search

zigbeer / zigbee-shepherd

An open source ZigBee gateway solution with node.js.
MIT License
250 stars 89 forks source link

Dynamic Secure #12

Open splitice opened 7 years ago

splitice commented 7 years ago

To quote TI setting secure dynamically leads to unpredictable results.

There is no way to change at run-time whether or not NWK layer security is on or off - this is a compile-time choice that ends up in zgSecurityMode. Unpredicatible results will ensue from attempting to manually change it. Thus, you either have a SECURE network, or not.

Alternatively, you can have an un-SECURE network and optionally add APS-layer encryption on a packet-by-packet basis by using the AF_EN_SECURITY option when invoking AF_DataRequest().

https://e2e.ti.com/support/wireless_connectivity/zigbee_6lowpan_802-15-4_mac/f/158/t/63803

We found this to be an issue in our quest to upgrade to Z-Stack 3.0 (in progress). It appears that TI are checking for this now and explicitly erroring.

splitice commented 7 years ago

This change with Z-Stack 3.0 is probably due to Security being made mandatory in Z-Stack 3.0.