Litcius/Paper detail

Securing MQTT by Blockchain-Based OTP Authentication

Francesco Buccafurri, Vincenzo De Angelis, Roberto Nardone

2020Sensors41 citationsDOIOpen Access PDF

Abstract

The Internet of Things is constantly capturing interest from modern applications, changing our everyday life and empowering industrial applications. Interaction and the collaboration among smart devices offer new challenges to security since they conflict with economic and energy consumption requirement constraints. On the other hand, the lack of security measures could negatively impact the concrete adoption of this paradigm. This paper focuses on the Message Queuing Telemetry Transport (MQTT) protocol, widely adopted in the Internet of Things. This protocol does not implement natively secure authentication mechanisms, which are demanded to developers. Hence, this paper proposes a novel OTP (one-time password)-authentication schema for MQTT, which uses the Ethereum blockchain to implement a second-factor out-of-band channel. The proposal enables the authentication of both local and remote devices preserving user privacy and guaranteeing trust and accountability via Ethereum smart contracts.

Topics & Concepts

MQTTComputer securityComputer scienceMessage queueAuthentication (law)Smart objectsPasswordBlockchainAuthentication protocolSchema (genetic algorithms)Computer networkInternet of ThingsMachine learningBlockchain Technology Applications and SecurityIoT and Edge/Fog ComputingUser Authentication and Security Systems