We performed the first in-depth empirical security analysis of a popular emerging smart home programming platform—Samsung SmartThings. We evaluated the platform’s security design, and coupled that with an analysis of 499 SmartThings apps (also called SmartApps) and 132 device handlers using static code analysis tools that we built.

https://iotsecurity.eecs.umich.edu/