was giving LinuxMCE talk on annual Croatian Linux Users Conference and was asked one z-wave security related question: How secure is Z-Wave and could if it is not encrypted is is possible to carry out an replay attack?
AFAIK current generation of z-wave devices doesn't encrypt data, and security model is similar to bluetooth - key exchange happens during device pairing or joining new devices to existing network, right? From what I have seen, soon new generation of z-wave chips will have encryption out of the box.
So if z-wave traffic is not encrypted is there any other security and protection mechanism in place to prevent z-wave replay attacks or not?
Is it possible and how would somebody who is malicious carry out an z-wave replay attack? Is it enough to watch the z-wave traffic and spot when some command is sent, record it any replay it when ever you wish?
That way somebody could take over control over any devices you have that use z-wave...
Thank you in advance for your replies.