> The only devices that need to be hosted publicly on the Internet (ie. with a listening socket) are those that you need to connect to from outside your home network. So, IP security cameras, etc. Not home devices such as TV's or lightbulbs.
I have a wifi gateway for some lightbulbs which connects out to a service and keeps that connection permanently open. This is to let you control your lights from outside your home (lets not ask why), but also gives a back-channel into your home network which the service could be compromised to use. It's an extra step, but a good target for attackers if they can get into many home networks at once.
(This is blocked from talking to the Internet and is on a separate IoT network in my case, because I investigated what it was doing and did't want that happening...)
Re: Force internet connected devices to be rented
I have a wifi gateway for some lightbulbs which connects out to a service and keeps that connection permanently open. This is to let you control your lights from outside your home (lets not ask why), but also gives a back-channel into your home network which the service could be compromised to use. It's an extra step, but a good target for attackers if they can get into many home networks at once.
(This is blocked from talking to the Internet and is on a separate IoT network in my case, because I investigated what it was doing and did't want that happening...)
So unfortunately