Sonos app can turn a disabled Sonos One microphone back on - privacy issue?

  • 1 January 2018
  • 36 replies
  • 19066 views

Userlevel 1
Badge
Hi all. I have a set of stereo paired Sonos Ones. I have manually disabled the microphone on the right speaker by pressing the button on top. Today I disabled Alexa by going to [Settings - Room Settings - Living Riving Room (L+R) - Voice Services]. When I followed the same steps to re-enable, I was surprised to see that the app turned the right speaker's microphone back on. Seems to me that a manually disabled microphone should not be able to be turned back on through the network. It's a potential privacy hole. Have others noticed this, and has Sonos stated whether this is expected behavior?

This topic has been closed for further comments. You can use the search bar to find a similar topic, or create a new one by clicking Create Topic at the top of the page.

36 replies

Userlevel 7
Badge +20
I believe this is part of the Sonos Skill enabling process - not unreasonable to think that someone would want the mic on if they are enabling voice control of a device.
Userlevel 7
Badge +21
That still leaves the question though... if the Sonos controller can do it over the network, can others too? If the controller can't, and it's an action that the speaker itself is taking because of the addition of a voice service, there should be some notification in the app that the mic is being enabled.
Userlevel 7
Badge +20
True but all software controlled actions can by definition be undertaken in certain scenarios. If one goes down the route of having no trust in the IT infrastructure then in my opinion you are going down the route of no IoT or internet in general connectivity. However I think the average consumer want's something that 'works' and that means 'enabling' certain functions or capabilities to ensure that the average person can make technology work for them in a normal expected manner.
Userlevel 7
Badge +22
For us having a mike or camera in any connected device is a major sticking point. We disable them on almost everything we bring home and have skipped purchasing devices that are hard to disable or that disabling would be a warranty issue.

Adding a manual privacy switch to any device is going to become more and more important as folks learn how to break into them and collect private conversations and video.
Userlevel 7
Badge +26
Hi all, here's some information that might help fill in some gaps.

The process of enabling voice services on a Sonos One, authorizes the One with your Alexa account. The player knows that when it’s first authorized with an Alexa account it should turn on the microphone, and will do so, even if you’ve turned it off previously.

This setup process requires logging in to both your Sonos account and your Amazon Alexa account. You can, of course, turn the microphone off again just by tapping on the microphone icon. Also, the LED is hardware linked with the microphone’s state, so you’ll always know when the microphone is on.

I'll pass along your sentiment wanting a manual privacy switch for devices, Stanley, the team always is looking for feedback.
Userlevel 2
Badge
For us having a mike or camera in any connected device is a major sticking point. We disable them on almost everything we bring home and have skipped purchasing devices that are hard to disable or that disabling would be a warranty issue.

Adding a manual privacy switch to any device is going to become more and more important as folks learn how to break into them and collect private conversations and video.


This is precisely why I have no intention of buying the Play One. I WILL NOT have any open mics or cameras in my house. At some point people are going to push back and push back hard. Some lady in Seattle just had a casual conversation sent to her from over 100mi away. Her Amazon listening device had recorded her conversation and sent it to a random person.
Userlevel 2
Badge
Hi all, here's some information that might help fill in some gaps.

The process of enabling voice services on a Sonos One, authorizes the One with your Alexa account. The player knows that when it’s first authorized with an Alexa account it should turn on the microphone, and will do so, even if you’ve turned it off previously.

This setup process requires logging in to both your Sonos account and your Amazon Alexa account. You can, of course, turn the microphone off again just by tapping on the microphone icon. Also, the LED is hardware linked with the microphone’s state, so you’ll always know when the microphone is on.

I'll pass along your sentiment wanting a manual privacy switch for devices, Stanley, the team always is looking for feedback.


The problem is, I don't want to have to go around and check all of my LED indicators on my devices, every time I come home from work and expect to have a private conversation with anyone in my family. If there isn't a hardware switch, it's not secure. If you don't believe me, just look at all of the people that have tape over their notebook cameras. "But the light will go on if the camera is on." was what everyone assured us. That is, until the cameras began turning on without the light going on.
Userlevel 7
Badge +26
The problem is, I don't want to have to go around and check all of my LED indicators on my devices, every time I come home from work and expect to have a private conversation with anyone in my family. If there isn't a hardware switch, it's not secure. If you don't believe me, just look at all of the people that have tape over their notebook cameras. "But the light will go on if the camera is on." was what everyone assured us. That is, until the cameras began turning on without the light going on.

I know where you're coming from, my wife has always kept the camera lens covered on the devices she can cover. However, the LED on the Sonos One is physically connected to the microphones to where if they are getting power, the LED has power. There is no, and will be no software way to change that. So you can be sure that if the LED is off, the microphones aren't listening (assuming someone hasn't opened up your Sonos One and broken the LED or the wiring to the light). While the button on top isn't a hardware switch that cuts off the circuit, we did design the Sonos One it with your security and privacy in mind.
Userlevel 2
Badge
Thanks Ryan.
Userlevel 7
Badge +22
I quit reading about the new playbar when I got to the mikes, no physical disconnect switch no sale here.
Userlevel 7
Badge +20
I quit reading about the new playbar when I got to the mikes, no physical disconnect switch no sale here.

In my opinion having a mic on a product like a Sonos One or Sonos Beam is no different to having a mic on your smart phone - apart from the fact that your smart phone mic is not hardwired and is entirely controlled by software and so could be activated remotely.
Userlevel 7
Badge +22
n my opinion having a mic on a product like a Sonos One or Sonos Beam is no different to having a mic on your smart phone - apart from the fact that your smart phone mic is not hardwired and is entirely controlled by software and so could be activated remotely.

I agree completely which is why we have no smart phones here either.
Userlevel 7
Badge +20
n my opinion having a mic on a product like a Sonos One or Sonos Beam is no different to having a mic on your smart phone - apart from the fact that your smart phone mic is not hardwired and is entirely controlled by software and so could be activated remotely.

I agree completely which is why we have no smart phones here either.


I suspect that there are very few Sonos customers that don't own a Tablet or Smartphone...
Userlevel 2
Badge
I quit reading about the new playbar when I got to the mikes, no physical disconnect switch no sale here.

In my opinion having a mic on a product like a Sonos One or Sonos Beam is no different to having a mic on your smart phone - apart from the fact that your smart phone mic is not hardwired and is entirely controlled by software and so could be activated remotely.


For you this could be true; however, there are millions of people that disable Siri, Hey Google, and Alexa. This should, according to most hardware and software agreements, keep the phone from listening in all of the time. So for me, it's apples and oranges.

Again, it's not a stretch to expect Sonos to provide a product that gives the user a reasonable expectation of privacy. For me, Alexa enabled devices breach my threshold for what I'm willing to put in my home. This doesn't have to be true for everyone, and hopefully the Alexa camp will allow for those of us that have been spurned by privacy violations, to keep the open mics out of our homes.
How is it apples and oranges? Whether it's a phone, tablet, or Alexa device, the mic can be turned off via software configuration. Enabling a skill that is entirely about voice control makes sense to turn on the mic. If you enable siri, are you surprised that the mic is turned on?

Sonos one actually goes one step further giving you a visual que.
For you this could be true; however, there are millions of people that disable Siri, Hey Google, and Alexa. This should, according to most hardware and software agreements, keep the phone from listening in all of the time. So for me, it's apples and oranges.

Again, it's not a stretch to expect Sonos to provide a product that gives the user a reasonable expectation of privacy. For me, Alexa enabled devices breach my threshold for what I'm willing to put in my home. This doesn't have to be true for everyone, and hopefully the Alexa camp will allow for those of us that have been spurned by privacy violations, to keep the open mics out of our homes.


What makes you think you can't disable Alexa on Sonos devices? You most certainly can. In fact, Alexa is defaulted to off, you have to choose to activate it on Sonos devices.

Oh, and for those who think disabling Siri et al on their phone keeps it from listening, you may want to read this:

http://www.dailymail.co.uk/sciencetech/article-5816269/Its-not-paranoia-phone-really-listening-you.html

At least Sonos gives a nice visual cue as to when the mic is on.
Userlevel 7
Badge +20
I quit reading about the new playbar when I got to the mikes, no physical disconnect switch no sale here.

In my opinion having a mic on a product like a Sonos One or Sonos Beam is no different to having a mic on your smart phone - apart from the fact that your smart phone mic is not hardwired and is entirely controlled by software and so could be activated remotely.


For you this could be true; however, there are millions of people that disable Siri, Hey Google, and Alexa. This should, according to most hardware and software agreements, keep the phone from listening in all of the time. So for me, it's apples and oranges.

Again, it's not a stretch to expect Sonos to provide a product that gives the user a reasonable expectation of privacy. For me, Alexa enabled devices breach my threshold for what I'm willing to put in my home. This doesn't have to be true for everyone, and hopefully the Alexa camp will allow for those of us that have been spurned by privacy violations, to keep the open mics out of our homes.


If there's mic on a device that is software controlled then it's technically possible to turn it on remotely, you don't need an AI enabled to do this.

Don't get me wrong, I understand your privacy concerns. All I'm saying is that you should have the same concern about laptops, tablets, smart phones etc. In my opinion, the Sonos One is slightly better than most devices in this regard.
Userlevel 7
Badge +22
I know I'm not going to win this argument with Sonos even if the answer is a couple cents for adding a switch.

I'd also be good if they let me open the device and snip a wire without voiding my warranty. 🙂
Userlevel 1
Badge
I'm in a polyglot household – a combination of Apple, Android, Microsoft, Google, and Sonos – so I'm familiar with some of the competition. Our Google Home devices have physical mute switches in back which spend most of their time in the off position.

I want to buy the Sonos One to add AirPlay support to my existing speaker group, but I won't do that if I have to _look at the device_ to make sure the mic is still off. That doesn't inspire confidence that I'm in control of my privacy.
Just a suggestion, but if you're getting a Sonos One for airplay support, you could simply skip the setup for Alexa and therefore the microphone is essentially disconnected always.
Just a suggestion, but if you're getting a Sonos One for airplay support, you could simply skip the setup for Alexa and therefore the microphone is essentially disconnected always.

Exactly. If you never enable Alexa (or Google in the future), the microphone is always off.
Userlevel 1
Badge
Appreciate it, though that suggestion misses the point. A physical switch provides confidence because it takes potential software vulnerabilities out of the picture. If Alexa gets set up in software, and that's what turns on the mic. It follows then, that software can turn on the mic, and whether I set up Alexa or not, the mic still can be turned by software.

If the mic is triggerable in software, there's always the possibility of software missteps, bugs, and vulnerabilities. Consider that security vulnerabilities can be in fundamental aspects of systems, like CVE-2015-7547, the glibc vulnerability in 2016. Security vulnerabilities are simply part of software reality (which is why the industry has a long history of them).

Because I don't need the microphone, I want to opt out.
Userlevel 7
Badge +20
Because I don't need the microphone, I want to opt out.
So don't buy a ONE: it doesn't meet your criteria.

If you have the technical skills you might want to look at setting up AIrConnect [1] to provide direct AirPlay (v1) to all your existing Sonos devices. It works well.

[1] https://github.com/philippe44/AirConnect
Appreciate it, though that suggestion misses the point. A physical switch provides confidence because it takes potential software vulnerabilities out of the picture. If Alexa gets set up in software, and that's what turns on the mic. It follows then, that software can turn on the mic, and whether I set up Alexa or not, the mic still can be turned by software.

If the mic is triggerable in software, there's always the possibility of software missteps, bugs, and vulnerabilities. Consider that security vulnerabilities can be in fundamental aspects of systems, like CVE-2015-7547, the glibc vulnerability in 2016. Security vulnerabilities are simply part of software reality (which is why the industry has a long history of them).


On the very unlikely chance it gets turned on in software, the LED gets turned on. That cannot be defeated via software, for it is hardwired to the power lead to the microphones.

Because I don't need the microphone, I want to opt out.

If the reassurances given by Sonos, along with the hardwired indicator of those assurances, are not enough for you, then I'm afraid you are out of luck. Sonos is not going to make a One without a microphone array.

Also, as is always asked in these types of threads: Why would anyone so paranoid about eavesdropping carry a smart phone around? A smart phone has a microphone with no power indicator, are chock full of 3rd party apps doing who knows what, and are manufactured and/or licensed by two of the most predatory and data hungry companies on earth. Not to mention they have been proven to be listening when not authorized to do so many times in the past!

Meanwhile Sonos gives you an actual opt out that shuts down the microphones, accepts no 3rd party software, and gives a non-circumventable hardwired indicator the mic is on, and they are being shunned? I just don't get it.
Sonos is not going to make a One without a microphone array.


I don't know about that.

-The Sonos One has been out for over a year, and yet, the Play:1 is still for sale. I don't know what the sales numbers are, but you'd think there would be significant interest, otherwise it would go away as did the Play:3.

- I wouldn't think it would be too difficult to create a version of the Sonos One without a mic. Marketing and choice a non-confusing name may actually be harder.

- A speaker with a built in mic is useless when bonded with the Beam. It's not hard to imagine that a future hypothetical playbar 2.0 would also have it's own mic and CEC controls, making the built in mic useless in that scenario as well.

- Voice control features are ever changing. Sonos seems to always be in catch-up mode with this, and will likely never be able to implement some feature like calling. As well, some users are going to want a screen as comes with the echo show or Google Home. In these cases, yours may prefer to have a separate voice assistant and speaker.

- Although privacy is currently only a concern for a relatively small group, it's entirely possible that privacy concerns could grow exponentially overnight, killing the sales of voice control smart speakers. It might make sense for Sonos to have a line of speakers without mics, so not all their eggs are in one basket.

Then again, maybe maintaining two separate products that are virtually identical is not worth it.