Comment on Wyze security camera owners reported that they could briefly see feeds from cameras they didn’t own
realharo@lemm.ee 9 months agoIt would be fine if the footage was end-to-end encrypted, meaning you need to transfer the encryption/decryption keys from device to camera, and then manually between all devices that should have access to the decrypted footage.
Camera would only ever send out encrypted footage, and thus it would be insufficient to have access to the cloud account if you want to view the footage - you would need both access to the account (to obtain the encrypted data) and the decryption key (to actually decrypt it). The decryption key must never reach any 3rd party servers and can only be manually transferred between devices that should have access.
PeterPoopshit@lemmy.world 9 months ago
How would I encrypt an rtsp stream so I can port forward it and then how to I unencrypt that stream for use on a local server?
realharo@lemm.ee 9 months ago
I guess you wouldn’t. Use a different protocol, one that supports the security you need.
grandkaiser@lemmy.world 9 months ago
Encrypted VPN between each side. IPSEC over GRE using 1024-bit AES encryption is more than enough.
elscallr@lemmy.world 9 months ago
Just set up a VPN and transmit the video over that network. That’s the easy method.
frododouchebaggins@lemmy.world 9 months ago
“how would I do something that is impossible because I think I’m making a clever point”
use a different protocol