short-paper

Performance Impact Analysis of Securing MQTT Using TLS

Authors:

Lukas Iffländer,

Stefan Herrnleben,

Christian KrupitzerAuthors Info & Claims

ICPE '21: Proceedings of the ACM/SPEC International Conference on Performance Engineering

Pages 241 - 248

https://doi.org/10.1145/3427921.3450253

Published: 09 April 2021 Publication History

Abstract

The interconnectivity of devices on the Internet of Things (IoT) provides many new and smart applications. However, the integration of many devices - especially by inexperienced users - might introduce several security threats. Further, several often used communication protocols in the IoT domain are not out-of-the-boxsecured. On the other hand, security inherently introduces overhead, resulting in a decrease in performance. The Message QueuingTelemetry Transport (MQTT) protocol is a popular communication protocol for IoT applications - for example, in Industry 4.0, railways, automotive, or smart homes. This paper analyzes the influence on performance when using MQTT with TLS in terms of throughput, connection build-up times, and energy efficiency using a reproducible testbed based on a standard off-the-shelf microcontroller. The results indicate that the impact of TLS on performance across all QoS levels depends on (i) the network situation and (ii) the connection reestablishment frequency. Thus, a negative influence of TLS on the performance is noticeable only in deteriorated networksituations or at a high connection reestablishment frequency.

References

[1]

Edgaras Baranauskas et al. 2019. Evaluation of the impact on energy consumption of MQTT protocol over TLS. In IVUS.

[2]

Y. Chen et al. 2016. Performance evaluation of IoT protocols under a constrained wireless access network. In 2016 MoWNeT.

[3]

Jin Chung. 2016. Adaptive Energy-Efficient SSL/TLS Method Using Fuzzy Logic for the MQTT-Based Internet of Things. International Journal Of Engineering And Computer Science (12 2016). https://doi.org/10.18535/ijecs/v5i12.04

[4]

Jin Hee Chung et al. [n.d.]. An Adaptive Energy-efficient SSL/TLS Method for the Internet of Things using MQTT on Wireless Networks. In 2016 6th International Workshop on Computer Science and Engineering.

[5]

Yokogawa Test & Measurement Corporation. [n.d.]. WT300 Serie Digitale Leistungsmessgeräte. ( [n.,d.]). Online available under https://tmi.yokogawa.com/de/solutions/products/power-analyzers/digital-power-meter-wt300/#Details, Accessed on 28.03.2020.

[6]

T Dierks et al. 2008. The Transport Layer Security (TLS) Protocol Version 1.2. (2008). Online available under https://tools.ietf.org/html/rfc5246, Accessed on 1.01.2020.

[7]

Patrick Th. Eugster et al. 2003. The many faces of publish/subscribe. Comput. Surveys, Vol. 35, 2 (2003), 114--131.

Digital Library

[8]

Stefan Herrnleben, Rudy Ailabouni, Johannes Grohmann, Thomas Prantl, Christian Krupitzer, and Samuel Kounev. 2020. An IoT Network Emulator for Analyzing the Influence of Varying Network Quality. In Proceedings of the 12th EAI International Conference on Simulation Tools and Techniques (SIMUtools) (SIMUtools 2020).

[9]

G.C. Hillar. 2018. Hands-On MQTT Programming with Python: Work with the lightweight IoT protocol in Python .Packt Publishing. https://books.google.de/books?id=mF9dDwAAQBAJ

[10]

R. K. Kodali et al. [n.d.]. MQTT based home automation system using ESP8266. In 2016 IEEE Region 10 Humanitarian Technology Conference.

[11]

S. Lee et al. [n.d.]. Correlation analysis of MQTT loss and delay according to QoS level. In 2013 ICOIN.

[12]

Schumacher Merlin et al. 2018. Async MQTT client for ESP8266 and ESP32. (2018). Online available under https://github.com/marvinroger/async-mqtt-client, Accessed on 28.03.2020.

[13]

Netscout. 2018. NETSCOUT Threat Intelligence Report. DAWN OF THE TERRORBIT ERA. Findings from Second Half 2018.

[14]

OASIS Open. 2014. MQTT Version 3.1.1, OASIS Standard, 29 October 2014. (2014). Online available under http://docs.oasis-open.org/mqtt/mqtt/v3.1.1/os/mqtt-v3.1.1-os.pdf, Accessed on 28.03.2020.

[15]

A. V. Papadopoulos et al. 2019. Methodological Principles for Reproducible Performance Evaluation in Cloud Computing. IEEE Transactions on Software Engineering (2019), 1--1. https://doi.org/10.1109/TSE.2019.2927908

[16]

Giovanni Perrone et al. 2017. The Day After Mirai: A Survey on MQTT Security Solutions After the Largest Cyber-attack Carried Out through an Army of IoT Devices. In 2nd IoTBDS. 246--253. https://doi.org/10.5220/0006287302460253

[17]

Thomas Prantl et al. 2020 a. Evaluating the Performance of a State-of-the-Art Group-oriented Encryption Scheme for Dynamic Groups in an IoT Scenario (MASCOTS '20).

[18]

Thomas Prantl et al. 2020 b. SIMPL: Secure IoT Management Platform. In ITSec (1st ITG Workshop on IT Security).

[19]

Thomas Prantl et al. 2021. Towards a Group Encryption Scheme Benchmark: A View on Centralized Schemes with focus on IoT. In 2021 ACM/SPEC International Conference on Performance Engineering (ICPE) (ICPE'21).

[20]

E Rescorla. 2018. The Transport Layer Security (TLS) Protocol Version 1.3. (2018). Online available under https://tools.ietf.org/html/rfc8446, Accessed on 1.01.2020.

[21]

S. Shapsough et al. 2018. Securing Low-Resource Edge Devices for IoT Systems. In 2018 ISSI. https://doi.org/10.1109/ISSI.2018.8538135

[22]

M. Singh et al. 2015. Secure MQTT for Internet of Things (IoT). In CSNT. 746--751. https://doi.org/10.1109/CSNT.2015.16

[23]

S.P.E.C. 2014. Power and Performance Benchmark Methodology V2.2. (2014).

[24]

SeriousBit SRL. 2020. NetBalancer. (2020). Online available under https://netbalancer.com/, Accessed on 15.04.2020.

[25]

J. Toldinas et al. 2019. MQTT Quality of Service versus Energy Consumption. In 2019 23rd International Conference Electronics. 1--4.

[26]

A. Skraba et al. [n.d.]. Prototype of group heart rate monitoring with NODEMCU ESP8266. In 2017 6th MECO.

Cited By

Lazzaro SBuccafurri F(2024)Achieving Accountability and Data Integrity in Message Queuing Telemetry Transport Using Blockchain and Interplanetary File SystemFuture Internet10.3390/fi1607024616:7(246)Online publication date: 13-Jul-2024
https://doi.org/10.3390/fi16070246
Hsu T(2024)Designing a Secure and Scalable Service Agent for IoT Transmission through Blockchain and MQTT FusionApplied Sciences10.3390/app1407297514:7(2975)Online publication date: 1-Apr-2024
https://doi.org/10.3390/app14072975
Prantl TLauer MHorn LEngel SDingel DBauer AKrupitzer CKounev S(2024)Security Analysis of a Decentralized, Revocable and Verifiable Attribute-Based Encryption SchemeProceedings of the 19th International Conference on Availability, Reliability and Security10.1145/3664476.3664487(1-11)Online publication date: 30-Jul-2024
https://dl.acm.org/doi/10.1145/3664476.3664487
Show More Cited By

Index Terms

Performance Impact Analysis of Securing MQTT Using TLS
1. Security and privacy

Recommendations

Energy consumption for securing lightweight IoT protocols
IoT '20: Proceedings of the 10th International Conference on the Internet of Things

In this paper we address the energy consumption of the Constraint Application Protocol (CoAP) and the Message Queue Telemetry Transport (MQTT) protocol and compare their overhead. We also pay attention to the use case of security in IoT and analyze the ...
Lightweight dynamic topic-centric end-to-end security mechanism for MQTT
DS-RT '21: Proceedings of the 2021 IEEE/ACM 25th International Symposium on Distributed Simulation and Real Time Applications

This paper proposes a lightweight security mechanism to manage security levels in MQTT protocol reducing the protocol overhead and using a flexible security negotiation in comparison with classical TLS solution applied to application layer protocol in ...
Implementation of SSL/TLS Security with MQTT Protocol in IoT Environment
Abstract
Internet of Things (IoT) is the interconnection of devices with the internet to deliver its tasks. Nowadays, security is the main concern relating to these devices. Low in power storage, low in processing capabilities and low in data storage make ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

ICPE '21: Proceedings of the ACM/SPEC International Conference on Performance Engineering

April 2021

301 pages

ISBN:9781450381949

DOI:10.1145/3427921

General Chairs:
Johann Bourcier
University of Rennes 1, France
,
Zhen Ming (Jack) Jiang
York University, Canada
,
Program Chairs:
Cor-Paul Bezemer
University of Alberta, Canada
,
Vittorio Cortellessa
University of L'Aquila, Italy

Copyright © 2021 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 09 April 2021

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Short-paper

Funding Sources

Bundesministerium für Bildung und Forschung

Conference

ICPE '21

Sponsor:

ICPE '21: ACM/SPEC International Conference on Performance Engineering

April 19 - 23, 2021

Virtual Event, France

Acceptance Rates

ICPE '21 Paper Acceptance Rate 16 of 61 submissions, 26%;

Overall Acceptance Rate 252 of 851 submissions, 30%

Upcoming Conference

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

16
Total Citations
View Citations
403
Total Downloads

Downloads (Last 12 months)59
Downloads (Last 6 weeks)5

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Lazzaro SBuccafurri F(2024)Achieving Accountability and Data Integrity in Message Queuing Telemetry Transport Using Blockchain and Interplanetary File SystemFuture Internet10.3390/fi1607024616:7(246)Online publication date: 13-Jul-2024
https://doi.org/10.3390/fi16070246
Hsu T(2024)Designing a Secure and Scalable Service Agent for IoT Transmission through Blockchain and MQTT FusionApplied Sciences10.3390/app1407297514:7(2975)Online publication date: 1-Apr-2024
https://doi.org/10.3390/app14072975
Prantl TLauer MHorn LEngel SDingel DBauer AKrupitzer CKounev S(2024)Security Analysis of a Decentralized, Revocable and Verifiable Attribute-Based Encryption SchemeProceedings of the 19th International Conference on Availability, Reliability and Security10.1145/3664476.3664487(1-11)Online publication date: 30-Jul-2024
https://dl.acm.org/doi/10.1145/3664476.3664487
El-Hajj MVorotilov D(2024)Testing the Security and Performance of MQTT Protocol on Raspberry Pi for IoT Applications2024 IEEE Asia Pacific Conference on Wireless and Mobile (APWiMob)10.1109/APWiMob64015.2024.10792961(67-72)Online publication date: 28-Nov-2024
https://doi.org/10.1109/APWiMob64015.2024.10792961
Prantl TAmann PKrupitzer CEngel SBauer AKounev S(2024)Network impact analysis on the performance of Secure Group Communication schemes with focus on IoTDiscover Data10.1007/s44248-024-00015-12:1Online publication date: 17-Sep-2024
https://doi.org/10.1007/s44248-024-00015-1
Prantl TBauer AEngel SHorn LKrupitzer CIffländer LKounev S(2024)Benchmarking of Secure Group Communication schemes with focus on IoTDiscover Data10.1007/s44248-024-00010-62:1Online publication date: 23-May-2024
https://doi.org/10.1007/s44248-024-00010-6
Buccafurri Fde Angelis VLazzaro S(2023)MQTT-A: A Broker-Bridging P2P Architecture to Achieve Anonymity in MQTTIEEE Internet of Things Journal10.1109/JIOT.2023.326401910:17(15443-15463)Online publication date: 1-Sep-2023
https://doi.org/10.1109/JIOT.2023.3264019
Paris IHabaebi MZyoud A(2023)Implementation of SSL/TLS Security with MQTT Protocol in IoT EnvironmentWireless Personal Communications: An International Journal10.1007/s11277-023-10605-y132:1(163-182)Online publication date: 25-Jul-2023
https://dl.acm.org/doi/10.1007/s11277-023-10605-y
Kadhim OKetab AObaid AAlbermany SRaheem AHussien N(2023)Simulation Secure MQTT Protocol Based on TLS in IoT-Fog Computing EnvironmentProceedings of Fourth Doctoral Symposium on Computational Intelligence10.1007/978-981-99-3716-5_2(13-21)Online publication date: 17-Sep-2023
https://doi.org/10.1007/978-981-99-3716-5_2
Akshatha PDilip Kumar S(2023)Enhancing Security Mechanism of MQTT Protocol Using Payload EncryptionProceedings of International Conference on Frontiers in Computing and Systems10.1007/978-981-99-2680-0_18(199-208)Online publication date: 1-Aug-2023
https://doi.org/10.1007/978-981-99-2680-0_18
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten