guessed PIN-1234.
Consider changing your PIN every 30 to 90 days or after guests/installers access your smart home system. This prevents continued
access from undesired users.
Note: For added security, first time connections to the Eaton Home project with a user device (smartphone) must be made while on
premises and connected to the LAN.
Secure tokens for remote connections
Eaton Home uses secure tokens for device connections. Thermostats, security devices, etc., all use tokens. These tokens are short lived
and change regularly to ensure that connections are safe.
Reverse proxy
The Eaton Home app opens a secure encrypted tunnel to a cloud based system using authorized user provided credentials, to
authenticate device communication in the home. The encrypted tunnel is created between the user’s device and the Eaton Home app, no
further communication is made to other internet services.
Homeowner notified when their system is accessed using Pro Install app
The homeowner is notified when a installer accesses their project using the Eaton’s Pro Install app. This appears as pop-up notification
on all connected Android smartphones or iOS devices. This alerts the homeowner that their system is being accessed. So, no more blind
updates or changes. The homeowner can contact the installer to learn about the changes.
Controlled incoming connections
The Eaton’s Home automation hub only uses encrypted SSL (Secure Socket Layer) based protocols to communicate with client devices
and the app. The hub initiates all connections and does not allow traffic over ports without valid credentials. This makes unauthorized
devices unable to connect to your Eaton Home system.
Home network security
Not only do we care about Eaton Home security, but also general home network security. See the security suggestions below.
Change your default router administrator password and username
Most WiFi wireless routers and access points have a manufacturer set default admin username and password. This information is often
simple and documented. If unchanged, this leaves you vulnerable to cybercriminals. These settings should be changed immediately. A
secure router password should be at least 20 characters long and include a combination of numbers, letters (upper and lowercase), and
symbols.
Some routers allow remote access from the internet. Disabling this feature helps prevent hackers from connecting to your router on a
device not on your wireless network.
Choose a strong WiFi password
Default router passwords are easy to guess when manufacturer information is known or available. A secure wireless password should be
at least 20 characters long and include a combination of numbers, letters (upper and lowercase), and symbols. A complex password also
discourages hackers from accessing your network to “borrow” your data.
Use network encryption
Do not use outdated encryption technology. WEP and WPA encryption are older and susceptible to hacking. WPA2 AES is the current
secure standard, compatible with most modern routers and WiFi devices.