I’ve been thinking about playing with XBees as part of a sensor network. Reading up on the subject, I found this article (https://m.heise.de/forum/heise-Security/News-Kommentare/Deepsec-ZigBee-macht-Smart-Home-zum-offenen-Haus/Stellungnahme-des-deutschen-ZigBee-Herstellers-ubisys/posting-23947102/show/). In my understanding, it seems, the sensor network can be compromised if adding remote radio modules without using installation codes since the initiation of communication with new modules is using a default fallback key. I’m not sure if I understand this right, but wouldn’t you want to enforce queuing of the installation code of the device?
Thanks in advance,