Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0

網際網路技術學刊 Pub Date : 2023-05-01 DOI:10.53106/160792642023052403012

Hung-Yu Chien Hung-Yu Chien, Pin-Ping Ciou Hung-Yu Chien

{"title":"Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0","authors":"Hung-Yu Chien Hung-Yu Chien, Pin-Ping Ciou Hung-Yu Chien","doi":"10.53106/160792642023052403012","DOIUrl":null,"url":null,"abstract":"\n MQTT (Message Queue Telemetry Transport) is one of the most popular Internet of Things (IoT) communication protocols, owing to its lightweight and easiness to use. The previous MQTT standards (including version 3.1 and its precedents) do not provide proper security functions; instead, they assume the adoption of SSL/TLS in the underlying layer. However, it not only incurs larger overhead but also hinders the development of suitable authentication/confidentiality protection to suit various MQTT deployment scenarios. The newest MQTT standard called MQTT 5.0 responds to these challenges by supporting the Enhanced Authentication framework in which designers can design and implement any secure authentication mechanisms within the framework. This paper designs and implements two efficient authentication protocols, using the MQTT 5.0 Enhanced Authentication framework. One is simple challenge-response authentication scheme, and the other is an anonymous challenge-response authentication scheme. We extend HiveMQ platform to implement the schemes and evaluate the performance. The results show that the proposed schemes demand only hundred few more milliseconds to achieve much robust authentication, compared to the simple identity-password authentication.\n \n","PeriodicalId":442331,"journal":{"name":"網際網路技術學刊","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"網際網路技術學刊","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.53106/160792642023052403012","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

MQTT (Message Queue Telemetry Transport) is one of the most popular Internet of Things (IoT) communication protocols, owing to its lightweight and easiness to use. The previous MQTT standards (including version 3.1 and its precedents) do not provide proper security functions; instead, they assume the adoption of SSL/TLS in the underlying layer. However, it not only incurs larger overhead but also hinders the development of suitable authentication/confidentiality protection to suit various MQTT deployment scenarios. The newest MQTT standard called MQTT 5.0 responds to these challenges by supporting the Enhanced Authentication framework in which designers can design and implement any secure authentication mechanisms within the framework. This paper designs and implements two efficient authentication protocols, using the MQTT 5.0 Enhanced Authentication framework. One is simple challenge-response authentication scheme, and the other is an anonymous challenge-response authentication scheme. We extend HiveMQ platform to implement the schemes and evaluate the performance. The results show that the proposed schemes demand only hundred few more milliseconds to achieve much robust authentication, compared to the simple identity-password authentication.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

MQTT 5.0高效物联网认证方案的设计与实现

MQTT(消息队列遥测传输)是最流行的物联网(IoT)通信协议之一，由于其轻量级和易于使用。以前的MQTT标准(包括3.1版本及其前身)没有提供适当的安全功能;相反，它们假定在底层采用SSL/TLS。但是，它不仅会产生更大的开销，而且还会妨碍开发适合各种MQTT部署场景的适当身份验证/机密性保护。最新的MQTT标准MQTT 5.0通过支持增强型身份验证框架来应对这些挑战，设计人员可以在该框架内设计和实现任何安全身份验证机制。本文采用MQTT 5.0增强认证框架，设计并实现了两种高效的认证协议。一种是简单的挑战-响应认证方案，另一种是匿名的挑战-响应认证方案。我们扩展了HiveMQ平台来实现这些方案并评估其性能。结果表明，与简单的身份-密码认证相比，所提出的方案只需要几百毫秒的时间就可以实现更强的鲁棒性认证。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

網際網路技術學刊

自引率

0.00%

发文量