Zigbee2mqtt: Network not secure -> request: add configuration of encryption key

Created on 12 Dec 2018  路  7Comments  路  Source: Koenkk/zigbee2mqtt

Both the Trust Center key and the default network key are published on the internet. Using a sniffer i can decrypt and read all traffic using those keys, without joining the network(!) I have been reading code and trying to understand how to add a configurable network key as a PR bit this seems te be beyond my capabilities.

Can someone come up with a way to make the network key user configurable in the zigbee2mqtt config file? (not hardcoding it into config files of submodules, which seems the only option now).

I deliberately do not mention the locations and methods I found... don't want te make it to easy until a fix is in the making ;-)

picture d-EScape
👍3

Most helpful comment

Configuration of network key is now possible, see: https://github.com/Koenkk/zigbee2mqtt/blob/dev/docs/configuration/configuration.md

picture Koenkk on 24 Dec 2018
👍2

All 7 comments

@Koenkk have you seen this?

JLFN picture JLFN on 18 Dec 2018

This seems to be a firmware settings, setting to DEFAULT_KEY 0x00 will produce a random key (http://dev.ti.com/tirex/content/simplelink_zigbee_sdk_plugin_2_20_00_06/docs/zigbee_user_guide/html/zigbee/developing_zigbee_applications/network_configuration.html)

Koenkk picture Koenkk on 19 Dec 2018

Wouldn't the precfgkey constant in Zigbee-shepherd just overwrite it again?
I found out (the hard way) that changing the key and changing it back will still require all devices to repair. So to make it a random/configurable key the software should set it once and not touch it after the first install.

d-EScape picture d-EScape on 20 Dec 2018

Configuration of network key is now possible, see: https://github.com/Koenkk/zigbee2mqtt/blob/dev/docs/configuration/configuration.md

Koenkk picture Koenkk on 24 Dec 2018
👍2

Nice, thank you!

sehraf picture sehraf on 24 Dec 2018
👍1

@Koenkk this might be a stupid question but what type do the values in network_key: have? Are those single hex-values in int format? If so, I thought that the zigbee network_key has a 128 Bit key. The example value network_key: [1, 3, 5, 7, 9, 11, 13, 15, 0, 2, 4, 6, 8, 10, 12, 13], can be seen as 64 Bit when 1=0x1, 3=0x3 ... or would something like network_key: [107, 243, 142, 198, 20, 216, 136, 183, 10, 23, 195, 214, 209, 247, 225, 104], be valid?

Sorry if I'm mixing something up. I'm quite new to this.

Bruceforce picture Bruceforce on 26 Jan 2019

network_key: [107, 243, 142, 198, 20, 216, 136, 183, 10, 23, 195, 214, 209, 247, 225, 104], should also work.

In zigbee-shepherd the default network key is represented as the following hex: [ 0x01, 0x03, 0x05, 0x07, 0x09, 0x0B, 0x0D, 0x0F, 0x00, 0x02, 0x04, 0x06, 0x08, 0x0A, 0x0C, 0x0D ]

Koenkk picture Koenkk on 26 Jan 2019
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

mpuff picture mpuff  路  3Comments
Courty40 picture Courty40  路  4Comments
tb-killa picture tb-killa  路  3Comments
sylarevan picture sylarevan  路  5Comments
ophilips picture ophilips  路  4Comments