Analysis and protection of security vulnerabilities in smart home cameras

Abstract

With the swift expansion of smart home systems, the security of networkconnected surveillance cameras has emerged as a paramount concern. This study investigates two widely used models, the TP-Link Tapo C200 and the Xiaomi Smart Camera C200, conducting comprehensive security evaluations within a controlled local area network environment. Experimental procedures included port scanning, packet capturing, default credential testing, unauthorized access attempts, man-in-the-middle (MITM) attacks, and CVEbased remote exploit verification. The results revealed that the TP-Link device exposes multiple exploitable vulnerabilities in its default configuration, including unencrypted communication, weak access control, and open RTSP streams. In contrast, the Xiaomi device enforces secure defaults such as TLS-encrypted communication and mandatory authentication binding. Further, the study implemented HTTPS activation, VLAN isolation, firewall filtering, and password policy enhancements to assess their effectiveness in mitigating security threats. Based on empirical data, the thesis provides layered security recommendations for both manufacturers and end-users, offering practical solutions and theoretical guidance for enhancing the cybersecurity posture of smart camera systems within IoT ecosystems