Connectivity Framework Annex F: Assessment Template: MQTT
F. 6.4 Functional Viewpoint
Data Security( Section 4.1.11)
API( Section 4.1.12)
Governance( Section 4.1.13)
F. 6.4.2 Core Transport Layer Functions
Messaging Protocol( Section 5.1.1)
Communication Modes( Section 5.1.2)
Endpoint Addressing( Section 5.1.3)
Connectedness( Section 5.1.4)
Prioritization( Section 5.1.5)
Timing & Synchronization
( Section 5.1.6)
Message Security( Section 5.1.7)
Does it provide a data object security model? Summarize the salient aspects. No, it does not provide a data object security model.
Only user name and password authentication is provided by the protocol. Security model is implemented by the broker and is not part of the MQTT standard. Is there a standard API? Which programming languages is it available for?
No, there is no standard programming API. It is implementation dependent.
Does it standardize the mechanisms for configuration, administration, and monitoring? Summarize the salient aspects.
MQTT does not define a standardized way to configure, administer, and manage a broker. Configuration, administration, and monitoring of MQTT brokers is implementation specific.
Does it require UDP or TCP? What are the salient aspects of the messaging protocol? What are the message size limitations? What are the usage assumptions? Is it optimized for certain message requirements?
The MQTT standard is the messaging protocol.
Applications are responsible for building the communication framework on top of the MQTT transport protocol. There are no standards for this.
MQTT requires TCP. MQTT-SN works over UDP. Which communication modes does it support? MQTT relies on unicast.
MQTT-SN can use multicast but not with security.
Describe the transport endpoints. How are the endpoints addressed? What are the limitations, if any, on the number of endpoints?
MQTT endpoints are the MQTT-Client and the MQTT-Server. MQTT uses standard IP host and port number addressing combined with the name of the Topic to direct messages.
The number of TCP connections on the server host and the memory limits the number of endpoints. Does it require a connected circuit between the endpoints? Summarize the salient aspects. MQTT is a connection-oriented transport on top of TCP.
MQTT-SN is a connectionless transport on top of UDP. Does it provide a means to prioritize messages? Summarize the salient aspects.
No, it does not provide a means to prioritize messages. Does it provide the ability to synchronize time? Summarize the salient aspects.
No, it does not provide the ability to synchronize time. Does it provide mechanisms for message security? Summarize the salient aspects.
No, it does not provide any mechanism for message security. Instead, it relies on transportlevel security to authenticate the broker and provide integrity and confidentiality of the information: Transport Level Security( TLS) for MQTT and Datagram Transport Level Security( DTLS) for MQTT-SN.
IIC: PUB: G5: V1.0: PB: 20170228- 116-