Aethyr Research

Amazon Sidewalk Is Using Your Home to Build Their Network. Here's What We Built Instead.

by Aethyr Research
privacyamazon-sidewalkawpmesh-networkingpost-quantumedge-aiiotsurveillanceaios

Your Echo Is a Cell Tower Now

In 2021, Amazon quietly flipped a switch on hundreds of millions of devices. Every Echo speaker, every Ring camera, every third-party Sidewalk-enabled device became a node in Amazon's neighborhood mesh network. If you owned an Echo, you were opted in. No consent screen. No terms update that required acknowledgment. Just a toggle buried six screens deep in the Alexa app, set to "on" by default.

This is Amazon Sidewalk.

The pitch sounds reasonable: a low-bandwidth network that helps your devices stay connected even when your WiFi drops. Find your Tile tracker. Keep your smart lock online. Bridge the gap between Bluetooth range and your router.

The reality is something else entirely.

How Sidewalk Actually Works

Sidewalk uses two radio protocols: Bluetooth Low Energy (BLE) for short range and 900 MHz LoRa for long range — up to half a mile. Your Echo or Ring device acts as a "Sidewalk Bridge," routing traffic from nearby Sidewalk-enabled devices through your home internet connection.

Here's what that means in practice:

Your bandwidth is Amazon's bandwidth. Sidewalk allocates up to 80 KB/s of your upload bandwidth and caps total monthly usage at 500 MB per account. Amazon frames this as negligible — "like streaming 10 minutes of HD video" — but the bandwidth isn't the point. The point is that a corporation decided your internet connection is a shared resource and opted you in without asking.

Strangers' data flows through your home. When your neighbor's Sidewalk device needs connectivity, it routes through your Bridge. Amazon says the data is encrypted in three layers and that Bridges can't inspect the payload. But the Bridge still knows a device is nearby. It still relays that traffic. Your IP address is still the exit node.

Amazon sees the metadata. Even if payload encryption is solid, the network layer generates metadata: which devices are near which Bridges, when they connect, how often, movement patterns over time. Amazon's Sidewalk privacy whitepaper acknowledges they collect "routing information" to "maintain network quality." In the surveillance economy, metadata is the product.

The opt-out is designed to fail. To disable Sidewalk, you must open the Alexa app, navigate to Settings > Account Settings > Amazon Sidewalk, and toggle it off — per device, per account. There's no global kill switch. There's no prompt at setup. The default is participation. Amazon knows most people will never find the setting. That's the point.

The Pattern: Your Home as Infrastructure

Sidewalk isn't an anomaly. It's the logical endpoint of a business model that treats your home as infrastructure and your behavior as raw material.

Ring cameras upload footage to Amazon's cloud by default. Alexa voice recordings were reviewed by human contractors until the backlash forced a policy change (not an architecture change — they still could). In 2022, Amazon confirmed it shared Ring footage with law enforcement 11 times without warrants or user consent. The Electronic Frontier Foundation called it "a perfect storm of privacy threats."

Now extend this model to a mesh network. Every Echo in the neighborhood knows which Sidewalk devices are nearby and when. Ring cameras record who approaches your door. Sidewalk tracks where your assets move within a half-mile radius. All of this data flows to Amazon's infrastructure, processed by Amazon's algorithms, stored on Amazon's servers, subject to Amazon's policies — policies that change without your consent and are enforced by a corporation whose primary obligation is to shareholders, not to you.

The term of art is "ambient surveillance infrastructure." Your home isn't smart. It's instrumented — for someone else's benefit.

What If the Mesh Worked for You Instead?

Here's the question we started with at Aethyr Research: what if you could have all the benefits of a smart home mesh — device coordination, sensor coverage, intelligent automation — without any of the surveillance?

Not "we promise not to look at your data." Not "we encrypt it on our servers." Not "you can opt out."

What if the data physically could not leave your home?

That's what we built.

AethyrWire Protocol: A Mesh That Belongs to You

AethyrWire Protocol (AWP) is the network layer of AIOS, our edge-native operating system for residential AI. It's a custom binary protocol designed for one purpose: secure, private communication between devices inside your home, with no cloud dependency and no corporate intermediary.

Here's how it differs from Sidewalk at every layer:

Your Network, Not Theirs

Sidewalk routes traffic through your internet connection to Amazon's cloud. AWP routes traffic between devices inside your home on a private network you own.

An AWP mesh is physically isolated. The edge nodes — sensors, cameras, locks — connect to a dedicated WiFi access point hosted by your local AI computer. Not your home router. A separate, single-purpose wireless network with no internet uplink. There is no path from the sensor to the cloud because there is no connection to the cloud.

When we benchmarked this, an ESP32-S3 sensor node connected to a Jetson Orin AI computer over a dedicated 2.4 GHz access point in 150 milliseconds. Compare that to 7,000+ milliseconds when routing through a consumer WiFi router. Fewer hops, smaller attack surface, faster connection.

Post-Quantum Encryption on Every Packet

Amazon says Sidewalk uses "three layers of encryption." They don't specify what algorithms. They don't publish the implementation. You're trusting a whitepaper.

AWP uses published, NIST-standardized post-quantum cryptography:

  • ML-KEM-768 (FIPS 203) for key exchange — the same algorithm the US government selected to protect classified information against quantum computers
  • XChaCha20-Poly1305 for payload encryption — authenticated encryption with a 192-bit nonce, immune to nonce reuse attacks
  • BLAKE3 for frame integrity — every single packet is checksummed
  • ML-DSA-65 (FIPS 204) for identity signing — every device has a cryptographic identity that can't be forged

This isn't optional. Every AWP frame carries a BLAKE3 integrity check. Encryption is a protocol flag — once the handshake completes, there is no unencrypted downgrade path. The HELLO handshake aborts if the response doesn't contain a KEM ciphertext. You can't negotiate your way to plaintext.

A $5 ESP32-S3 microcontroller performs the ML-KEM-768 key exchange in 13 milliseconds and establishes a fully encrypted session in 2.1 seconds from cold boot. Post-quantum security isn't a premium feature. It's the baseline.

No Metadata for Anyone

Sidewalk generates metadata that Amazon collects: device proximity, connection timing, routing patterns. Even with payload encryption, this metadata reveals behavior patterns — when you're home, when you leave, which rooms are active, how many devices are near your house.

AWP metadata stays inside your home because the network stays inside your home. There's no external routing. No bridges connecting to a corporate cloud. No "network quality" telemetry. The AI computer running your mesh doesn't phone home. It doesn't have a server to phone home to.

The device discovery protocol uses hyperdimensional computing vectors — not routing tables that a central server maintains. Nodes find each other by the mathematical similarity of their identity vectors. No lookup service. No DNS. No registry to breach.

Identity Without Surveillance

Every Sidewalk device has an identifier that Amazon manages. Amazon assigns it, Amazon tracks it, Amazon revokes it. Your devices exist in Amazon's identity system, on Amazon's terms.

AWP devices have sovereign cryptographic identity. Each device generates its own ML-DSA-65 keypair locally. Its identity is a BLAKE3 hash of its public key — self-generated, self-sovereign, verifiable by any peer without contacting a central authority. No device registry. No identity provider. No account required.

When an AI agent needs to migrate between devices in your home — say, from the living room processor to the bedroom hub — the migration bundle containing its full cognitive state is signed with ML-DSA-65 and verified on arrival. We benchmarked this: a complete agent state transfer across three devices and two CPU architectures (x86 to ARM to x86) completes in 416 milliseconds. Every hop is cryptographically signed and verified. No cloud round-trip. No central coordinator.

The Fundamental Difference Is Architecture, Not Policy

Amazon could change Sidewalk's privacy policy tomorrow. They've changed Ring's policies before. They can promise not to share data, then share it. They can promise encryption, then add a backdoor for law enforcement. Policy is a corporate decision. It can be reversed with a board vote.

What we built can't be reversed with a policy change because there is no policy to change. The data doesn't leave your home because there is no mechanism for it to leave your home. Your bandwidth isn't shared because your mesh isn't connected to anyone else's network. Amazon can't access your camera footage because your camera footage never reaches Amazon. These aren't promises. They're physical constraints.

This is the difference between "privacy by policy" and "privacy by architecture."

  • Sidewalk: "We promise not to misuse the data we collect from your home."
  • AWP: "There is no data to collect because it never leaves your home."

One of these survives a subpoena. One doesn't.

What This Means for the Smart Home

The smart home industry has conditioned people to accept a trade: convenience for surveillance. You get voice control and remote access. They get a permanent sensor grid inside your home, feeding data to advertising engines, law enforcement databases, and corporate analytics platforms.

That trade was never necessary. The AI is powerful enough to run locally. The chips are cheap enough to encrypt everything. The protocols exist to build private meshes that don't need the cloud.

Amazon built Sidewalk because it extends their data collection infrastructure into every neighborhood at zero cost to them — your electricity, your bandwidth, your home. They get a nationwide mesh network for asset tracking and IoT connectivity, subsidized by the customers who already paid for the hardware.

We built AWP because your home should be the one place where you have complete control over your data, your network, and your privacy. Not because a corporation promises to respect it. Because the architecture makes violation impossible.

Try It Yourself

The AWP protocol specification, ESP32 firmware, and AIOS runtime are being developed in the open. A $5 ESP32-S3 and a $200 Jetson Orin Nano give you a post-quantum encrypted, cloud-free, private AI mesh that outperforms anything Amazon Sidewalk can offer — without sharing a single byte of your bandwidth with anyone.

No subscription. No cloud account. No opt-out required, because there was never an opt-in.

Your home. Your network. Your data. Full stop.