A Comparative Analysis on Security of MQTT Brokers

Kotak, Jaidip; Shah, Anal; Shah, Ayushi; Rajdev, Palak

doi:10.1049/cp.2019.0180

Cited by 19 publications

(17 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The implementation of the Keyed-Hash Message Authentication Code (HMAC) generation algorithm [29] has been employed instead of a complex encryption algorithm to improve the efficiency with less time for the client to retrieve the messages. The different cloud MQTT brokers were analyzed from a security standpoint and conducted a denial-of-service (DoS) attack and information collection techniques to discover the least vulnerable broker was discussed in [30].…”

Section: Related Workmentioning

confidence: 99%

SENMQTT-SET: An Intelligent Intrusion Detection in IoT-MQTT Networks Using Ensemble Multi Cascade Features

Hariprasad

Deepa

Chandhar³

2022

IEEE Access

View full text Add to dashboard Cite

Recently, the number of Internet of Things (IoT) networks has been grown exponentially, which results in more data sharing between devices without appropriate security mechanisms. Since huge data management is involved, maintaining the time constraints between the devices in IoT networks is another significant issue. To address these issues, an intelligent intrusion detection system has been adapted to recognize or predict a cyber-attack using Elite Machine Learning algorithms (EML), and a lightweight protocol is used to manage the time-constrained issue. The experimental analysis of work is done on a testbed setup with the hardware and sensors connected using a lightweight Message Queue Telemetry Transport (MQTT) protocol. This comprises three parts: (i) collection of data with the help of a sensor for three different scenarios called SEN-MQTTSET; (ii) multi-context feature generation using an ensemble statistical multi-view cascade feature generation algorithm from the SEN-MQTTSET dataset; and (iii) evaluating the dataset using ML algorithms. The SEN-MQTTSET dataset has been created from the three scenarios, such as normal, attack on a subscriber, and attack on a broker. The multi-context feature is generated from the raw dataset using an ensemble statistical multi-view cascade feature generation algorithm. The EML is proposed to select the best model for intrusion detection among ML algorithms such as Logistic Regression, K-Nearest Neighbour, Random Forest, Naive Bias, Support Vector Machine, Gradient Boosting, and Decision Tree by the performance metrics such as accuracy, prediction time, F1score, and others. The proposed dataset is validated and the accuracy is found to be above 99% for the considered system model. Different quality parameters have been carried out for legitimate and attack traffic features to calculate the delay between the IoT-MQTT network.

show abstract

Section: Related Workmentioning

confidence: 99%

SENMQTT-SET: An Intelligent Intrusion Detection in IoT-MQTT Networks Using Ensemble Multi Cascade Features

Hariprasad

Deepa

Chandhar³

2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…It is also responsible for sending messages to subscribers, filtering the messages, and classifying the subscribers based on the topics that they have subscribed to. The broker also holds the sessions of all persisted clients, including subscriptions and missed messages [7].…”

Section: Mqtt Protocolmentioning

confidence: 99%

Towards an MQTT5 geo-location extension for location-aware applications

Ihirwe

Iovino²,

Ruscio³

2021

2021 44th International Conference on Telecommunications and Signal Processing (TSP)

View full text Add to dashboard Cite

Location-aware applications are becoming popular nowadays because of the increasing adoption of edge and fog computing. This poses novel difficulties to the conventional applications that utilize the Message Queuing Telemetry Transport (MQTT) as their prevalent communication channel. Also, developers are obliged to figure out the code at whatever point they need to build up MQTT-based location-aware applications. This can causes various issues, for example, protocol standard infringement or problems in data acquisition. This paper proposes a novel extension of the recently released MQTT5 protocol that will permit message delivery by not only respecting the topics of interest but also in addition to geo-referenced information provided by both publishers and subscribers.

show abstract

“…No entanto todos os dispositivos ficam dependentes do pleno funcionamento do serviço do broker MQTT. Dessa forma,é criado um ponto de falha na aplicação MQTT [Kotak et al 2019]. Um agente malicioso pode personificar um cliente e emitir pacotes a uma frequência maior que a capacidade de processamento do broker ou que o enlace de rede dele suporte.…”

Section: Figura 1 Exemplo De Aplicação Com Arquitetura Mqttunclassified

Um mecanismo para redundância de dados entre Brokers MQTT com uso de Distributed Hash Table

Dias

Eichner

Rizzetti

2020

Anais Da XVIII Escola Regional De Redes De Computadores (ERRC 2020)

View full text Add to dashboard Cite

O Message Queuing Telemetry Transport (MQTT) é um protocolo de entrega de mensagens para dispositivos no conceito de Internet das Coisas (IoT). Ele usa do paradigma Publisher/Subscriber. Os clientes trocam mensagens através de um broker, assim, criando um pontoúnico de falha. Algumas soluções apresentadas na literatura propõem um cluster para balanceamento de carga como mecanismo de defesa. Entretanto, a disponibilidade dos dados não é tratada. Este trabalho apresenta a implementação de um mecanismo para sincronismo e redundância de dados entre brokers MQTT com uso da rede Distributed Hash Table (DHT).

show abstract

A Comparative Analysis on Security of MQTT Brokers

Cited by 19 publications

References 3 publications

SENMQTT-SET: An Intelligent Intrusion Detection in IoT-MQTT Networks Using Ensemble Multi Cascade Features

SENMQTT-SET: An Intelligent Intrusion Detection in IoT-MQTT Networks Using Ensemble Multi Cascade Features

Towards an MQTT5 geo-location extension for location-aware applications

Um mecanismo para redundância de dados entre Brokers MQTT com uso de Distributed Hash Table

Contact Info

Product

Resources

About