{"id":"https://openalex.org/W4387951164","doi":"https://doi.org/10.1109/ccece58730.2023.10288857","title":"Evaluating Security of MQTT Protocol in Internet of Things","display_name":"Evaluating Security of MQTT Protocol in Internet of Things","publication_year":2023,"publication_date":"2023-09-24","ids":{"openalex":"https://openalex.org/W4387951164","doi":"https://doi.org/10.1109/ccece58730.2023.10288857"},"language":"en","primary_location":{"id":"doi:10.1109/ccece58730.2023.10288857","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccece58730.2023.10288857","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Canadian Conference on Electrical and Computer Engineering (CCECE)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5035195192","display_name":"Ayman Al-Ani","orcid":"https://orcid.org/0000-0001-8391-5887"},"institutions":[{"id":"https://openalex.org/I161371597","display_name":"Universiti of Malaysia Sabah","ror":"https://ror.org/040v70252","country_code":"MY","type":"education","lineage":["https://openalex.org/I161371597"]},{"id":"https://openalex.org/I201744698","display_name":"Centennial College","ror":"https://ror.org/05bhp3g52","country_code":"CA","type":"education","lineage":["https://openalex.org/I201744698"]}],"countries":["CA","MY"],"is_corresponding":false,"raw_author_name":"Ayman Al-Ani","raw_affiliation_strings":["Centennial College,School of Engineering Technology and Applied Science,Toronto,Ontario,Canada","Universiti Malaysia Sabah, Jalan UMS,Cybersecurity Research Group, Faculty of Computing and Informatics,Kota Kinabalu,Sabah,Malaysia,88400"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Centennial College,School of Engineering Technology and Applied Science,Toronto,Ontario,Canada","institution_ids":["https://openalex.org/I201744698"]},{"raw_affiliation_string":"Universiti Malaysia Sabah, Jalan UMS,Cybersecurity Research Group, Faculty of Computing and Informatics,Kota Kinabalu,Sabah,Malaysia,88400","institution_ids":["https://openalex.org/I161371597"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5111062881","display_name":"Wong Kang Shen","orcid":null},"institutions":[{"id":"https://openalex.org/I4210134189","display_name":"Xiamen University Malaysia","ror":"https://ror.org/0331wa828","country_code":"MY","type":"education","lineage":["https://openalex.org/I191208505","https://openalex.org/I4210134189"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Wong Kang Shen","raw_affiliation_strings":["Xiamen University Malaysia,School of Computing and Data Science,Sepang,Selangor,Malaysia,43900"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Xiamen University Malaysia,School of Computing and Data Science,Sepang,Selangor,Malaysia,43900","institution_ids":["https://openalex.org/I4210134189"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047430295","display_name":"Ahmed K. Al-Ani","orcid":"https://orcid.org/0000-0002-1411-5330"},"institutions":[{"id":"https://openalex.org/I161371597","display_name":"Universiti of Malaysia Sabah","ror":"https://ror.org/040v70252","country_code":"MY","type":"education","lineage":["https://openalex.org/I161371597"]},{"id":"https://openalex.org/I201744698","display_name":"Centennial College","ror":"https://ror.org/05bhp3g52","country_code":"CA","type":"education","lineage":["https://openalex.org/I201744698"]}],"countries":["CA","MY"],"is_corresponding":false,"raw_author_name":"Ahmed K. Al-Ani","raw_affiliation_strings":["Centennial College,School of Engineering Technology and Applied Science,Toronto,Ontario,Canada","Universiti Malaysia Sabah, Jalan UMS,Cybersecurity Research Group, Faculty of Computing and Informatics,Kota Kinabalu,Sabah,Malaysia,88400","School of Engineering Technology and Applied Science, Centennial College, Toronto, Ontario, Canada"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Centennial College,School of Engineering Technology and Applied Science,Toronto,Ontario,Canada","institution_ids":["https://openalex.org/I201744698"]},{"raw_affiliation_string":"Universiti Malaysia Sabah, Jalan UMS,Cybersecurity Research Group, Faculty of Computing and Informatics,Kota Kinabalu,Sabah,Malaysia,88400","institution_ids":["https://openalex.org/I161371597"]},{"raw_affiliation_string":"School of Engineering Technology and Applied Science, Centennial College, Toronto, Ontario, Canada","institution_ids":["https://openalex.org/I201744698"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031210684","display_name":"Shams Ul Arfeen Laghari","orcid":"https://orcid.org/0000-0002-6036-395X"},"institutions":[{"id":"https://openalex.org/I139322472","display_name":"Universiti Sains Malaysia","ror":"https://ror.org/02rgb2k63","country_code":"MY","type":"education","lineage":["https://openalex.org/I139322472"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Shams A. Laghari","raw_affiliation_strings":["Universiti Sains Malaysia (USM),National Advanced IPv6 Centre (NAv6),Gelugor,Penang,Malaysia,11800"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universiti Sains Malaysia (USM),National Advanced IPv6 Centre (NAv6),Gelugor,Penang,Malaysia,11800","institution_ids":["https://openalex.org/I139322472"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5054844928","display_name":"Omar E. Elejla","orcid":"https://orcid.org/0000-0003-2447-3120"},"institutions":[{"id":"https://openalex.org/I207527440","display_name":"Al-Aqsa University","ror":"https://ror.org/03e99kh24","country_code":"PS","type":"education","lineage":["https://openalex.org/I207527440"]}],"countries":["PS"],"is_corresponding":false,"raw_author_name":"Omar E. Elejla","raw_affiliation_strings":["Al-Aqsa University,Department of Computer Science,Gaza,Palestine,4051"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Al-Aqsa University,Department of Computer Science,Gaza,Palestine,4051","institution_ids":["https://openalex.org/I207527440"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":2.0862,"has_fulltext":false,"cited_by_count":11,"citation_normalized_percentile":{"value":0.88044343,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"502","last_page":"509"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9925000071525574,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13038","display_name":"Internet of Things and AI","score":0.9643999934196472,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/mqtt","display_name":"MQTT","score":0.9406417608261108},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8013472557067871},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5807161927223206},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.5569514632225037},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5498844385147095},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5367459058761597},{"id":"https://openalex.org/keywords/message-queue","display_name":"Message queue","score":0.5300847291946411},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.5203056335449219},{"id":"https://openalex.org/keywords/plaintext","display_name":"Plaintext","score":0.486611932516098},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.46574127674102783},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.2324700951576233}],"concepts":[{"id":"https://openalex.org/C132868160","wikidata":"https://www.wikidata.org/wiki/Q10322548","display_name":"MQTT","level":3,"score":0.9406417608261108},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8013472557067871},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5807161927223206},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.5569514632225037},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5498844385147095},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5367459058761597},{"id":"https://openalex.org/C26324664","wikidata":"https://www.wikidata.org/wiki/Q1065525","display_name":"Message queue","level":2,"score":0.5300847291946411},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.5203056335449219},{"id":"https://openalex.org/C92717368","wikidata":"https://www.wikidata.org/wiki/Q1162538","display_name":"Plaintext","level":3,"score":0.486611932516098},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.46574127674102783},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.2324700951576233},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ccece58730.2023.10288857","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccece58730.2023.10288857","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Canadian Conference on Electrical and Computer Engineering (CCECE)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320323704","display_name":"Universiti Malaysia Sabah","ror":"https://ror.org/040v70252"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W1632195884","https://openalex.org/W1993719651","https://openalex.org/W2586459757","https://openalex.org/W2612809042","https://openalex.org/W2779139350","https://openalex.org/W2786647169","https://openalex.org/W2793140650","https://openalex.org/W2794081682","https://openalex.org/W2897514040","https://openalex.org/W2909425366","https://openalex.org/W2915267103","https://openalex.org/W2946892805","https://openalex.org/W2978569441","https://openalex.org/W2986455874","https://openalex.org/W3003275137","https://openalex.org/W3033505434","https://openalex.org/W3034273612","https://openalex.org/W3036978172","https://openalex.org/W3087330936","https://openalex.org/W3159536527","https://openalex.org/W3173899529","https://openalex.org/W3214696341","https://openalex.org/W6749689483","https://openalex.org/W6757883386","https://openalex.org/W7064758851"],"related_works":["https://openalex.org/W2808909086","https://openalex.org/W2594893198","https://openalex.org/W2920851310","https://openalex.org/W2782567402","https://openalex.org/W3191127435","https://openalex.org/W4392109326","https://openalex.org/W4214846370","https://openalex.org/W4379141734","https://openalex.org/W4296712975","https://openalex.org/W2953647658"],"abstract_inverted_index":{"The":[0,61,113,177],"Internet":[1],"of":[2,29,82,150],"Things":[3],"(IoT)":[4],"has":[5],"revolutionized":[6],"the":[7,30,83,107,126,131,145,148,186,190,196,200],"way":[8],"people":[9],"interact,":[10],"communicate,":[11],"and":[12,24,63,74,100,110,122,141,156,174,179,204],"perform":[13],"daily":[14],"activities":[15],"in":[16,66,195],"various":[17,93,162],"domains":[18],"ranging":[19],"from":[20],"households":[21],"to":[22,47,105,207],"industries":[23],"cities.":[25],"MQTT":[26,44,51,84,90,155,158,202],"is":[27],"one":[28],"commonly":[31],"adopted":[32],"protocols":[33],"for":[34],"implementing":[35],"IoT.":[36],"However,":[37],"IoT":[38,163],"systems":[39],"that":[40,116,184,193],"are":[41,45],"connected":[42],"through":[43],"susceptible":[46],"security":[48,57],"breaches":[49],"as":[50,58,97,166],"was":[52],"not":[53],"originally":[54],"designed":[55],"with":[56],"a":[59,79],"priority.":[60],"credentials":[62],"messages":[64],"transmitted":[65],"plaintext":[67],"by":[68,136,160],"default,":[69],"thereby":[70],"compromising":[71],"data":[72],"confidentiality":[73],"integrity.":[75],"This":[76],"study":[77,146],"presents":[78],"comprehensive":[80],"analysis":[81],"protocol,":[85],"including":[86],"experimentation":[87],"on":[88,199],"an":[89],"system":[91],"using":[92],"cryptographic":[94,127,191],"implementations,":[95,128],"such":[96,165],"AES-CBC,":[98],"RSA,":[99],"ECC":[101,137],"AES":[102,138],"Hybrid":[103,139],"Scheme,":[104],"assess":[106],"processing":[108,120,133],"time":[109,121],"message":[111,123],"size.":[112],"findings":[114],"indicate":[115],"payload":[117],"encryption":[118],"increases":[119],"bytes.":[124],"Among":[125],"RSA":[129],"incurs":[130],"highest":[132],"time,":[134],"followed":[135],"Scheme":[140],"AES-":[142],"CBC.":[143],"Furthermore,":[144],"demonstrates":[147],"effectiveness":[149],"attack":[151],"prevention":[152],"between":[153],"standard":[154,201],"secured":[157],"implementations":[159],"simulating":[161],"attacks,":[164],"black-box":[167],"penetration":[168],"attack,":[169,173],"identity":[170],"spoofing,":[171],"DoS":[172],"MITM":[175],"attack.":[176],"results":[178],"subsequent":[180],"discussion":[181],"provide":[182],"insights":[183],"answer":[185],"research":[187],"question,":[188],"revealing":[189],"algorithms":[192],"result":[194],"most":[197],"overhead":[198],"implementation":[203],"their":[205],"capacity":[206],"resist":[208],"common":[209],"attacks.":[210]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":6}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}