Wifi Porter Security

Data Privacy

During the initial Wifi Porter setup process, you are asked to enter your network credentials into the iOS or Android app. Both applications are carefully architected to keep this information on your phone and under your control. The iOS app uses the information only to create the QR code, and it is discarded afterward. The Android app uses the information to program One-Tap Wifi, and then create the QR code. The information is likewise discarded afterward. There is one exception to this policy. When using the Android app, if you enable the beta One-Tap support for newer iPhones, it will encrypt and store network information anonymously on our server. More information about this is presented below in the One-Tap Wifi Beta Support for iOS section.

One-Tap Wifi Security

Wifi Porter allows its One-Tap Wifi information to be locked after programming. The lock mechanism protects Wifi Porter against attacks involving malicious modification of data on the device. This option is presented during setup when using an Android phone. We recommend enabling this option for situations where the Wifi Porter is used in public. A passcode will be generated and stored on the programming phone. The code may be transferred manually to other phones, and will be backed up to google drive if you have automatic app backups enabled. A locked Wifi Porter can not be reprogrammed without this code, so take care when choosing to lock your device.

One-Tap Wifi Beta Support for iOS

Wifi Porter offers limited One-Tap Wifi support for 2018 or later iPhone devices. It comes with security implications you should be aware of. If you choose to enable this feature, your network information is encrypted and stored anonymously on a Ten One Design server. A decryption key is generated and subsequently stored in your Wifi Porter. The key is permanently deleted from the server. When the Wifi Porter is tapped by a compatible iPhone, the decryption key is sent to the Ten One Design server where it is used to decrypt the network information, after which the key is discarded once again. The server generates a server-signed Wi-Fi configuration profile using your network information and sends it securely to the iPhone. No sensitive data is logged during the transaction.

iOS beta support security architecture attributes:
  • Your network information is encrypted and stored anonymously on an external server.
  • The key for decrypting this data exists only on your Wifi Porter.
  • Hashing and salt is applied responsibly to protect the data on the server.
  • Stored data is anonymous and never assocatiated with a location, only a random id token.
  • Physical access to your Wifi Porter is sufficient to retrieve your network information from our server.
  • Network information may be stored on a server you control instead. Contact info@tenonedesign.com for guidance on best practices.

Stay connected

Keep up with Wifi Porter news and updates.

Wifi Porter near a door