>>https://www.theregister.co.uk/2017/03/26/miele_joins_internetofst_hall_of_shame/

In real life, why would a dishwasher be cast adrift on the open internet? Surely it's behind a firewall or router so the hacker can't reach the dishwasher or even know it exists, unless port 80 is forwarded. Even if port 80 were forwarded (or better, 443) what if the owner needs to use that port for other purpose? Why wouldn't Miele nominate its allowed IP source range so the router/firewall can do its job? Or phone home regularly (since that doesn't need an inbound route/attack vector) with the data Miele wants to gather? Finally, why a web interface? Surely simple SSH or something similar is more easily secured for something simple like a dishwasher.

FWIW, my new Samsung washing machine has a screen and smart internet interface. Samsung seems highly impressed that people like me really, really want to control the washing machine from my phone, but to me it's a gimmick until such time as the washing machine can load itself. Until then, it's no great burden to start the thing from its control panel after you load it. The idea of installing an app on a phone and hoping there's reliable wireless or you can't wash your clothes- no thanks, give me a control panel.

FWIW, I did try to implement central heating control via a home automation app, but people prefer to use wall keypads- and the animal is always right. Conclusion is that the Samsung doesn't deserve permanent internet access. Even if it did, you'd need to be on the inside of the firewall router to access it, or you'd need to sign in through the hardware VPN.

IMHO there's a lot of gimmickry at the moment that appeals to geeks but will be given a "fail" by users when they discover the expectation of a branded vendor app for every device. You only need to view the numerous controller standards from every manufacturer to know there's no consistency and nor will apps be consistent. Meanwhile I can imagine meeting up at a buddy's place to watch the game and racing to the kitchen to heat a pizza- but you need to download the app for your buddy's oven first. Uh huh. Chances of doing away with conventional controls? Zero IMHO. Chances the internet gimickry will end up like the 3D feature on TVs, IOW mostly unused? Very high IMHO.

The main risk I see is that if a neighbor or drive-by scanner offers unsecured wireless, the device might start quietly communicating without its owner's knowledge if that's its default setting. IMHO connectivity should default to OFF until you're ready to turn it on, so you can configure it safely.