I have a VLAN that is exclusively for home automation devices. It is behind a completely separate (and hidden) SSID specifically for security purposes. Guests that join my network are segmented into another locked down VLAN that has specific rules to be able to access Chromecasts, Echos, and Sonos devices on the HA VLAN and that's it. Other than that, there is no crossover to my main network from the HA network, so I don't really worry about SSL or authentication on my HE or other ha devices. Nearly everything that doesn't require internet access is blocked at the firewall and almost all telemetry is blocked via pi-hole.
If anyone were to breach my HA network, they'd be hard pressed to do any real damage as I have nmap running in a 30 second cron and alerting when new devices join any of my networks.
Personally, I'd support HE having SSL capabilities, but in my specific setup, it really doesn't afford me much more security than I have now and would only confuse normal users that don't have a background in enterprise networking ().