Play live video with third-party media players
Currently, there are two main ways to view the live stream of eufy security cameras. One is through the eufy Security App and the other is through the secure web portal (eufy.com).
Previously, after logging into the secure web portal at eufy.com, registered users would enter debug mode and use the web browser’s DevTool to find the live stream and play the link or share it with others. I was able to play outside of a secure system. However, it was the user’s choice to share that link or not, and to get this link they had to first log into the eufy web portal.
Now, based on industry feedback and due diligence, the eufy security web portal does not allow users to enter debug mode, and the code has been hardened and obfuscated. Additionally, the video stream content is encrypted, making these video streams unplayable on third-party media players such as VLC.
However, please note that only 0.1% of current daily users are using the secure web portal functionality on eufy.com. Most users use his eufy Security app to view live streams. In any case, the previous design of the web portal had some issues that have since been resolved.
Regarding the PR guy who answered your question about using VLC, they mixed up the question. However, they thought they were asking if non-registered users could find the link themselves and view it in a third-party media player like VLC. The dynamic naming convention for video links was also covered in media reports so you can see how this confused them. The real answer is stated above.
End-to-end encryption of video
Currently, all videos (live and recorded) shared between the user’s device and the eufy Security web portal or eufy Security app benefit from end-to-end encryption implemented using AES and RSA algorithms doing.
Additionally, when a user accesses videos from their device using the eufy security app, the connection between the eufy security app and the user’s device is end-to-end encrypted through a secure P2P service.
Homebase3 and eufyCam3/3C devices released in October 2022 use WebRTC for end-to-end encrypted communication when using the web portal to access live streams in a browser. And now we are rolling out WebRTC to all suitable security devices.
Also note that if the user chooses to use eufy Security’s optional cloud storage add-on, this operation will be end-to-end encrypted. In addition, cloud server maintenance complies with the requirements of ISO27701 and ISO27001 standards. We are also audited annually by an external third-party regulatory agency.
eufy Security cannot access your video recordings when using local storage. All video data is encrypted and stored on the device itself and can only be accessed or shared by you. Additionally, eufy Security does not have access to the user’s biometric details, such as fingerprints or facial recognition data created by the user’s local device. All these processes are also run and stored locally.
User images added to the cloud
We used to have one device, the Video Doorbell Dual, that sent and stored user images in a secure cloud. There’s a lot of speculation and misinformation about this, so let me explain how this seemingly contradictory process came about.
First, the purpose of sending user images from the eufy app to the device is to give the local facial recognition software a baseline to run its algorithms on. All facial recognition processes have always run locally on the user’s device. For our Video Doorbell Dual, a copy of the setup image was stored in a secure cloud using end-to-end encryption. The reason for this is that if the user decides to replace the Video Doorbell Dual or add an additional Video Doorbell Dual to the eufy Security system, the system will retrieve the data from the cloud during setup instead of letting the user retrieve it. for pulling an existing image. new image.
Again, this process was not in line with our “local” mission, so it has been removed. Today, like all other devices in the eufy Security lineup, our Video Doorbell Dual relies on local-only storage of the user’s image and video data. Not the cloud.
Note that images sent to the cloud do not contain user or facial recognition data.