[densone]

Hey dotBen. Messages are aes-256 encrypted. Every single device on helium has its own unique secret. We will be writing about this on the blog very soon.

You can further encrypt your own payloads to keep them extra secret from us too.

[stevenrace]

Is it prone to existing Zigbee attacks ('packet of doom', key extraction, etc)?

[sweis]

Are the unique secrets defined by the user or at manufacture time?

If by the manufacturer, then it is potentially a security and privacy concern.

[pharkmillups]

Hey Sweis -

There's a whole process to how the secret for each device is created. That secret is used to ensure helium connectivity is safe. You can then securely implant your own secret into a chip we use and that secret can be used to encrypt your payload. Helium never has to know what you are sending. We just need to know where it's going so we can get it there for you.

We'll be posting more docs on this in the coming weeks and months. Feel free to shoot me an email if you want to chat more before they are available.