Jamming attacks are possible -- but are they plausible? And what are home security providers doing to help protect against them?
Ry CristSenior Editor / Reviews - Labs
Originally hailing from Troy, Ohio, Ry Crist is a writer, a text-based adventure connoisseur, a lover of terrible movies and an enthusiastic yet mediocre cook. A CNET editor since 2013, Ry's beats include smart home tech, lighting, appliances, broadband and home networking.
ExpertiseSmart home technology and wireless connectivityCredentials
10 years product testing experience with the CNET Home team
One of the main home-security concerns is whether or not a given system is vulnerable to being blocked from working altogether. With wired setups, the fear is that a burglar might be able to shut your system down or stop it from alerting the authorities simply by cutting the right cable.
With a wireless setup, you'll stick battery-powered sensors up around your home that keep an eye on windows, doors, motion, and more. If they detect something amiss while the system is armed, they'll transmit a wireless alert signal to a base station that will then raise the alarm. That approach eliminates most of the cord-cutting concerns -- but what about their wireless analog, jamming? With the right device tuned to the right frequency, what's to stop a thief from jamming your setup and blocking that alert signal from ever reaching the base station?
As said, the odds are low of such an attack being attempted against you -- successfully or otherwise -- but let's look at the facts.
Wireless Jamming 101
Jamming concerns are nothing new, and they're not unique to security systems. Any device that's built to receive a wireless signal at a specific frequency can be overwhelmed by a stronger signal coming in on the same frequency. For comparison, let's say you wanted to "jam" a conversation between two people -- all you'd need to do is yell in the listener's ear.
Jamming a wireless radio requires knowledge of its broadcast frequency as well as the right equipment to jam that frequency. It also requires criminal intent, because jamming is highly illegal. Buying or selling these devices without the right certifications is often illegal, too.
Security devices are required to list the frequencies they broadcast on -- that means that a potential thief can find what they need to know with minimal Googling. They will, however, need to know what system they're looking for. If you have a sign in your yard declaring what setup you use, that'd point them in the right direction, though at that point, we're talking about a highly targeted, semi-sophisticated attack, and not the sort of forced-entry attack that makes up the majority of burglaries.
It's easier to find and acquire jamming equipment for some frequencies than it is for others. For instance, there's a great deal of common radio equipment that broadcasts at the 400Mhz range, making it easier to find something off of the shelf that will jam at those frequencies.
Wireless security providers will often take steps to help combat the threat of jamming attacks. For instance, SimpliSafe, a two-time winner of our Editors' Choice distinction, utilizes a proprietary algorithm that's capable of separating incidental RF interference from targeted jamming attacks. When the system thinks it's being jammed, it'll notify you via push alert on your phone. From there, it's up to you to sound the alarm manually.
We tested that jamming algorithm out back in 2015 after security researchers raised concerns that the system was susceptible to such attacks. Those concerns recently resurfaced after a security researcher posted a video to YouTube demonstrating how someone could jam the signal from a SimpliSafe contact sensor to the SimpliSafe base station using a cheap wireless emitter.
After taking appropriate measures to contain the RF interference to our test lab, we tested the attack out for ourselves, and were able to verify that it's possible with the right equipment. However, we also verified that SimpliSafe's anti-jamming algorithm works. It caught us in the act, sent an alert to my smartphone, and also listed our RF interference on the system's event log.
We like the proprietary nature of that software. It means that a thief likely wouldn't be able to Google how the algorithm works, then figure out a way around it. Even if they could, SimpliSafe told us in 2015 that its algorithm is always evolving, and that it varies slightly from system to system, which means there wouldn't be a universal magic formula for cracking it. I've reached out to ask for the latest on the company's jamming protections, and will update this space when I hear back.
A question of plausibility
Jamming attacks are absolutely possible. As said before, with the right equipment and the right know-how, it's possible to jam any wireless transmission. But how plausible is it that someone will successfully jam their way into your home and steal your stuff?
Let's imagine that you live in a small home with a wireless security setup that offers a functional anti-jamming algorithm like the one we tested from SimpliSafe. First, a thief is going to need to target your home, specifically. Then, he's going to need to know the technical details of your system and acquire the specific equipment necessary for jamming your specific setup.
Presumably, you keep your doors locked at night and while you're away, so the thief will still need to break in. That means defeating the lock somehow, or breaking a window. He'll need to be jamming you at this point, as a broken window or opened door would normally trigger the alarm. So, too, would the motion detectors in your home, so the thief will need to continue jamming once he's inside and searching for things to steal. However, he'll need to do so without tripping the anti-jamming algorithm, the details of which he almost certainly does not have access to.
There isn't hard data on how often jamming is used as a burglary technique, but when you start thinking about the practice in those kinds of real-world terms, it becomes a lot easier to buy into the notion that jamming attacks are exceedingly rare. It's hard not to imagine our hypothetical burglar instead choosing to target a home with no security system at all.
The bottom line
The most likely burglary scenario by far is the unsophisticated crime of opportunity, usually involving a broken window or some other kind of brute-force entry. According to the FBI, crimes like these accounted for more than half of all residential burglaries in the US in 2017. The wide majority of the rest were unlawful, unforced entries that resulted from something like a window or a garage door being left open. The odds of a criminal using technical means to bypass a security system are so small that the FBI doesn't even track those statistics.
At the end of the day, home security systems are primarily designed to protect against the sort of opportunistic smash-and-grab attack that makes up the majority of burglaries. They're also only a single layer in what should ideally be a multifaceted approach to securing your home, one that includes common sense things like sturdy locks and proper exterior lighting at night.
No system is impenetrable, and none can promise to eliminate the worst case scenario outright. Every one of them has vulnerabilities that a knowledgeable thief could theoretically exploit. A good system is one that keeps that worst-case scenario as implausible as possible while also offering robust protection in the event of a less-extraordinary attack. For my money, well-designed systems that are smart enough to recognize when they're being jammed meet that standard.