An Analysis of Anonymous MQTT for Publish-Subscribe-Based IoT Networks

IF 6.7 2区计算机科学 Q1 ENGINEERING, MULTIDISCIPLINARY

IEEE Transactions on Network Science and Engineering Pub Date : 2025-04-03 DOI:10.1109/TNSE.2025.3557506

Yudai Fukushima;Hotaru Tsunamoto;Kazuya Sakai;Min-Te Sun;Wei-Shinn Ku

{"title":"An Analysis of Anonymous MQTT for Publish-Subscribe-Based IoT Networks","authors":"Yudai Fukushima;Hotaru Tsunamoto;Kazuya Sakai;Min-Te Sun;Wei-Shinn Ku","doi":"10.1109/TNSE.2025.3557506","DOIUrl":null,"url":null,"abstract":"Message queuing telemetry transport (MQTT) is widely used as a communication primitive in publish-subscribe-based IoT applications. However, the current MQTT standard does not support the privacy of IoT devices and users. Therefore, in this paper, we address the anonymous communications for MQTT-based IoT networks by tailored onion routing. To this end, we first introduce the concept of distributed IoT broker networks, in which a collection of IoT brokers are interconnected with each other. These brokers serve as onion routers. Then, we propose a generic anonymous messaging protocol (A-MQTT) for publish-subscribe-based IoT systems. Unlike typical anonymous communications, there are multiple destination IoT devices, called subscribers, in MQTT contexts. Hence, the privacy notions, such as traceable rate, device anonymity, and path anonymity, are redesigned. To illuminate the fundamental privacy issues, closed-form approximations for these privacy metrics are modeled. In addition, simulation results demonstrate that our A-MQTT significantly improves the security performance and that our proposed models closely approximate the various privacy performance. Furthermore, a proof-of-concept protocol is implemented on a Raspberry Pi 4 in order to show that the proposed A-MQTT can be deployed in an IoT environment.","PeriodicalId":54229,"journal":{"name":"IEEE Transactions on Network Science and Engineering","volume":"12 4","pages":"3206-3220"},"PeriodicalIF":6.7000,"publicationDate":"2025-04-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Network Science and Engineering","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10948363/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, MULTIDISCIPLINARY","Score":null,"Total":0}

引用次数: 0

Abstract

Message queuing telemetry transport (MQTT) is widely used as a communication primitive in publish-subscribe-based IoT applications. However, the current MQTT standard does not support the privacy of IoT devices and users. Therefore, in this paper, we address the anonymous communications for MQTT-based IoT networks by tailored onion routing. To this end, we first introduce the concept of distributed IoT broker networks, in which a collection of IoT brokers are interconnected with each other. These brokers serve as onion routers. Then, we propose a generic anonymous messaging protocol (A-MQTT) for publish-subscribe-based IoT systems. Unlike typical anonymous communications, there are multiple destination IoT devices, called subscribers, in MQTT contexts. Hence, the privacy notions, such as traceable rate, device anonymity, and path anonymity, are redesigned. To illuminate the fundamental privacy issues, closed-form approximations for these privacy metrics are modeled. In addition, simulation results demonstrate that our A-MQTT significantly improves the security performance and that our proposed models closely approximate the various privacy performance. Furthermore, a proof-of-concept protocol is implemented on a Raspberry Pi 4 in order to show that the proposed A-MQTT can be deployed in an IoT environment.

查看原文本刊更多论文

基于发布-订阅的物联网网络匿名MQTT分析

消息队列遥测传输（MQTT）在基于发布-订阅的物联网应用中被广泛用作通信原语。然而，目前的MQTT标准不支持物联网设备和用户的隐私。因此，在本文中，我们通过定制洋葱路由来解决基于mqtt的物联网网络的匿名通信。为此，我们首先引入分布式物联网代理网络的概念，其中一组物联网代理相互连接。这些代理充当洋葱路由器。然后，我们为基于发布-订阅的物联网系统提出了通用匿名消息传递协议（a - mqtt）。与典型的匿名通信不同，MQTT上下文中有多个目标物联网设备，称为订阅者。因此，对可跟踪率、设备匿名性和路径匿名性等隐私概念进行了重新设计。为了阐明基本的隐私问题，对这些隐私度量进行了封闭式近似建模。此外，仿真结果表明，我们的A-MQTT显着提高了安全性能，并且我们提出的模型非常接近各种隐私性能。此外，在树莓派4上实现了概念验证协议，以表明提议的a - mqtt可以部署在物联网环境中。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Network Science and Engineering Engineering-Control and Systems Engineering

CiteScore

12.60

自引率

9.10%

发文量

393

期刊介绍： The proposed journal, called the IEEE Transactions on Network Science and Engineering (TNSE), is committed to timely publishing of peer-reviewed technical articles that deal with the theory and applications of network science and the interconnections among the elements in a system that form a network. In particular, the IEEE Transactions on Network Science and Engineering publishes articles on understanding, prediction, and control of structures and behaviors of networks at the fundamental level. The types of networks covered include physical or engineered networks, information networks, biological networks, semantic networks, economic networks, social networks, and ecological networks. Aimed at discovering common principles that govern network structures, network functionalities and behaviors of networks, the journal seeks articles on understanding, prediction, and control of structures and behaviors of networks. Another trans-disciplinary focus of the IEEE Transactions on Network Science and Engineering is the interactions between and co-evolution of different genres of networks.