Sensors | |
Securing MQTT by Blockchain-Based OTP Authentication | |
Francesco Buccafurri1  Vincenzo De Angelis1  Roberto Nardone1  | |
[1] Department of Information Engineering, Infrastructure and Sustainable Energy (DIIES), Mediterranean University of Reggio Calabria, 89124 Reggio Calabria, Italy; | |
关键词: Ethereum; Internet of Things; authentication; smart contracts; MQTT; one-time password; | |
DOI : 10.3390/s20072002 | |
来源: DOAJ |
【 摘 要 】
The Internet of Things is constantly capturing interest from modern applications, changing our everyday life and empowering industrial applications. Interaction and the collaboration among smart devices offer new challenges to security since they conflict with economic and energy consumption requirement constraints. On the other hand, the lack of security measures could negatively impact the concrete adoption of this paradigm. This paper focuses on the Message Queuing Telemetry Transport (MQTT) protocol, widely adopted in the Internet of Things. This protocol does not implement natively secure authentication mechanisms, which are demanded to developers. Hence, this paper proposes a novel OTP (one-time password)-authentication schema for MQTT, which uses the Ethereum blockchain to implement a second-factor out-of-band channel. The proposal enables the authentication of both local and remote devices preserving user privacy and guaranteeing trust and accountability via Ethereum smart contracts.
【 授权许可】
Unknown