Lightweight & secure industrial IoT communications via the MQ telemetry transport protocol

Massive advancements in computing and communication technologies have enabled the ubiquitous presence of interconnected computing devices in all aspects of modern life, forming what is typically referred to as the “Internet of Things”. These major changes could not leave the industrial environment unaffected, with “smart” industrial deployments gradually becoming a reality; a trend that is often referred to as the 4th industrial revolution or Industry 4.0. Nevertheless, the direct interaction of the smart devices with the physical world and their resource constraints, along with the strict performance, security, and reliability requirements of industrial infrastructures, necessitate the adoption of lightweight as well as secure communication mechanisms. Motivated by the above, this paper highlights the Message Queue Telemetry Transport (MQTT) as a lightweight protocol suitable for the industrial domain, presenting a comprehensive evaluation of different security mechanisms that could be used to protect the MQTT-enabled interactions on a real testbed of wireless sensor motes. Moreover, the applicability of the proposed solutions is assessed in the context of a real industrial application, analyzing the network characteristics and requirements of an actual, operating wind park, as a representative use case of industrial networks.

[1]  Ioannis G. Askoxylakis,et al.  Which IoT Protocol? Comparing Standardized Approaches over a Common M2M Application , 2016, 2016 IEEE Global Communications Conference (GLOBECOM).

[2]  Jürgen Jasperneite,et al.  Performance evaluation of M2M protocols over cellular networks in a lab environment , 2015, 2015 18th International Conference on Intelligence in Next Generation Networks.

[3]  Ioannis Papaefstathiou,et al.  Policy-based access control for DPWS-enabled ubiquitous devices , 2014, Proceedings of the 2014 IEEE Emerging Technology and Factory Automation (ETFA).

[4]  Charalampos Manifavas,et al.  A survey of lightweight stream ciphers for embedded systems , 2016, Secur. Commun. Networks.

[5]  Johan Bregell Hardware and software platform for Internet of Things , 2015 .

[6]  Carsten Bormann,et al.  The Constrained Application Protocol (CoAP) , 2014, RFC.

[7]  Hugo Krawczyk,et al.  A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[8]  Ioannis Papaefstathiou,et al.  IPv6 security for low power and lossy networks , 2013, 2013 IFIP Wireless Days (WD).

[9]  Xiaoping Ma,et al.  Performance evaluation of MQTT and CoAP via a common middleware , 2014, 2014 IEEE Ninth International Conference on Intelligent Sensors, Sensor Networks and Information Processing (ISSNIP).

[10]  Peter Fettke,et al.  Industrie 4.0 , 2018, Handbuch Innovationsforschung.

[11]  Dave Evans,et al.  How the Next Evolution of the Internet Is Changing Everything , 2011 .

[12]  Ioannis Papaefstathiou,et al.  A review of lightweight block ciphers , 2018, Journal of Cryptographic Engineering.

[13]  Peter Saint-Andre Extensible Messaging and Presence Protocol (XMPP): Core , 2011, RFC.

[14]  Ahmad-Reza Sadeghi,et al.  Security and privacy challenges in industrial Internet of Things , 2015, 2015 52nd ACM/EDAC/IEEE Design Automation Conference (DAC).

[15]  D. Piromalis,et al.  Wireless Sensor Networking Architecture of Polytropon: An Open Source Scalable Platform for the Smart Grid☆ , 2014 .

[16]  Wolfgang Kellerer,et al.  VirtuWind: virtual and programmable industrial network prototype deployed in operational wind park , 2016, Trans. Emerg. Telecommun. Technol..

[17]  Pietro Manzoni,et al.  Handling mobility in IoT applications using the MQTT protocol , 2015, 2015 Internet Technologies and Applications (ITA).

[18]  Hyggo Oliveira de Almeida,et al.  Integrating MQTT and ISO/IEEE 11073 for health information sharing in the Internet of Things , 2015, 2015 IEEE International Conference on Consumer Electronics (ICCE).

[19]  Jesus Alonso-Zarate,et al.  A Survey on Application Layer Protocols for the Internet of Things , 2015 .

[20]  Utz Roedig,et al.  Securing Internet of Things with Lightweight IPsec , 2010 .

[21]  Hoan-Suk Choi,et al.  IoT home gateway for auto-configuration and management of MQTT devices , 2015, 2015 IEEE Conference on Wireless Sensors (ICWiSe).

[22]  Philippas Tsigas,et al.  ContikiSec: A Secure Network Layer for Wireless Sensor Networks under the Contiki Operating System , 2009, NordSec.

[23]  Charalampos Manifavas,et al.  Lightweight Cryptography for Embedded Systems - A Comparative Analysis , 2013, DPM/SETOP.

[24]  Ioannis G. Askoxylakis,et al.  XSACd - Cross-domain resource sharing & access control for smart environments , 2018, Future Gener. Comput. Syst..

[25]  Subhas Chandra Mukhopadhyay,et al.  Internet of Things: Challenges and Opportunities , 2014 .

[26]  Gianluca Reali,et al.  Comparison of two lightweight protocols for smartphone-based sensing , 2013, 2013 IEEE 20th Symposium on Communications and Vehicular Technology in the Benelux (SCVT).

[27]  Damien Sauveron,et al.  Secure and Trusted Execution: Past, Present, and Future - A Critical Review in the Context of the Internet of Things and Cyber-Physical Systems , 2016, 2016 IEEE Trustcom/BigDataSE/ISPA.

[28]  Randall J. Atkinson,et al.  Security Architecture for the Internet Protocol , 1995, RFC.

[29]  Wu He,et al.  Internet of Things in Industries: A Survey , 2014, IEEE Transactions on Industrial Informatics.

[30]  Elias Z. Tragos,et al.  An experimental investigation on energy consumption for secure life-logging in smart environments , 2012, 2012 IEEE 17th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD).

[31]  Maria Rita Palattella,et al.  6TiSCH Wireless Industrial Networks: Determinism Meets IPv6 , 2014 .

[32]  Serge Chaumette,et al.  An efficient, secure and trusted channel protocol for avionics wireless networks , 2016, 2016 IEEE/AIAA 35th Digital Avionics Systems Conference (DASC).