Some questions about symmetric keys encrypt traffic with the cloud.

dgiese / dustcloud

Xiaomi Smart Home Device Reverse Engineering and Hacking

GNU General Public License v3.0

2.21k stars 254 forks source link

Some questions about symmetric keys encrypt traffic with the cloud. #55

Closed skysilver-lab closed 6 years ago

skysilver-lab commented 6 years ago

Hi. Great job. I have a question about the symmetric key to encrypt traffic with the cloud. This key is unique for each cleaner? As the cloud knows which key is the encryption? Really in the cloud has keys for each of the cleaner that went on sale? Is it possible to identify the encryption key to other devices xiaomi such as light bulbs, sockets, humidifiers, etc.?

dgiese commented 6 years ago

The cloud encryption key is unique per device and is written at the factory onto the devices. It stays forever. The identification is done over the device ID in the header of the cloud packet.