Security considerations of WiFi vs Zigbee for self-hosted IoT
Hi everyone. Before anything else, I would like to mention that I do not plan to expose absolutely anything to the internet other than using a VPN, and that's if necessary.
Now, if I understand it correctly, ZigBee compatible devices need a controller attached to the computer to decipher messages? Since we are talking about security, it seems that the ZigBee network has its own encryption technology.
Coming to WiFi which was my original plan, we have established protocols like WPA2. I had intended for all of my IoT devices to be locked in a separate VLAN with no external access.
Which one of them do you think is better for privacy and longevity? I am going to use the basics such as lights, temperature/motion sensors (would like to flash with custom firmware like Tasmota if possible) - alongside some custom devices, which would also be programmed from scratch (ESP32 based). The problem I have with the devices from the latter proposition is that I have to keep on top of security trends myself, but I suppose that's the trade-off one makes with custom devices.
Please tell me what you use at home and why, between Zigbee and WiFi?
Thanks
Esp32-h2 now has ZigBee. I just ordered some so I can replace my current ones to get rid of wifi.
Damn you're right! Too bad they're not available in my country yet. I might be able to import one but with shipping and import tax it might ended up 10x more expensive than ordinary esp32 sold here.
Are you planning to write your own code for them? I have been looking at ZigBee, especially support to write custom code and push out OTA updates to devices. Whilst I'm not very clear on the matter, I think with certain devices it is definitely possible, and support seems to be getting better recently.
Please let me know about your ideas for your setup and what you're buying/using/creating!