User Authentication in SmartThings

Hey everyone.

I’m quite curious about how the SmartThings Cloud binds with a Mobile Phone having SmartThings Application. Also whenever a command is being sent from user by Mobile Application, how do SmartThings cloud authenticates that user and further process the commands.

See discussion in your other topic. I don’t believe these details have been published.

SmartThings has published a white paper on platform security that addresses some of these issues, although it may be out of date.

For additional discussion, see your other thread on events.

Events in SmartThings

We should add that in 2020 SmartThings added optional two factor authentication to the mobile app.