1) Why is Open Source more secure?
At first blush, there is a paradox when you think about open source software and security -- doesn't share all your code make it more vulnerable? But any "security" that only stands up to as long as everyone agrees to keep the secret is going to fail spectacularly when the secret inevitably slips out.
Think of it like protecting your valuables -- you can "secure" them by finding a secret hole in a tree. This works well until somebody watches you walking through the forest, then your security is blown. If you put those valuables in a safe -- even one that is well known -- they are truly protected. As weakness are discovered in your safe technology, better safes can be designed.
This comes to the second value of open source. Simply put -- open source means there are more eyes on the code. Core technologies driving the world today have shown this to be true -- look no further than the Linux operating system and Apache web servers.
2) Mycroft and Security
Mycroft-core is being built around well-known technologies -- SSL communications internally and externally, Linux operating systems for our devices, OAUTH technologies for user right management, active firewalls on the Mark 1, Mycroft-core processes running as a user with limited access. Additionally, the skill system allows easy peer-review of all third-party add-ins.
In the future, we will be looking into the further isolation of individual skills, providing built-in encryption mechanisms, expanding the skill review process and creating a Store for definitive reviewed versions.
3) The camera and security
The camera is really new, so it is difficult to say much about it other than intentions. We don't intend to do any off-device processing of camera streams. And, most importantly, it will have the ultimate security feature -- a physical shutter you can close to be confident that nobody can see through.