Begin forwarded message:From: Bruce Schneier <schneier@schneier.com>Subject: CRYPTO-GRAM, May 15, 2018Date: 15 May 2018 at 06:07:08 BSTTo: jim@rfc1035.comCc: Crypto-Gram Mailing List <crypto-gram@lists.schneier.com>Researchers at Princeton University have released IoT Inspector, a tool that analyzes the security and privacy of IoT devices by examining the data they send across the Internet. They've already used the tool to study a bunch of different IoT devices. Their first two findings are "Many IoT devices lack basic encryption and authentication" and "User behavior can be inferred from encrypted IoT device traffic." No surprises there.
https://freedom-to-tinker.com/2018/04/23/announcing-iot-inspector-a-tool-to-study-smart-home-iot-device-behavior/
https://iot-inspector.princeton.edu/
https://boingboing.net/2018/04/23/promiscuous-mode.html