TY - GEN
T1 - An extensible and transparent thing-to-thing security enhancement for MQTT protocol in IoT environment
AU - Su, Wei Tsung
AU - Chen, Wei Cheng
AU - Chen, Chao Chun
PY - 2019/6
Y1 - 2019/6
N2 - Message Queue Telemetry Transport (MQTT) is widely accepted as a data exchange protocol in Internet of Things (IoT) environment. For security, MQTT supports Transport Layer Security (MQTT-TLS). However, MQTT-TLS provides thing-to-broker channel encryption only because data can still be exposed after MQTT broker. In addition, ACL becomes impractical due to the increasing number of rules for authorizing massive IoT devices. For solving these problems, we propose MQTT Thing-to-Thing Security (MQTT-TTS) which provides thing-to-thing security which prevents data leak. MQTT-TTS also provides the extensibility to include demanded security mechanisms for various security requirements. Moreover, the transparency of MQTT-TTS lets IoT application developers implementing secure data exchange with less programming efforts. Our MQTT-TTS implementation is available on https://github.com/beebit-sec/beebit-mqttc-sdk for evaluation.
AB - Message Queue Telemetry Transport (MQTT) is widely accepted as a data exchange protocol in Internet of Things (IoT) environment. For security, MQTT supports Transport Layer Security (MQTT-TLS). However, MQTT-TLS provides thing-to-broker channel encryption only because data can still be exposed after MQTT broker. In addition, ACL becomes impractical due to the increasing number of rules for authorizing massive IoT devices. For solving these problems, we propose MQTT Thing-to-Thing Security (MQTT-TTS) which provides thing-to-thing security which prevents data leak. MQTT-TTS also provides the extensibility to include demanded security mechanisms for various security requirements. Moreover, the transparency of MQTT-TTS lets IoT application developers implementing secure data exchange with less programming efforts. Our MQTT-TTS implementation is available on https://github.com/beebit-sec/beebit-mqttc-sdk for evaluation.
UR - http://www.scopus.com/inward/record.url?scp=85073887016&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85073887016&partnerID=8YFLogxK
U2 - 10.1109/GIOTS.2019.8766412
DO - 10.1109/GIOTS.2019.8766412
M3 - Conference contribution
T3 - Global IoT Summit, GIoTS 2019 - Proceedings
BT - Global IoT Summit, GIoTS 2019 - Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 3rd Global IoT Summit, GIoTS 2019
Y2 - 17 June 2019 through 21 June 2019
ER -