MQTT-PRESENT: Approach to secure internet of things applications using MQTT protocol

Sahmi, Imane; Abdellaoui, Abderrahim; Mazri, Tomader; Hmina, Nabil

doi:10.11591/ijece.v11i5.pp4577-4586

Cited by 14 publications

(9 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Coupling a modified version of the famous Diffie-Hellman key exchange protocol, named AugPAKE algorithm, with a lightweight block cipher encryption mechanism, named PRESENT, in the approach proposed in [22], the confidentiality of the published message is protected twice: first when it is transferred to the broker, by using the secure session generated by the AugPAKE algorithm (i.e., only the client who has the session key can decrypt the message) and, in the second time, in the side of the broker, the message is not stored in plaintext due to the PRESENT encryption. Also, this solution provides mutual authentication between the broker and their clients (i.e., publishers and subscribers), the integrity, and non-repudiation of MQTT messages which are protected during transmissions.…”

Section: Confidentialitymentioning

confidence: 99%

Analysis on functionalities and security features of Internet of Things related protocols

Sicari

Coen‐Porisini

2022

Wireless Netw

View full text Add to dashboard Cite

The Internet of Things (IoT) paradigm is characterized by the adoption of different protocols and standards to enable communications among heterogeneous and, often, resource-constrained devices. The risk of violation is high due to the wireless nature of the communication protocols usually involved in the IoT environments (e.g., e-health, smart agriculture, industry 4.0, military scenarios). For such a reason, proper security countermeasures must be undertaken, in order to prevent and react to malicious attacks, which could hinder the data reliability. In particular, the following requirements should be addressed: authentication, confidentiality, integrity, and authorization. This paper aims at investigating such security features, which are often combined with native functionalities, in the most known IoT-related protocols: MQTT, CoAP, LoRaWAN, AMQP, RFID, ZigBee, and Sigfox. The advantages and weaknesses of each one will be revealed, in order to point out open issues and best practices in the design of efficient and robust IoT network infrastructure.

show abstract

Section: Confidentialitymentioning

confidence: 99%

Analysis on functionalities and security features of Internet of Things related protocols

Sicari

Coen‐Porisini

2022

Wireless Netw

View full text Add to dashboard Cite

show abstract

“…The key is stored in a key register K with individual bytes are stored in decreasing order as represented in (1). 𝐾 = 𝑘 79 𝑘 78 ………………….. 𝑘 1 𝑘 0 (1) The algorithm will extract 64-bit subkey Kj in which j is the number of a round of the key scheduling process as rendered in (2).…”

Section: Figurementioning

confidence: 99%

“…𝐾 𝑗 = 𝑘 63 𝑘 62,………………….. 𝑘 1 𝑘 0 = 𝑘 78 𝑘 78 ………………….. 𝑘 17 𝑘 16 (2) After that, the algorithm updates the key register K as stated in (3), ( 4) and ( 5) in producing the addRoundKey function.…”

Section: Figurementioning

confidence: 99%

“…It is the backbone of applications in various domains like healthcare, agriculture, transportation, smart cities [1]. In this type of network, devices send a large volume of sensitive data; therefore, data security is the researchers' main concern, primarily through encryption algorithms [2]. However, traditional symmetric encryption algorithms are not suitable for IoT devices due to hardware limitations.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An Enhanced Block Pre-processing of PRESENT Algorithm for Fingerprint Template Encryption in the Internet of Things Environment

Katuk

Chiadighikaobi

2022

Int. j. commun. netw. inf. secur.

View full text Add to dashboard Cite

Many previous studies had proven that The PRESENT algorithm is ultra-lightweight encryption. Therefore, it is suitable for use in an IoT environment. However, the main problem with block encryption algorithms like PRESENT is that it causes attackers to break the encryption key. In the context of a fingerprint template, it contains a header and many zero blocks that lead to a pattern and make it easier for attackers to obtain an encryption key. Thus, this research proposed header and zero blocks bypass method during the block pre-processing to overcome this problem. First, the original PRESENT algorithm was enhanced by incorporating the block pre-processing phase. Then, the algorithm’s performance was tested using three measures: time, memory usage, and CPU usage for encrypting and decrypting fingerprint templates. This study demonstrated that the proposed method encrypted and decrypted the fingerprint templates faster with the same CPU usage of the original algorithm but consumed higher memory. Thus, it has the potential to be used in IoT environments for security.

show abstract

“…Data destined for the local server is relayed by means of the MQTT protocol. Given the size and format of the messages, MQTT is appropriate for use in relaying the messages to the server[88]. The data from the sensing devices is aggregated and forwarded to the network server.…”

mentioning

confidence: 99%

An Efficient LoRa-Enabled Smart Fault Detection and Monitoring Platform for the Power Distribution System Using Self-Powered IoT Devices

et al. 2022

View full text Add to dashboard Cite

Transient stability and supply disturbances are common yet unwelcome phenomena in power distribution systems, particularly in sub-Saharan Africa. The growing demand for greater reliability and dependability in power delivery has aroused the interest of researchers and renewed the pursuit of advanced technological solutions for fault detection and location determination at medium and low-voltage levels. The length of the distribution network typically ranges from hundreds to thousands of kilometers. In this regard, the management of distribution networks, including the identification of faulty segments, is a significant recurrent challenge facing power-system operators. With the ever-expanding distribution network and regulatory demands for service reliability, the challenge for network operators is daunting. However, the deployment of IoT technologies in the energy distribution infrastructure would significantly accelerate the detection and location of faults, thus transforming the electricity delivery service into one that is responsive, communicative, attractive, and robust. This study proposes, designs, and implements a reasonably priced LoRaWAN-based IoT platform for monitoring distribution networks. The study was conducted in Nakuru County, Kenya on an actual and active distribution network owned and managed by Kenya Power Company. Experimental results showed that a trigger is generated at the network-monitoring center in about 100 msec of the occurrence of a fault on the distribution network, thus enabling quick, prompt, and immediate commencement of reparative action. Furthermore, practical evaluation has shown that this platform is well adapted for the context of developing countries where budgetary constraints and cost prohibitions hinder the upgrade of the legacy grid into fully-fledged smart entities.

show abstract

MQTT-PRESENT: Approach to secure internet of things applications using MQTT protocol

Cited by 14 publications

References 22 publications

Analysis on functionalities and security features of Internet of Things related protocols

Analysis on functionalities and security features of Internet of Things related protocols

An Enhanced Block Pre-processing of PRESENT Algorithm for Fingerprint Template Encryption in the Internet of Things Environment

An Efficient LoRa-Enabled Smart Fault Detection and Monitoring Platform for the Power Distribution System Using Self-Powered IoT Devices

Contact Info

Product

Resources

About