Connectivity Framework Annex F : Assessment Template : MQTT
F . 6.4 Functional Viewpoint
Data Security ( Section 4.1.11 )
API ( Section 4.1.12 )
Governance ( Section 4.1.13 )
F . 6.4.2 Core Transport Layer Functions
Messaging Protocol ( Section 5.1.1 )
Communication Modes ( Section 5.1.2 )
Endpoint Addressing ( Section 5.1.3 )
Connectedness ( Section 5.1.4 )
Prioritization ( Section 5.1.5 )
Timing & Synchronization
( Section 5.1.6 )
Message Security ( Section 5.1.7 )
Does it provide a data object security model ? Summarize the salient aspects . No , it does not provide a data object security model .
Only user name and password authentication is provided by the protocol . Security model is implemented by the broker and is not part of the MQTT standard . Is there a standard API ? Which programming languages is it available for ?
No , there is no standard programming API . It is implementation dependent .
Does it standardize the mechanisms for configuration , administration , and monitoring ? Summarize the salient aspects .
MQTT does not define a standardized way to configure , administer , and manage a broker . Configuration , administration , and monitoring of MQTT brokers is implementation specific .
Does it require UDP or TCP ? What are the salient aspects of the messaging protocol ? What are the message size limitations ? What are the usage assumptions ? Is it optimized for certain message requirements ?
The MQTT standard is the messaging protocol .
Applications are responsible for building the communication framework on top of the MQTT transport protocol . There are no standards for this .
MQTT requires TCP . MQTT-SN works over UDP . Which communication modes does it support ? MQTT relies on unicast .
MQTT-SN can use multicast but not with security .
Describe the transport endpoints . How are the endpoints addressed ? What are the limitations , if any , on the number of endpoints ?
MQTT endpoints are the MQTT-Client and the MQTT-Server . MQTT uses standard IP host and port number addressing combined with the name of the Topic to direct messages .
The number of TCP connections on the server host and the memory limits the number of endpoints . Does it require a connected circuit between the endpoints ? Summarize the salient aspects . MQTT is a connection-oriented transport on top of TCP .
MQTT-SN is a connectionless transport on top of UDP . Does it provide a means to prioritize messages ? Summarize the salient aspects .
No , it does not provide a means to prioritize messages . Does it provide the ability to synchronize time ? Summarize the salient aspects .
No , it does not provide the ability to synchronize time . Does it provide mechanisms for message security ? Summarize the salient aspects .
No , it does not provide any mechanism for message security . Instead , it relies on transportlevel security to authenticate the broker and provide integrity and confidentiality of the information : Transport Level Security ( TLS ) for MQTT and Datagram Transport Level Security ( DTLS ) for MQTT-SN .
IIC : PUB : G5 : V1.0 : PB : 20170228 - 116 -