The new custom router firmware will allow users to share their wireless networks, but could also improve their router's security
Advocacy group the Electronic Frontier Foundation wants to address the poor security track record of home routers with a new firmware project that will encourage users to share their Internet connection publicly by setting up guest Wi-Fi networks.
The first experimental version of the firmware, called the Open Wireless Router was released Sunday and is mainly aimed at developers and hackers who can assist with finding bugs and improving the software overall.
The project's main goals are focused on allowing router owners to securely set up public Wi-Fi networks for passers-by to use, which the EFF and other organizations argue helps conserve radio spectrum, benefits business and economic development and can spark innovation. However, some of the firmware's other planned features could also improve the overall security of routers that run it, even if their owners don't decide to share their Internet bandwidth with strangers.
"Most or all existing router software is full of XSS [cross-site scripting] and CSRF [cross-site request forgery] vulnerabilities, and we want to change that," the EFF said Sunday in a blog post.
While this is generally true, the XSS and CSRF flaws, which allow attackers to hijack authenticated sessions, are actually among the least critical flaws commonly found in routers.
Over the years security researchers found vulnerabilities in routers that would have given attackers full control over many devices from a large number of manufacturers. The issues found included backdoor-like features and hard-coded credentials, traditional buffer overflows and command injection vulnerabilities in the Web-based administrative interfaces or even implementation errors in third-party components like UPnP libraries.
The overall consensus among security researchers is that from a security perspective the code maturity in the home router world is very poor. Adding to that problem is the fact that few router vendors publish detailed security advisories and that updating the firmware is usually a process that requires manual intervention and technical knowledge from users.
The Open Wireless Router firmware will have an automatic update mechanism that will work over HTTPS and will use digital signatures to prevent upstream tampering with the updates, the EFF said. "Firmware signatures and metadata are fetched via Tor to make targeted update attacks very difficult."
Security researchers also pointed out in the past that many vendors don't have dedicated security programs in place for properly handling the security vulnerabilities reported to them. Giving the EFF's history of working with and supporting security researchers it's likely the organization already knows how to deal with such reports.
Here is the original post:
Open Wireless Router firmware aims for better router security, network performance
- Attempted burglary in Cranford highlights importance of home security - News 12 New Jersey - January 3rd, 2025 [January 3rd, 2025]
- Matthew Stafford had police inspect his home for potential security flaws amid burglaries - Rams Wire - January 3rd, 2025 [January 3rd, 2025]
- The Ring Stick Up Cam Pro drops to its all-time low price! - Android Authority - January 3rd, 2025 [January 3rd, 2025]
- Dallas Mavericks star Luka Doncic's home targeted in string of home burglaries - CBS News - January 3rd, 2025 [January 3rd, 2025]
- How Wireless Doorbell Kits Are Changing Home Security for the Better - openPR - January 3rd, 2025 [January 3rd, 2025]
- What UHNWs can learn about home security from 10 million London mansion heist - Spear's WMS - January 3rd, 2025 [January 3rd, 2025]
- Luxury Turns to Loss: Shafira Huangs Shocking Theft - Qhubo - January 3rd, 2025 [January 3rd, 2025]
- Home Tech Companies Are Peddling 'Affectionate Intelligence.' Should We Fall for It? - CNET - January 3rd, 2025 [January 3rd, 2025]
- The Best of Smart Home in 2024: The 10 Articles You Read the Most - How-To Geek - January 3rd, 2025 [January 3rd, 2025]
- The Top Home Security Mistakes to Stop Making in 2025 - CNET - January 3rd, 2025 [January 3rd, 2025]
- MagSafe Monday: LISEN delivers the strongest MagSafe magnet Ive found for the car - 9to5Mac - January 3rd, 2025 [January 3rd, 2025]
- The best floodlight and security camera combo I've tested is $70 off - ZDNet - January 3rd, 2025 [January 3rd, 2025]
- I invested in a subscription-less video doorbell, and it's paying off for my smart home - ZDNet - January 3rd, 2025 [January 3rd, 2025]
- NBA follows NFL in warning players on burglaries - ESPN - November 29th, 2024 [November 29th, 2024]
- Find heavily discounted security cameras and video doorbells ahead of Black Friday - Mashable - November 29th, 2024 [November 29th, 2024]
- This Floodlight Camera Has My Backyard Covered, and It's Under $100 for Black Friday - Lifehacker - November 29th, 2024 [November 29th, 2024]
- Get the ultimate home security this holiday season with Wyze starting at $17 - New York Post - November 29th, 2024 [November 29th, 2024]
- This Is the Best Black Friday Deal for an All-Purpose Security Cam I've Ever Seen - CNET - November 29th, 2024 [November 29th, 2024]
- NBA memo to players urges increased vigilance regarding home security following break-ins - Ashland Daily Press - November 29th, 2024 [November 29th, 2024]
- Find discounted security cameras and video doorbells ahead of Black Friday - Mashable - November 29th, 2024 [November 29th, 2024]
- The 4 Most Common Package Scams in 2024 -- and How to Stop Them - CNET - November 29th, 2024 [November 29th, 2024]
- Keep Your Home Protected During Your Holiday Travel With Up to 60% Off Blink Outdoor 4 Cams - CNET - November 21st, 2024 [November 21st, 2024]
- Editor's Note: Whats Old is New and Innovative Again? - SecurityInfoWatch - November 21st, 2024 [November 21st, 2024]
- Beef Up Your Home Security and Get Up to 77% Off With These Arlo Black Friday Deals - CNET - November 21st, 2024 [November 21st, 2024]
- Ive ditched my Nest Cams for a Chinese smart security brand you probably havent heard of - The Ambient - November 21st, 2024 [November 21st, 2024]
- Boost Your Home's Security With the Outdoor Roku Cam, Down to $20 for Black Friday - CNET - November 21st, 2024 [November 21st, 2024]
- Home Security Experts Share Important Insights About the Travis Kelce and Patrick Mahomes Burglaries - House Beautiful - November 21st, 2024 [November 21st, 2024]
- Infinity Symbol-Shaped Circular House Hits the Market for the Unique Price of $3,399,888 - SFGATE - November 21st, 2024 [November 21st, 2024]
- The Blink Outdoor 4 Home Security Cameras Are Cheaper Than Last Year's Black Friday Prices - Gizmodo - November 21st, 2024 [November 21st, 2024]
- Blink Mini 2 review: this home security camera is good price, but unimpressive performance might make you think twice - TechRadar - November 21st, 2024 [November 21st, 2024]
- How to Scrub Your Home Address Off the Internet and Keep It Off - CNET - November 21st, 2024 [November 21st, 2024]
- Defiant Smart Home Alarm Kit review: Just the basics - TechHive - November 21st, 2024 [November 21st, 2024]
- New Report Cites Six Outdoor Home Improvements That Enhance Wellness - Forbes - November 21st, 2024 [November 21st, 2024]
- 3 New AI Smart Home Features Arrive With Gemini and Google Nest - CNET - November 21st, 2024 [November 21st, 2024]
- Announcing the 2024 Readers' Choice Product Awards! - SecurityInfoWatch - November 21st, 2024 [November 21st, 2024]
- The Arlo 2K battery-powered security camera is 60% off before Black Friday - ZDNet - November 21st, 2024 [November 21st, 2024]
- Abilene Police expert offers advice on safeguarding your home during the holiday season - KTXS - November 21st, 2024 [November 21st, 2024]
- Travis Kelce and Taylor Swift take drastic measures after home burglary: 'They have 24-hour armed security staff' - Marca.com - November 21st, 2024 [November 21st, 2024]
- Smart Home Security Market will increase to USD 10.25 Billion by 2030 - openPR - November 21st, 2024 [November 21st, 2024]
- Want better home security? Dont miss these Reolink early Black Friday deals - Digital Trends - November 21st, 2024 [November 21st, 2024]
- An Interview With the Target & Home Depot Hacker - Krebs on Security - November 21st, 2024 [November 21st, 2024]
- Protect Your Home Title & Equity from Fraud with TripleLock Monitoring, Alerts & Restoration - ABC Action News Tampa Bay - November 12th, 2024 [November 12th, 2024]
- Wireless Home Security Camera Market is growing at a CAGR of 20% in the forecast period (2024-2031) - openPR - November 12th, 2024 [November 12th, 2024]
- Yes, Smart Homes Are Vulnerable to Cybercriminals. Here's What You Need to Know. - House Beautiful - November 12th, 2024 [November 12th, 2024]
- Limited-Time Deal: Protect Your Home or Business With a Ring Indoor Camera at Almost 40% Off - CNET - November 12th, 2024 [November 12th, 2024]
- The 3 Best Indoor Security Cameras of 2024 | Reviews by Wirecutter - Wirecutter, A New York Times Company - November 12th, 2024 [November 12th, 2024]
- Get home security cameras up to 60% off and feel extra cozy this winter - Mashable - November 12th, 2024 [November 12th, 2024]
- Resideo Unveils Honeywell Home FocusPRO Thermostats - SecurityInformed - November 12th, 2024 [November 12th, 2024]
- A Smart Before-the-Holidays Decision: Arlo and Allstate are Boosting Peace of Mind with New Home Security Bundle - IoT Evolution World - November 12th, 2024 [November 12th, 2024]
- The Google Nest Cam With Floodlight Is at Its Lowest Ever Price, but Not for Long - CNET - November 12th, 2024 [November 12th, 2024]
- Man shot by security guard at Home Depot in Northeast Philly - The Philadelphia Inquirer - November 12th, 2024 [November 12th, 2024]
- Keep Eyes on Your Home at All Times With a Blink Outdoor Cam for 60% Off - CNET - November 12th, 2024 [November 12th, 2024]
- A Letter to the Nation's New Leaders: Right Now, the American Dream of Homeownership Is in Crisis - SFGATE - November 12th, 2024 [November 12th, 2024]
- Get your tickets SECURED to Z100s Jingle Ball from Slomins Home Security! - iHeart - November 12th, 2024 [November 12th, 2024]
- We test a new home security package that couldn't be simpler to install - The Scotsman - November 12th, 2024 [November 12th, 2024]
- 6 Smart Gadgets That Will Instantly Upgrade Any Home's Lighting And Security - SlashGear - November 12th, 2024 [November 12th, 2024]
- Amazon has this Blink doorbell and security camera bundle on sale for the lowest price ever and its before - NJ.com - September 29th, 2024 [September 29th, 2024]
- This Blink Video Doorbell and security camera bundle is down to $59.99 at Amazon - TechRadar - September 29th, 2024 [September 29th, 2024]
- This new Eufy home security camera uses AI to add color to its night vision - TechRadar - September 29th, 2024 [September 29th, 2024]
- Did Jennifer Lopez and Ben Affleck Just Run Into More Trouble With Sale of $68 Million Marital Mansion? - SFGATE - September 29th, 2024 [September 29th, 2024]
- Sound the alarm! This 14-piece Ring smart security system is 40% off - Android Police - September 29th, 2024 [September 29th, 2024]
- Ring's Pan-Tilt Indoor Camera Just Crashed to a New Amazon Low Ahead of Prime Day - CNET - September 29th, 2024 [September 29th, 2024]
- The best home security cameras 2024: the smartest way to protect your home - TechRadar - September 29th, 2024 [September 29th, 2024]
- Bump Up Your Home Security With the Ultraloq Smart Lock for Only $99 - CNET - September 29th, 2024 [September 29th, 2024]
- This Early Prime Day Deal Will Score You a Blink Outdoor Camera for Over Half Off - CNET - September 29th, 2024 [September 29th, 2024]
- Supermodel Elle Macpherson Finally Sells Artsy Mansion at a Steep Discount After 2 Years on the Market - SFGATE - September 29th, 2024 [September 29th, 2024]
- Home security cameras: Learn how and where to install them for optimal protection - CNN Underscored - September 20th, 2024 [September 20th, 2024]
- Lions Dan Campbell has home address doxxed, creating series of security concerns - FOX 2 Detroit - September 20th, 2024 [September 20th, 2024]
- 2024's Best Outdoor Cameras: Vetted by Security Experts - Security.org - September 20th, 2024 [September 20th, 2024]
- Chilling home security footage shows what teen did seconds after 'fatally shooting her mother' - UNILAD - September 20th, 2024 [September 20th, 2024]
- Smart Home Security Camera Market is Expected to See a Growth of 13.2% CAGR from 2024 to 2034 | FMI - Future Market Insights - September 20th, 2024 [September 20th, 2024]
- Best Buy Deals of The Day: Save at Least $100 on Headphones, Home Security Systems, and Routers - PCMag - September 7th, 2024 [September 7th, 2024]
- How to Protect Your Outdoor Security Cameras During Stormy Weather, According to Experts - Bob Vila - September 7th, 2024 [September 7th, 2024]
- Protecting your home costs a mere $100 with this awesome Arlo setup - TechHive - September 7th, 2024 [September 7th, 2024]
- Breaking Home Security Myths: United Locksmith Keeps Houston Safe with Expert Services - openPR - September 7th, 2024 [September 7th, 2024]
- Master Locks Folding Door Security Bar Offers Cheap and Effective Home Security - Bob Vila - September 7th, 2024 [September 7th, 2024]
- Home security cameras capture father's panic after he pulls his unresponsive toddler from pool - ABC Action News Tampa Bay - September 7th, 2024 [September 7th, 2024]
- Reolink shines at IFA 2024 with major rebranding and groundbreaking new products - BGR - September 7th, 2024 [September 7th, 2024]
- Four gunshots fired in area of SW Redmond; police go door-to-door seeking witnesses, home security videos - KTVZ - September 7th, 2024 [September 7th, 2024]
- Some of Our Favorite Ring Security Cams Are Down to New Lows at Woot - CNET - September 7th, 2024 [September 7th, 2024]