For questions related to how Transport Layer Security (TLS) can provide privacy and data integrity between IoT applications or devices. Also, practical usages of TLS in current IoT applications can be discussed. Tag should not be used to discuss general TLS topics that apply to computing in general.
Questions tagged [tls]
12 questions
12
votes
3 answers
Performance of MQTT over TLS vs. MQTT
While MQTT is quite versatile it is also not secured on itself. This is by design.
According to Stanford-Clark, security was consciously left out of the protocol initially because he and Nipper knew security mechanisms could be wrapped around MQTT…
Helmar
- 8,450
- 6
- 36
- 84
10
votes
2 answers
Can One-way SSL secure an IoT device?
I am considering an IoT device connected to my local network (default settings, no VPN, no NAT, no DMZ) with or without Internet access. My device will run as a HTTP server offering a RPC mechanism with authentication and authorization. It…
valentin
- 196
- 6
9
votes
4 answers
How can I prevent my device leaking sensitive data through traffic fingerprinting?
According to the recent paper A Smart Home is No Castle:
Privacy Vulnerabilities of Encrypted IoT Traffic, many smart home devices can be 'fingerprinted' by their connection patterns. Since most devices connect to a small set of URLs when they're…
Aurora0001
- 18,520
- 13
- 55
- 169
8
votes
1 answer
How would I use HTTPS on the web-based device config running an access point and no internet access?
I'm building a Raspberry Pi-based device for backyard gardeners that has a web page and access point for the initial configuration, including the Wi-Fi configuration. The connection uses WPA2 and the only two devices on that internal network would…
Slow Bro
- 83
- 6
5
votes
1 answer
AWS IoT certificate rejection
I've been trying to configure AWS IoT to communicate over MQTT using TLS for days on a D1 Mini board and have been running into a road block with authentication.
I've used several AWS IoT Arduino libraries such as this one that hardcodes or uses…
Thibaut Hardin
- 61
- 3
4
votes
0 answers
MQTT with TLS for TI CC3200 fails with 'Bad CA file' error
This topic seems to pop up everywhere but, without a conclusion as to how to get MQTT-TLS for CC3200 running. So, here goes one more.
Goal
Connect TI CC3200 board to AWS IoT broker via TLS.
Steps
Get certificates
To get the keys and certificates for…
cogitoergosum
- 1,091
- 7
- 18
3
votes
1 answer
Creating a secure MQTT session with TLS while employing smartphone gateway
My IoT device creates a BLE connection with a smartphone from which it connects to cloud. When integrating a TLS, should it be above MQTT or below? All implementation I have reviewed so far does it below MQTT layer.
Above:
TLS handshake and record…
RealTimeEngineer91
- 31
- 2
2
votes
3 answers
MQTT client connect to broker have self signed certification
I run c# MQTT broker (in socket not websocket) with self signed certification for TLS in cloud server and now client cant connect to server and get this error message
The remote certificate was rejected by the provided…
behroozbc
- 153
- 9
1
vote
1 answer
TLS Certificate life for IoT System
I'm developing an IoT product's software, where it runs HTTPS client.
Given that the certificate of servers are renewed every year, it's not that issue while we're authenticating against the Intermediate Certificate (as Let's Encrypt).
Given those…
Hamza Hajeir
- 141
- 4
1
vote
0 answers
esp-idf - mqtt ssl example certificate error
I'm having some trouble with mqtt ssl example on esp-idf ESP32.
Example: mqtt_ssl
If I test it with the default broker "mqtts://mqtt.eclipse.org:8883" and default certificate "mqtt_eclipse_org.pem"
It works correctly.
If I change the broker with…
DDBE
- 133
- 1
- 4
0
votes
1 answer
Mqtt in production
I am using Mqtt to build a project. I am wanting to move my whole work to prod ready.
My hardware is ESP-07 and custom PCB design the broker is mosquitto the app (Nodejs,react native)
I implemented Mqtt over TLS and used Let's encrypt…
offgrid8
- 123
- 6
0
votes
1 answer
Can traffic spy see username and password of MQTT client
Can Traffic spy see the username and password of client send to broker when broker don't use TLS ?
behroozbc
- 153
- 9