Differences
This shows you the differences between two versions of the page.
|
iothings:proiecte:2021:gdavid [2022/01/27 18:47] gabriel.david [Evaluation] |
iothings:proiecte:2021:gdavid [2022/01/28 00:29] (current) gabriel.david [Resources] |
||
|---|---|---|---|
| Line 229: | Line 229: | ||
| \\ | \\ | ||
| + | For small values of **MESSAGE_SIZE** and high values of **TOTAL_MESSAGES** sent during the experiment, the overhead of L2 was slightly better than L3, because the AES-CBC encryption runs for less rounds to encrypt one message, as represented in Figure 11. This is a common scenario for IoT networks, where nodes send over network small messages (few bytes up to few kylobytes). This is only valid for a high values of **TOTAL_MESSAGES**, like a client sending more times over a second floats values read from a sensor, otherwise TLS may be a better choice performance wise. Remember that only the values read from the sensor are obfuscated and an attacker is able to hack the communication. | ||
| {{ :iothings:proiecte:2021:worst-case.png?600 | L0, L2 and L3 comparison for the worst-case test }} | {{ :iothings:proiecte:2021:worst-case.png?600 | L0, L2 and L3 comparison for the worst-case test }} | ||
| Line 240: | Line 241: | ||
| ==== Conclusions ==== | ==== Conclusions ==== | ||
| \\ | \\ | ||
| + | The following conclusions were drawn from the above experiments: | ||
| + | * MQTT over TCP has no security at all and may be exploited in many ways. | ||
| + | * MQTT with username/password authentication provides access control to the network but may be easily exploited. | ||
| + | * MQTT over TCP and encryption at application level is the fastest available solution performance-wise only for one scenario: really small data sent over network at a high rate until. | ||
| + | * Overhead for MQTT over TCP and encryption at application level is exponentially growing over some point. | ||
| + | * MQTT over TCP and encryption at application level still may be exploited in many ways. | ||
| + | * MQTT over TLS provides best security and is the fastest method for most real life scenarios. | ||
| ==== Resources ==== | ==== Resources ==== | ||
| - | \\ | ||
| === Useful links and references === | === Useful links and references === | ||
| * [1] https://www.modbus.org/ | * [1] https://www.modbus.org/ | ||
| Line 259: | Line 266: | ||
| * [15] https://link.springer.com/article/10.1007/s13204-021-01985-3 | * [15] https://link.springer.com/article/10.1007/s13204-021-01985-3 | ||
| - | \\ | ||
| === Project files === | === Project files === | ||
