Comment on Wyze security camera owners reported that they could briefly see feeds from cameras they didn’t own
realharo@lemm.ee 1 year agoIt would be fine if the footage was end-to-end encrypted, meaning you need to transfer the encryption/decryption keys from device to camera, and then manually between all devices that should have access to the decrypted footage.
Camera would only ever send out encrypted footage, and thus it would be insufficient to have access to the cloud account if you want to view the footage - you would need both access to the account (to obtain the encrypted data) and the decryption key (to actually decrypt it). The decryption key must never reach any 3rd party servers and can only be manually transferred between devices that should have access.
PeterPoopshit@lemmy.world 1 year ago
How would I encrypt an rtsp stream so I can port forward it and then how to I unencrypt that stream for use on a local server?
realharo@lemm.ee 1 year ago
I guess you wouldn’t. Use a different protocol, one that supports the security you need.
grandkaiser@lemmy.world 1 year ago
Encrypted VPN between each side. IPSEC over GRE using 1024-bit AES encryption is more than enough.
elscallr@lemmy.world 1 year ago
Just set up a VPN and transmit the video over that network. That’s the easy method.
frododouchebaggins@lemmy.world 1 year ago
“how would I do something that is impossible because I think I’m making a clever point”
use a different protocol