Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

Dinculeană, Dan; Cheng, Xiaochun

doi:10.3390/app9050848

Cited by 145 publications

(68 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In the literature, many papers focus on TLS with the objective of devising implementations more suitable to MQTT-enabled IoT devices (see, e.g., [25][26][27][28][29][30][31][32][33]). For example, to ensure message confidentiality and integrity, Dinculeana et al [28] propose an approach based on the Blake2 algorithm [34]. This approach-very promising in terms of performance on constrained devices-is particularly appropriate in industrial environments where sensors and controllers exchange predictable data.…”

Section: Mitigationsmentioning

confidence: 99%

Security of IoT Application Layer Protocols: Challenges and Findings

2020

View full text Add to dashboard Cite

IoT technologies are becoming pervasive in public and private sectors and represent presently an integral part of our daily life. The advantages offered by these technologies are frequently coupled with serious security issues that are often not properly overseen or even ignored. The IoT threat landscape is extremely wide and complex and involves a wide variety of hardware and software technologies. In this framework, the security of application layer protocols is of paramount importance since these protocols are at the basis of the communications among applications and services running on different IoT devices and on cloud/edge infrastructures. This paper offers a comprehensive survey of application layer protocol security by presenting the main challenges and findings. More specifically, the paper focuses on the most popular protocols devised in IoT environments for messaging/data sharing and for service discovery. The main threats of these protocols as well as the Common Vulnerabilities and Exposures (CVE) for their products and services are analyzed and discussed in detail. Good practices and measures that can be adopted to mitigate threats and attacks are also investigated. Our findings indicate that ensuring security at the application layer is very challenging. IoT devices are exposed to numerous security risks due to lack of appropriate security services in the protocols as well as to vulnerabilities or incorrect configuration of the products and services being deployed. Moreover, the constrained capabilities of these devices affect the types of security services that can be implemented.

show abstract

Section: Mitigationsmentioning

confidence: 99%

Security of IoT Application Layer Protocols: Challenges and Findings

2020

View full text Add to dashboard Cite

show abstract

“…In order to achieve requirements related to the interaction between things, a middleware system that provides support for publish-subscribe communication can be used. At the moment, there are several middleware systems that operate on the publisher-subscriber paradigm, such as the advanced message-queuing protocol (AMQP) [ 49 ], message-queuing telemetry transport (MQTT) [ 50 ], and data distribution service (DDS) for real-time systems [ 51 ]. We focused on middleware systems that are based on the publish-subscribe paradigm because the IIoT system will be much more versatile.…”

Section: Description Of the Proposed Iiot Architecturementioning

confidence: 99%

A Software Architecture for the Industrial Internet of Things—A Conceptual Model

Ungurean

Gaitan

2020

Sensors

View full text Add to dashboard Cite

The Internet of Things (IoT) is an emerging concept that has revolutionized the use of new technologies in everyday life. The economic impact of IoT becoming very important, and it began to be used in the industrial environment under the name of the Industrial Internet of Things (IIoT) concept, which is a sub-domain of IoT. The IIoT changes the way industrial processes are controlled and monitored, increasing operating efficiency. This article proposes a software architecture for IIoT that has a low degree of abstraction compared to the reference architectures presented in the literature. The architecture is organized on four-layer and it integrates the latest concepts related to fog and edge computing. These concepts are activated through the use of fog/edge/gateway nodes, where the processing of data acquired from things is performed and it is the place where things interact with each other in the virtual environment. The main contributions of this paper are the proposal and description of a complete IIoT software architecture, the use of a unified address space, and the use of the computing platform based on SoC (System on Chip) with specialized co-processors in order to be able to execute in real-time certain time-critical operations specific to the industrial environment.

show abstract

“…Krishna K V [12] and Venkatasubramanian et al [13] added the physical environment information gathered by the CPS sensors to the key negotiation and identity authentication technologies of CPS itself, utilized the fact that CPS can closely interact with the physical environment to its own advantage. However, the above works are directed to the separate protection and analysis of safety or security, which has been unable to meet the increasing security requirements of CPS [14].…”

Section: Related Workmentioning

confidence: 99%

“…Taking the base plate module as an example, provided by the manufacture, the FMEDA forms including the device name, label, function, failure mode, failure impact, importance, and various failure data are sorted according to function classification, and the sub-units of the base plate module are more detailed: such as the control unit, power supply unit, NCSF bus unit, USB unit, LCD screen unit, BOOT selector switch failure data, as shown in Table 4. Bring into the formula (13) and (14), you can get the percentage of dangerous failures and the diagnostic coverage DC of each module sub-unit on the base plate.…”

Section: ) Blockchain Design At the Integration Levelmentioning

confidence: 99%

Integrated Functional Safety and Security Diagnosis Mechanism of CPS Based on Blockchain

Yin

Cui

et al. 2020

IEEE Access

View full text Add to dashboard Cite

This paper proposes a functional safety and information security protection mechanism based on blockchain technology. The design of the basic level and integration level blockchain structure of CPS distributed architecture and related functional safety and information security measures are introduced. An effective communication judgment mechanism based on functional safety error threshold is proposed, which is stored and judged by smart contract. And a refund transaction with a clock is proposed to ensure the effective execution of the functional safety error threshold mechanism. The article takes cyber physical machine tool system as an example to describe the SIL judgment method of CPS physical equipment and functional safety loop and combines SIL with fault diagnosis and risk protection. Finally, the rationality of our proposed mechanism is proved by information security, functional security, real-time and maintainability.

show abstract

Vulnerabilities and Limitations of MQTT Protocol Used between IoT Devices

Cited by 145 publications

References 14 publications

Security of IoT Application Layer Protocols: Challenges and Findings

Security of IoT Application Layer Protocols: Challenges and Findings

A Software Architecture for the Industrial Internet of Things—A Conceptual Model

Integrated Functional Safety and Security Diagnosis Mechanism of CPS Based on Blockchain

Contact Info

Product

Resources

About