A Brief Review on MQTT’s Security Issues within the Internet of Things (IoT)

Hintaw, Ahmed J.; Manickam, Selvakumar; Karuppayah, Shankar; Aboalmaaly, Mohammed Faiz

doi:10.12720/jcm.14.6.463-469

Cited by 20 publications

(16 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, the algorithms have the capability to be tested in other protocols such as CoAP [25]. From security point of view, identity and authorization of nodes are critical problems [26][27][28][29][30]. reats such as avoiding data to be published or subscribed by attackers will have adverse effects on the broker in IoT system.…”

Section: Discussionmentioning

confidence: 99%

Improving Topic-Based Data Exchanges among IoT Devices

Liu

Zhu

et al. 2020

Security and Communication Networks

View full text Add to dashboard Cite

Data exchange is one of the huge challenges in Internet of Things (IoT) with billions of heterogeneous devices already connected and many more to come in the future. Improving data transfer efficiency, scalability, and survivability in the fragile network environment and constrained resources in IoT systems is always a fundamental issues. In this paper, we present a novel message routing algorithm that optimizes IoT data transfers in a resource constrained and fragile network environment in publish-subscribe model. The proposed algorithm can adapt the dynamical network topology of continuously changing IoT devices with the rerouting method. We also present a rerouting algorithm in Message Queuing Telemetry Transport (MQTT) to take over the topic-based session flows with a controller when a broker crashed down. Data can still be communicated by another broker with rerouting mechanism. Higher availability in IoT can be achieved with our proposed model. Through demonstrated efficiency of our algorithms about message routing and dynamically adapting the continually changing device and network topology, IoT systems can gain scalability and survivability. We have evaluated our algorithms with open source Eclipse Mosquitto. With the extensive experiments and simulations performed in Mosquitto, the results show that our algorithms perform optimally. The proposed algorithms can be widely used in IoT systems with publish-subscribe model. Furthermore, the algorithms can also be adopted in other protocols such as Constrained Application Protocol (CoAP).

show abstract

Section: Discussionmentioning

confidence: 99%

Improving Topic-Based Data Exchanges among IoT Devices

Liu

Zhu

et al. 2020

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Moreover, MQTT suffers from several security shortcomings, mainly from a lack of confidentiality, integrity, availability (DOS attack), mutual authentication, access control, control message security, and end-to-end security. In [ 27 ], the authors reviewed the symmetric, asymmetric, and hybrid lightweight schemes proposed in the literature for guaranteeing the confidentiality of transmitted data using MQTT. Moreover, the authors’ review suggested security techniques for guaranteeing access control in MQTT.…”

Section: Materials and Methodsmentioning

confidence: 99%

A Secure IoT-Based Irrigation System for Precision Agriculture Using the Expeditious Cipher

Fathy

Ali²

2023

Sensors

View full text Add to dashboard Cite

Due to the recent advances in the domain of smart agriculture as a result of integrating traditional agriculture and the latest information technologies including the Internet of Things (IoT), cloud computing, and artificial intelligence (AI), there is an urgent need to address the information security-related issues and challenges in this field. In this article, we propose the integration of lightweight cryptography techniques into the IoT ecosystem for smart agriculture to meet the requirements of resource-constrained IoT devices. Moreover, we investigate the adoption of a lightweight encryption protocol, namely, the Expeditious Cipher (X-cipher), to create a secure channel between the sensing layer and the broker in the Message Queue Telemetry Transport (MQTT) protocol as well as a secure channel between the broker and its subscribers. Our case study focuses on smart irrigation systems, and the MQTT protocol is deployed as the application messaging protocol in these systems. Smart irrigation strives to decrease the misuse of natural resources by enhancing the efficiency of agricultural irrigation. This secure channel is utilized to eliminate the main security threat in precision agriculture by protecting sensors’ published data from eavesdropping and theft, as well as from unauthorized changes to sensitive data that can negatively impact crops’ development. In addition, the secure channel protects the irrigation decisions made by the data analytics (DA) entity regarding the irrigation time and the quantity of water that is returned to actuators from any alteration. Performance evaluation of our chosen lightweight encryption protocol revealed an improvement in terms of power consumption, execution time, and required memory usage when compared with the Advanced Encryption Standard (AES). Moreover, the selected lightweight encryption protocol outperforms the PRESENT lightweight encryption protocol in terms of throughput and memory usage.

show abstract

“…These vulnerabilities must be studied to protect these technologies from being exploited by others. Message Queuing Telemetry Transport (MQTT) is an application layer protocol vulnerable to various known and unknown security issues [22].…”

Section: F the Real-time Data Visualizationmentioning

confidence: 99%

Design and Implementation of The Smart Weighing Precision Livestock Monitoring Technology based on the Internet of Things (IoT)

Kushartadi,

Laagu,

Asvial

2023

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

The traditional approach to weight measurement, which measures each sheep individually, is time-consuming, and sometimes, human error triggers other issues, such as data validation, sheep classification, etc. Most farmers or breeders nowadays still manage their livestock traditionally, which is inefficient. We proposed that the Livestock Live Monitoring System is designed to collect measured data in real-time and display data in graphics; these models combine Bluetooth Low Energy as a wearable sensor to identify animals and Smart Weight Measurement to deliver weight and health data to the cloud system. This system aims to measure livestock and store the data in the server application so livestock monitoring can be done in real-time and remotely. The technology used in this system is ESP32, Load Cell, Bluetooth Low Energy, and Message Queue Telemetry Transport Protocol. Wearable devices act as an identification tag for livestock, and a smart weight scale is used to weigh the livestock and integrate it with the system. Two sheep are used as experiment objects, and their measured weight is compared to their weight when measured traditionally using a conventional scale. Based on the experiment, the weight data measured using the system has an accuracy of 99.82% for sheep number 1 and 99.17% for sheep number 2. This proposed system provides many benefits, including real-time livestock monitoring, cost efficiency, and an efficient feeding system for sheep using weight data.

show abstract

A Brief Review on MQTT’s Security Issues within the Internet of Things (IoT)

Cited by 20 publications

References 21 publications

Improving Topic-Based Data Exchanges among IoT Devices

Improving Topic-Based Data Exchanges among IoT Devices

A Secure IoT-Based Irrigation System for Precision Agriculture Using the Expeditious Cipher

Design and Implementation of The Smart Weighing Precision Livestock Monitoring Technology based on the Internet of Things (IoT)

Contact Info

Product

Resources

About