Security in the Internet of Things is a current and important research topic as it may encompass different aspects such as confidentiality and integrity of personal data, as well as the authentication and the authorization to access smart devices and sensors that are spreading day-by-day in our lives. In this paper we focus onto MQTT (Message Queue Telemetry Transport), a message-based communication protocol explicitly designed for low-power sensors and based upon the publish-subscribe paradigm. First of all, we describe some of the security solutions and improvements typically suggested in the literature for deployments of MQTT. Then, we present a possible alternative solution to protect specific topics in MQTT based on AugPAKE protocol. The proposed solution has been implemented through ActiveMQ middleware and successfully tested.

A Token-based Protocol for Securing MQTT Communications

Riccardo Pecori
;
Luca Veltri
2018-01-01

Abstract

Security in the Internet of Things is a current and important research topic as it may encompass different aspects such as confidentiality and integrity of personal data, as well as the authentication and the authorization to access smart devices and sensors that are spreading day-by-day in our lives. In this paper we focus onto MQTT (Message Queue Telemetry Transport), a message-based communication protocol explicitly designed for low-power sensors and based upon the publish-subscribe paradigm. First of all, we describe some of the security solutions and improvements typically suggested in the literature for deployments of MQTT. Then, we present a possible alternative solution to protect specific topics in MQTT based on AugPAKE protocol. The proposed solution has been implemented through ActiveMQ middleware and successfully tested.
2018
978-9-5329-0087-3
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11389/26084
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 31
  • ???jsp.display-item.citation.isi??? ND
social impact