Back to Search Start Over

Preventing MQTT Vulnerabilities Using IoT-Enabled Intrusion Detection System.

Authors :
Husnain M
Hayat K
Cambiaso E
Fayyaz UU
Mongelli M
Akram H
Ghazanfar Abbas S
Shah GA
Source :
Sensors (Basel, Switzerland) [Sensors (Basel)] 2022 Jan 12; Vol. 22 (2). Date of Electronic Publication: 2022 Jan 12.
Publication Year :
2022

Abstract

The advancement in the domain of IoT accelerated the development of new communication technologies such as the Message Queuing Telemetry Transport (MQTT) protocol. Although MQTT servers/brokers are considered the main component of all MQTT-based IoT applications, their openness makes them vulnerable to potential cyber-attacks such as DoS, DDoS, or buffer overflow. As a result of this, an efficient intrusion detection system for MQTT-based applications is still a missing piece of the IoT security context. Unfortunately, existing IDSs do not provide IoT communication protocol support such as MQTT or CoAP to validate crafted or malformed packets for protecting the protocol implementation vulnerabilities of IoT devices. In this paper, we have designed and developed an MQTT parsing engine that can be integrated with network-based IDS as an initial layer for extensive checking against IoT protocol vulnerabilities and improper usage through a rigorous validation of packet fields during the packet-parsing stage. In addition, we evaluate the performance of the proposed solution across different reported vulnerabilities. The experimental results demonstrate the effectiveness of the proposed solution for detecting and preventing the exploitation of vulnerabilities on IoT protocols.

Details

Language :
English
ISSN :
1424-8220
Volume :
22
Issue :
2
Database :
MEDLINE
Journal :
Sensors (Basel, Switzerland)
Publication Type :
Academic Journal
Accession number :
35062536
Full Text :
https://doi.org/10.3390/s22020567