Matter defines two secure-channel modes: PASE (Password Authenticated Session Establishment), used during commissioning with the Setup PIN as a shared secret, and CASE (Certificate Authenticated Session Establishment), used post-commissioning with mutual X.509 certificates.
True
Matter security is split into two phases. PASE runs only during initial commissioning: it uses a SPAKE2+ password handshake with the Setup PIN as a one-time shared secret and is never used again once the device is provisioned. CASE then takes over for all runtime traffic: each device and each administrator holds X.509 Node Operational Certificates issued by the fabric's Certification Authority, and CASE performs mutual authentication on every session. The underlying primitives are modern: ECDH on the P-256 curve, AES-128-CCM for symmetric encryption and SHA-256 for hashing.
If commissioning succeeds but the device later refuses to talk to the controller, the failure is on the CASE side (certificate or fabric trust), not on the PASE side; resetting the Setup PIN will not help.
Matter bank in preparation
The full Matter bank isn't available yet. Drop your email to get notified at launch and grab an early-bird discount.
Join the waitlist →See the 9 other Matter practice questions
Related questions
- Matter (formerly CHIP, Connected Home over IP) is a residential IoT interoperability standard maintained by the CSA (Connectivity Standards Alliance), letting a single device be controlled simultaneously by Apple Home, Google Home, Amazon Alexa and Samsung SmartThings.1. Architecture · Matter-Vision
- Commissioning a Matter device is typically done by scanning a QR code (printed on the device or its packaging) with a smartphone app such as Apple Home, Google Home or Alexa; the QR carries the Setup PIN and Discriminator needed to authenticate the pairing.2. Commissioning · QR-Code
- Matter Spec 1.0 already supports the core residential device types: OnOff Light, Dimmable Light, Color Temperature Light, Extended Color Light (RGB), Smart Plug, Door Lock, Contact Sensor, Motion Sensor, Window Covering, Thermostat and more.4. Device types · Gerätekategorien
- A Matter device implements several Clusters (functional building blocks) according to its device type: OnOff Cluster for switching, Level Control for dimming, Color Control for RGB, and so on; each Cluster exposes Attributes for state readout and Commands for actions.4. Device types · Cluster
- The Matter Bridge pattern lets legacy devices (Zigbee, Z-Wave, KNX, EnOcean, proprietary protocols) be exposed as virtual Matter devices to a Matter ecosystem, by mapping their native features onto Matter Clusters.5. Bridge · Bridge-Konzept