TY  - GEN
A1  - Sahlmann, Kristina
A1  - Clemens, Vera
A1  - Nowak, Michael
A1  - Schnor, Bettina
T1  - MUP
T2  - Postprints der Universität Potsdam : Mathematisch-Naturwissenschaftliche Reihe
N2  - Message Queuing Telemetry Transport (MQTT) is one of the dominating protocols for edge- and cloud-based Internet of Things (IoT) solutions. When a security vulnerability of an IoT device is known, it has to be fixed as soon as possible. This requires a firmware update procedure. In this paper, we propose a secure update protocol for MQTT-connected devices which ensures the freshness of the firmware, authenticates the new firmware and considers constrained devices. We show that the update protocol is easy to integrate in an MQTT-based IoT network using a semantic approach. The feasibility of our approach is demonstrated by a detailed performance analysis of our prototype implementation on a IoT device with 32 kB RAM. Thereby, we identify design issues in MQTT 5 which can help to improve the support of constrained devices.
T3  - Zweitveröffentlichungen der Universität Potsdam : Mathematisch-Naturwissenschaftliche Reihe - 1094 
KW  - Internet of Things
KW  - security
KW  - firmware update
KW  - MQTT
KW  - edge computing
Y1  - 2021
UR  - https://publishup.uni-potsdam.de/frontdoor/index/index/docId/48901
UR  - https://nbn-resolving.org/urn:nbn:de:kobv:517-opus4-489013
SN  - 1866-8372
IS  - 1094
ER  -