Lightweight Security Mechanism over MQTT Protocol for IoT Devices

被引:0
|
作者
Amnalou, Sanaz [1 ]
Abu Bakar, Khairul Azmi [1 ]
机构
[1] Univ Kebangsaan Malaysia, Ctr Cyber Secur, Fac Informat Sci & Technol, Bangi, Malaysia
来源
INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS | 2020年 / 11卷 / 07期
关键词
Internet of Things (IoT); MQTT; Pre-Shared Keys (PSK); elliptic curve cryptography; Diffie-Hellman Ephemeral (DHE); Digital Signature Algorithm (DSA); Perfect Forward Secrecy (PFS); authentication; power consumption; wireless sensors;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Security is one of the main concerns with regard to the Internet of Things (IoT) networks. Since most IoT devices are restricted in resource and power consumption, it is not easy to implement robust security mechanisms. There are different methods to secure network communications; however, they are not applicable to IoT devices. In addition, most authentication methods use certificates in which signing and verifying certificates need more computation and power. The main objective of this paper is to propose a lightweight authentication and encryption mechanism for IoT constrained devices. This mechanism uses ECDHE-PSK which is the Transport Layer Security (TLS) authentication algorithm over Message Queuing Telemetry Transport (MQTT) Protocol. This authentication algorithm provides a Perfect Forward Secrecy (PFS) feature that makes an improvement in security. It is the first time that this TLS authentication algorithm is implemented and evaluated over the MQTT protocol for IoT devices. To evaluate resource consumption of the proposed security mechanism, it was compared with the default security mechanism of the MQTT protocol and the ECDHE-ECDSA that is a certificate-based authentication algorithm. They were evaluated in terms of CPU utilization, execution time, bandwidth, and power consumption. The results show that the proposed security mechanism outperforms the ECDHE-ECDSA in all tests.
引用
收藏
页码:202 / 207
页数:6
相关论文
共 50 条
  • [1] Lightweight security mechanism over MQTT protocol for IoT devices
    Amnalou, Sanaz
    Bakar, Khairul Azmi Abu
    [J]. International Journal of Advanced Computer Science and Applications, 2020, 11 (07): : 202 - 207
  • [2] Lightweight Security Scheme for MQTT/MQTT-SN Protocol
    Sadio, Ousmane
    Ngom, Ibrahima
    Lishou, Claude
    [J]. 2019 SIXTH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS: SYSTEMS, MANAGEMENT AND SECURITY (IOTSMS), 2019, : 119 - 123
  • [3] Lightweight Authentication for MQTT to improve the Security of IoT Communication
    Bali, Ranbir Singh
    Jaafar, Fehmi
    Zavarasky, Pavol
    [J]. PROCEEDINGS OF 2019 THE 3RD INTERNATIONAL CONFERENCE ON CRYPTOGRAPHY, SECURITY AND PRIVACY (ICCSP 2019) WITH WORKSHOP 2019 THE 4TH INTERNATIONAL CONFERENCE ON MULTIMEDIA AND IMAGE PROCESSING (ICMIP 2019), 2019, : 6 - 12
  • [4] A Lightweight IoT Security Protocol
    Hammi, Mohamed Tahar
    Livolant, Erwan
    Bellot, Patrick
    Serhrouchni, Ahmed
    Minet, Pascale
    [J]. 2017 1ST CYBER SECURITY IN NETWORKING CONFERENCE (CSNET), 2017,
  • [5] Object Security Scheme based on Access Policies using MQTT Protocol for IoT Devices
    Nathi, Rohan A.
    Sutar, Dimpal
    [J]. 2019 10TH INTERNATIONAL CONFERENCE ON COMPUTING, COMMUNICATION AND NETWORKING TECHNOLOGIES (ICCCNT), 2019,
  • [6] Dynamic Security Mechanism for Lightweight IoT Devices Access to Blockchain Services
    Zhao, Jian
    Liu, Jinjing
    Lin, Lin
    Liang, Lixin
    Wang, Hua
    Xiang, Shaohua
    [J]. 2021 4TH INTERNATIONAL CONFERENCE ON BLOCKCHAIN TECHNOLOGY AND APPLICATIONS, ICBTA 2021, 2021, : 6 - 10
  • [7] CoAP and MQTT based Models to deliver Software and Security Updates to IoT Devices Over the Air
    Thantharate, Anurag
    Beard, Cory
    Kankariya, Poonam
    [J]. 2019 INTERNATIONAL CONFERENCE ON INTERNET OF THINGS (ITHINGS) AND IEEE GREEN COMPUTING AND COMMUNICATIONS (GREENCOM) AND IEEE CYBER, PHYSICAL AND SOCIAL COMPUTING (CPSCOM) AND IEEE SMART DATA (SMARTDATA), 2019, : 1065 - 1070
  • [8] SMQTT: A Lightweight Clock Synchronization Algorithm for IoT devices using MQTT
    Chauhan, Saurabh B.
    Gore, Rahul N.
    [J]. 2023 IEEE INTERNATIONAL SYMPOSIUM ON PRECISION CLOCK SYNCHRONIZATION FOR MEASUREMENT, CONTROL, AND COMMUNICATION, ISPCS, 2023,
  • [9] Implementation of SSL/TLS Security with MQTT Protocol in IoT Environment
    Iqbal Luqman Bin Mohd Paris
    Mohamed Hadi Habaebi
    Alhareth Mohammed Zyoud
    [J]. Wireless Personal Communications, 2023, 132 : 163 - 182
  • [10] Implementation of SSL/TLS Security with MQTT Protocol in IoT Environment
    Paris, Iqbal Luqman Bin Mohd
    Habaebi, Mohamed Hadi
    Zyoud, Alhareth Mohammed
    [J]. WIRELESS PERSONAL COMMUNICATIONS, 2023, 132 (01) : 163 - 182
12345