One of my professors worked on the key exchange protocol [0], used in Nest. When discussing that particular point, he was very complimentary of Google's security practices, especially when it comes to Nest.
[0] https://blogs.ncl.ac.uk/security/2015/07/28/j-pake-built-int...
