Jump to content

MQTT: Difference between revisions

From Wikipedia, the free encyclopedia
Content deleted Content added
No edit summary
 
(28 intermediate revisions by 20 users not shown)
Line 1: Line 1:
{{Short description|Publish-subscribe based messaging protocol}}
{{Short description|Publish-subscribe based messaging protocol}}
{{Infobox technology standard
{{Infobox technology standard
| title = MQTT
| title = MQTT
| status = Published
| status = Published
| image = Mqtt-hor.svg
| image = Mqtt-hor.svg
| caption = MQTT logo
| caption = MQTT logo
| year_started = 1999
| year_started = 1999
| version = 5.0<ref name=mqtt5_spec>{{cite web|url=https://docs.oasis-open.org/mqtt/mqtt/v5.0/mqtt-v5.0.html|title=MQTT Version 5.0|date=2019-03-07|publisher=[[OASIS (organization)|OASIS]]|access-date=2020-12-15}}</ref>
| version = 5.0<ref name=mqtt5_spec>{{cite web|url=https://docs.oasis-open.org/mqtt/mqtt/v5.0/mqtt-v5.0.html|title=MQTT Version 5.0|date=2019-03-07|publisher=[[OASIS (organization)|OASIS]]|access-date=2020-12-15}}</ref>
| versionDate = 7 March 2019
| versionDate = 7 March 2019
| preview =
| preview =
| previewDate =
| previewDate =
| organization = [[OASIS (organization)|OASIS]]
| organization = {{Plainlist|
* [[OASIS (organization)|OASIS]]
* {{abbr|[[International Electrotechnical Commission|IEC]]|International Electrotechnical Commission}}<ref name="iec-standard" />
| base_standards =
| related_standards = MQTT-SN<ref name=mqttsn_sc>{{cite web|url=https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=mqtt-sn|title=MQTT SN Subcommittee|publisher=OASIS|access-date=2020-12-15}}</ref>
* {{abbr|[[International Organization for Standardization|ISO]]|International Organization for Standardization}}<ref name="iso-standard">{{Cite web|url=https://www.iso.org/standard/69466.html|title=ISO/IEC 20922:2016 Information technology — Message Queuing Telemetry Transport (MQTT) v3.1.1|access-date=2024-10-27}}</ref>
}}
| domain =
| related_standards = MQTT-SN<ref name=mqttsn_sc>{{cite web|url=https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=mqtt-sn|title=MQTT SN Subcommittee|publisher=OASIS|access-date=2020-12-15}}</ref>
| license =
| website = {{url|//mqtt.org/}}
| website = {{url|//mqtt.org/}}
| committee = OASIS Message Queuing Telemetry Transport Technical Committee<ref name=tc_charter>{{cite web|url=https://www.oasis-open.org/committees/mqtt/charter.php|title=OASIS Message Queuing Telemetry Transport (MQTT) Technical Committee Charter|publisher=OASIS|access-date=2020-12-15}}</ref>
| committee = OASIS Message Queuing Telemetry Transport Technical Committee<ref name=tc_charter>{{cite web|url=https://www.oasis-open.org/committees/mqtt/charter.php|title=OASIS Message Queuing Telemetry Transport (MQTT) Technical Committee Charter|publisher=OASIS|access-date=2020-12-15}}</ref>
| editors = Andrew Banks (IBM), Ed Briggs (Microsoft), Ken Borgendale (IBM), Rahul Gupta (IBM)<ref name=mqtt5_spec />
| editors = Andrew Banks (IBM), Ed Briggs (Microsoft), Ken Borgendale (IBM), Rahul Gupta (IBM)<ref name=mqtt5_spec />
}}
}}
{{IPstack}}
{{IPstack}}


'''MQTT''' (originally an [[Acronym|initialism]] of '''MQ Telemetry Transport'''{{efn|MQ stands for "message queues", as derived from the [[IBM MQ]] product name.}}) is a lightweight, [[Publish–subscribe pattern|publish-subscribe]], [[machine to machine]] network [[Communication protocol|protocol]] for [[message queue]]/[[message queuing service]]. It is designed for connections with remote locations that have devices with resource constraints or limited network [[Bandwidth (computing)|bandwidth]], such as in the [[Internet of Things]] (IoT). It must run over a transport protocol that provides ordered, [[Lossless compression|lossless]], bi-directional connections—typically, [[TCP/IP]],<ref name=mqtt5_spec /> but also possibly over [[QUIC]]<ref>{{Cite web|url=https://www.emqx.com/en/blog/mqtt-over-quic#quic-vs-tcp-tls/|title=MQTT over QUIC: Next-Generation IoT Standard Protocol|date=2022-08-24|publisher=EMQ}}</ref> It is an open [[OASIS (organization)|OASIS]] standard and an [[International Organization for Standardization|ISO]] recommendation ('''ISO/IEC 20922''').
'''MQTT''' (originally an [[Acronym|initialism]] of '''MQ Telemetry Transport'''{{efn|MQ stands for "message queues", as derived from the [[IBM MQ]] product name.}}) is a lightweight, [[Publish–subscribe pattern|publish-subscribe]], [[machine to machine]] network [[Communication protocol|protocol]] for [[message queue]]/[[message queuing service]]. It is designed for connections with remote locations that have devices with resource constraints or limited network [[Bandwidth (computing)|bandwidth]], such as in the [[Internet of Things]] (IoT). It must run over a transport protocol that provides ordered, [[Lossless compression|lossless]], bi-directional connections—typically, [[TCP/IP]].<ref name=mqtt5_spec /> It is an open [[OASIS (organization)|OASIS]] standard and an [[International Organization for Standardization|ISO]] recommendation ('''ISO/IEC 20922''').


== History ==
== History ==
[[Andy Stanford-Clark]] ([[IBM]]) and Arlen Nipper (then working for [[Eurotech (company)|Eurotech, Inc.]]) authored the first version of the protocol in 1999.<ref>{{Cite web|url=http://mqtt.org/2009/07/10th-birthday-party|title=10th birthday party|date=July 2009|work=MQTT.org|access-date=April 25, 2015|archive-url=https://web.archive.org/web/20150315025826/https://mqtt.org/2009/07/10th-birthday-party|archive-date=March 15, 2015|url-status=dead}}</ref> It was used to monitor oil pipelines within the [[SCADA]] industrial control system.<ref>{{Cite web|url=https://www.ibm.com/podcasts/software/websphere/connectivity/piper_diaz_nipper_mq_tt_11182011.pdf|title=Transcript of IBM podcast|date=November 2011|work=IBM.com|access-date=January 7, 2021}}</ref> The goal was to have a protocol that is bandwidth-efficient, lightweight and uses little battery power, because the devices were connected via satellite link which, at that time, was extremely expensive.<ref>{{Cite web|url=https://www.hivemq.com/blog/how-to-get-started-with-mqtt/|title=Getting Started with MQTT|date=2020-04-24|publisher=HiveMQ}}</ref>
[[Andy Stanford-Clark]] ([[IBM]]) and Arlen Nipper (then working for [[Eurotech (company)|Eurotech, Inc.]]) authored the first version of the protocol in 1999.<ref>{{Cite web|url=http://mqtt.org/2009/07/10th-birthday-party|title=10th birthday party|date=July 2009|work=MQTT.org|access-date=April 25, 2015|archive-url=https://web.archive.org/web/20150315025826/https://mqtt.org/2009/07/10th-birthday-party|archive-date=March 15, 2015|url-status=dead}}</ref> It was used to monitor oil pipelines within the [[SCADA]] industrial control system.<ref>{{Cite web|url=https://www.ibm.com/podcasts/software/websphere/connectivity/piper_diaz_nipper_mq_tt_11182011.pdf|title=Transcript of IBM podcast|date=November 2011|work=IBM.com|access-date=January 7, 2021}}</ref> The goal was to have a protocol that is bandwidth-efficient, lightweight and uses little battery power, because the devices were connected via satellite link which, at that time, was extremely expensive.<ref>{{Cite web|url=https://www.hivemq.com/blog/how-to-get-started-with-mqtt/|title=Getting Started with MQTT|date=2020-04-24|publisher=HiveMQ}}</ref>


Historically, the "MQ" in "MQTT" came from the [[IBM MQ]] (then 'MQSeries') product line, where it stands for "Message Queue". However, the protocol provides [[Publish–subscribe pattern|publish-and-subscribe messaging]] (no queues, in spite of the name).<ref name=":0">{{Cite web|last=Team|first=The HiveMQ|title=Introducing the MQTT Protocol - MQTT Essentials: Part 1|url=https://www.hivemq.com/blog/mqtt-essentials-part-1-introducing-mqtt/|access-date=2021-09-26|website=www.hivemq.com|language=en}}</ref> In the specification opened by IBM as version 3.1 the protocol was referred to as "MQ Telemetry Transport".<ref>{{cite web|url=https://www.oasis-open.org/committees/document.php?document_id=55095&wg_abbrev=mqtt|title=MQTT v3.1 and MQTT v3.1.1 Differences|publisher=OASIS Message Queuing Telemetry Transport (MQTT) TC|access-date=19 August 2021|date=12 February 2015}}</ref><ref name="mqtt31_spec">{{cite web|url=https://public.dhe.ibm.com/software/dw/webservices/ws-mqtt/mqtt-v3r1.html|title=MQTT V3.1 Protocol Specification|date=2010|access-date=2020-12-15|publisher=Eurotech, International Business Machines Corporation (IBM)}}</ref> Subsequent versions released by OASIS strictly refers to the protocol as just "MQTT", although the technical committee itself is named "OASIS Message Queuing Telemetry Transport Technical Committee".<ref name="tc_charter" /> Since 2013, "MQTT" does not stand for anything.<ref>{{Cite web|title=OASIS MQTT Technical Committee Minutes of for the meeting of Thursday, 25th April 2013 Teleconference|url=https://www.oasis-open.org/committees/download.php/49028/OASIS_MQTT_TC_minutes_25042013.pdf}}</ref><ref name=":0" />
Historically, the "MQ" in "MQTT" came from the [[IBM MQ]] (then 'MQSeries') product line, where it stands for "Message Queue". However, the protocol provides [[Publish–subscribe pattern|publish-and-subscribe messaging]] (no queues, in spite of the name).<ref name=":0">{{Cite web|last=Team|first=The HiveMQ|title=Introducing the MQTT Protocol - MQTT Essentials: Part 1|url=https://www.hivemq.com/blog/mqtt-essentials-part-1-introducing-mqtt/|access-date=2021-09-26|website=www.hivemq.com|language=en}}</ref> In the specification opened by IBM as version 3.1 the protocol was referred to as "MQ Telemetry Transport".<ref>{{cite web|url=https://www.oasis-open.org/committees/document.php?document_id=55095&wg_abbrev=mqtt|title=MQTT v3.1 and MQTT v3.1.1 Differences|publisher=OASIS Message Queuing Telemetry Transport (MQTT) TC|access-date=19 August 2021|date=12 February 2015}}</ref><ref name="mqtt31_spec">{{cite web|url=https://public.dhe.ibm.com/software/dw/webservices/ws-mqtt/mqtt-v3r1.html|title=MQTT V3.1 Protocol Specification|date=2010|access-date=2020-12-15|publisher=Eurotech, International Business Machines Corporation (IBM)}}</ref> Subsequent versions released by OASIS strictly refer to the protocol as just "MQTT", although the technical committee itself is named "OASIS Message Queuing Telemetry Transport Technical Committee".<ref name="tc_charter" /> Since 2013, "MQTT" does not stand for anything.<ref>{{Cite web|title=OASIS MQTT Technical Committee Minutes of for the meeting of Thursday, 25th April 2013 Teleconference|url=https://www.oasis-open.org/committees/download.php/49028/OASIS_MQTT_TC_minutes_25042013.pdf}}</ref><ref name=":0" />


In 2013, IBM submitted MQTT v3.1 to the [[OASIS (organization)|OASIS]] specification body with a charter that ensured only minor changes to the specification could be accepted.<ref name="tc_charter" /> After taking over maintenance of the standard from IBM, OASIS released version 3.1.1 on October 29, 2014.<ref name="mqtt311_spec">{{cite web|date=2014-10-29|title=MQTT Version 3.1.1|url=http://docs.oasis-open.org/mqtt/mqtt/v3.1.1/os/mqtt-v3.1.1-os.html|access-date=2020-12-16}}</ref><ref>{{cite web|date=2014-10-30|title=6 facts why it's worth upgrading to the brand new MQTT 3.1.1 version|url=https://www.hivemq.com/blog/6-facts-why-its-worth-upgrading-to-mqtt-3-1-1/|access-date=2020-12-16}}</ref> A more substantial upgrade to MQTT version 5, adding several new features,<ref>{{cite web|title=Differences between 3.1.1 and 5.0|website=[[GitHub]] |url=https://github.com/mqtt/mqtt.org/wiki/Differences-between-3.1.1-and-5.0}}</ref> was released on March 7, 2019.<ref name="mqtt5_spec" />
In 2013, IBM submitted MQTT v3.1 to the [[OASIS (organization)|OASIS]] specification body with a charter that ensured only minor changes to the specification could be accepted.<ref name="tc_charter" /> After taking over maintenance of the standard from IBM, OASIS released version 3.1.1 on October 29, 2014.<ref name="mqtt311_spec">{{cite web|date=2014-10-29|title=MQTT Version 3.1.1|url=http://docs.oasis-open.org/mqtt/mqtt/v3.1.1/os/mqtt-v3.1.1-os.html|access-date=2020-12-16}}</ref><ref>{{cite web|date=2014-10-30|title=6 facts why it's worth upgrading to the brand new MQTT 3.1.1 version|url=https://www.hivemq.com/blog/6-facts-why-its-worth-upgrading-to-mqtt-3-1-1/|access-date=2020-12-16}}</ref> A more substantial upgrade to MQTT version 5, adding several new features,<ref>{{cite web|title=Differences between 3.1.1 and 5.0|website=[[GitHub]] |url=https://github.com/mqtt/mqtt.org/wiki/Differences-between-3.1.1-and-5.0}}</ref> was released on March 7, 2019.<ref name="mqtt5_spec" />
Line 33: Line 34:


==Overview==
==Overview==
The MQTT protocol defines two types of network entities: a [[message broker]] and a number of clients. An MQTT broker is a server that receives all messages from the clients and then routes the messages to the appropriate destination clients.<ref name="message broker- client">{{cite web |last1=Yuan |first1=Michael |title=Getting to know MQTT |url=https://developer.ibm.com/articles/iot-mqtt-why-good-for-iot/ |website=IBM Developer |access-date=13 October 2019}}</ref> An MQTT client is any device (from a micro controller up to a fully-fledged server) that runs an MQTT library and connects to an MQTT broker over a network.<ref name="MQTT client - broker">{{cite web |title=Client, Broker / Server and Connection Establishment - MQTT Essentials: Part 3 |url=https://www.hivemq.com/blog/mqtt-essentials-part-3-client-broker-connection-establishment/ |website=hivemq.com |access-date=13 October 2019}}</ref>
The MQTT protocol defines two types of network entities: a [[message broker]] and a number of clients. An MQTT broker is a server that receives all messages from the clients and then routes the messages to the appropriate destination clients.<ref name="message broker- client">{{cite web |last1=Yuan |first1=Michael |title=Getting to know MQTT |url=https://developer.ibm.com/articles/iot-mqtt-why-good-for-iot/ |website=IBM Developer |access-date=13 October 2019}}</ref> An MQTT client is any device (from a micro controller up to a fully-fledged server) that runs an MQTT library and connects to an MQTT broker over a network.<ref name="MQTT client - broker">{{cite web |title=Client, Broker / Server and Connection Establishment - MQTT Essentials: Part 3 |url=https://www.hivemq.com/blog/mqtt-essentials-part-3-client-broker-connection-establishment/ |website=hivemq.com |date=17 July 2019 |access-date=13 October 2019}}</ref>


Information is organized in a hierarchy of topics. When a publisher has a new item of data to distribute, it sends a control message with the data to the connected broker. The broker then distributes the information to any clients that have subscribed to that topic. The publisher does not need to have any data on the number or locations of subscribers, and subscribers, in turn, do not have to be configured with any data about the publishers.
Information is organized in a hierarchy of topics. When a publisher has a new item of data to distribute, it sends a control message with the data to the connected broker. The broker then distributes the information to any clients that have subscribed to that topic. The publisher does not need to have any data on the number or locations of subscribers, and subscribers, in turn, do not have to be configured with any data about the publishers.


If a broker receives a message on a topic for which there are no current subscribers, the broker discards the message unless the publisher of the message designated the message as a retained message. A retained message is a normal MQTT message with the retained flag set to true. The broker stores the last retained message and the corresponding [[quality of service]] (QoS) for the selected topic. Each client that subscribes to a topic pattern that matches the topic of the retained message receives the retained message immediately after they subscribe. The broker stores only one retained message per topic.<ref name="MQTT retained messages">{{cite web |title=Retained Messages - MQTT Essentials: Part 8 |url=https://www.hivemq.com/blog/mqtt-essentials-part-8-retained-messages/ |website=hivemq.com |access-date=13 October 2019}}</ref> This allows new subscribers to a topic to receive the most current value rather than waiting for the next update from a publisher.
If a broker receives a message on a topic for which there are no current subscribers, the broker discards the message unless the publisher of the message designated the message as a retained message. A retained message is a normal MQTT message with the retained flag set to true. The broker stores the last retained message and the corresponding [[quality of service]] (QoS) for the selected topic. Each client that subscribes to a topic pattern that matches the topic of the retained message receives the retained message immediately after they subscribe. The broker stores only one retained message per topic.<ref name="MQTT retained messages">{{cite web |title=Retained Messages - MQTT Essentials: Part 8 |url=https://www.hivemq.com/blog/mqtt-essentials-part-8-retained-messages/ |website=hivemq.com |date=2 March 2015 |access-date=13 October 2019}}</ref> This allows new subscribers to a topic to receive the most current value rather than waiting for the next update from a publisher.


When a publishing client first connects to the broker, it can set up a default message to be sent to subscribers if the broker detects that the publishing client has unexpectedly disconnected from the broker.
When a publishing client first connects to the broker, it can set up a default message to be sent to subscribers if the broker detects that the publishing client has unexpectedly disconnected from the broker.
Line 62: Line 63:
In case of failure, the broker software and clients can automatically hand over to a redundant/automatic backup broker. Backup brokers can also be set up to share the load of clients across multiple servers on site, in the cloud, or a combination of these.
In case of failure, the broker software and clients can automatically hand over to a redundant/automatic backup broker. Backup brokers can also be set up to share the load of clients across multiple servers on site, in the cloud, or a combination of these.


The broker can support both standard MQTT and MQTT for compliant specifications such as Sparkplug.<ref>{{cite web|url=https://www.cirrus-link.com/mqtt-sparkplug-tahu/|title=MQTT Sparkplug/Tahu|website=www.cirrus-link.com|access-date=November 5, 2019}}</ref> This can be done with same server, at the same time and with the same levels of security.
The broker can support both standard MQTT and MQTT for compliant specifications such as Sparkplug.<ref>{{cite web|url=https://www.cirrus-link.com/mqtt-sparkplug-tahu/|title=MQTT Sparkplug/Tahu|website=www.cirrus-link.com|access-date=November 5, 2019}}</ref> This can be done with the same server, at the same time and with the same levels of security.


The broker keeps track of all the session's information as the device goes on and off, in a function called "persistent sessions". In this state, a broker will store both connection info for each client, topics each client has subscribed to, and any messages for a topic with a QoS of 1 or 2.<ref>{{cite book |last1=Cope |first1=Stephen |title=MQTT For Complete Beginners |date=2020 |isbn=9798779030762 |page=17}}</ref>
The broker keeps track of all the session's information as the device goes on and off, in a function called "persistent sessions". In this state, a broker will store both connection info for each client, topics each client has subscribed to, and any messages for a topic with a QoS of 1 or 2.<ref>{{cite book |last1=Cope |first1=Stephen |title=MQTT For Complete Beginners |date=2020 |isbn=9798779030762 |page=17}}</ref>


The main advantages of MQTT broker are:
The main advantages of an MQTT broker are:

# Eliminates vulnerable and insecure client connections, if configured to
# Elimination of vulnerable and insecure client connections (when appropriately configured).
# Can easily scale from a single device to thousands
# Ability to easily scale from a single device to thousands.
# Manages and tracks all client connection states, including security credentials and certificates, if configured to
# Management and tracking of client connection states, including security credentials and certificates (when appropriately configured).
# Reduced network strain without compromising the security, if configured to (cellular or satellite network)
# Reduction of strain on cellular or satellite networks without compromising security (when appropriately configured).


==Message types==
==Message types==
Line 87: Line 89:


* Reason codes: Acknowledgements now support return codes, which provide a reason for a failure.
* Reason codes: Acknowledgements now support return codes, which provide a reason for a failure.
* Shared subscriptions: Allow the load to be balanced across clients and thus reduce the risk of load problems
* Shared subscriptions: Allow the load to be balanced across clients, thus reducing the risk of load problems.
* Message expiry: Messages can include an expiry date and are deleted if they are not delivered within this time period.
* Message expiry: Messages can include an expiry date and are deleted if they are not delivered within this time period.
* Topic alias: The name of a topic can be replaced with a single number
* Topic alias: The name of a topic can be replaced with a single number.

MQTT 5.0 also supports MQTT connections over the [[QUIC]] transport protocol. MQTT over QUIC offers improved performance by reducing the number of exchanges during the connection process, reducing overall latency, and offering better handling of network congestion and switching.<ref>{{Cite web|title=QUIC Protocol: the Features, Use Cases and Impact for IoT/IoV|url=https://www.emqx.com/en/blog/quic-protocol-the-features-use-cases-and-impact-for-iot-iov|access-date=2023-06-13|website=www.emqx.com|language=en}}</ref>


== Quality of service ==
== Quality of service ==
Line 104: Line 104:


Security of the MQTT protocol was compromised<ref name="slowite">Vaccari, I., Aiello, M., & Cambiaso, E. (2020). SlowITe, a novel denial of service attack affecting MQTT. Sensors, 20(10), 2932.</ref> in 2020 by Italian researchers, executing [[Slow DoS Attack|Slow DoS Attacks]] on such protocol (see [https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-13849 CVE-2020-13849]).
Security of the MQTT protocol was compromised<ref name="slowite">Vaccari, I., Aiello, M., & Cambiaso, E. (2020). SlowITe, a novel denial of service attack affecting MQTT. Sensors, 20(10), 2932.</ref> in 2020 by Italian researchers, executing [[Slow DoS Attack|Slow DoS Attacks]] on such protocol (see [https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-13849 CVE-2020-13849]).

==Clustering==

MQTT clustering is a technique employed to ensure high availability, fault tolerance, and scalability in MQTT deployments.<ref>{{Cite web |title=High availability MQTT Cluster - Bevywise Networks |url=https://www.bevywise.com/blog/high-availability-mqtt-cluster/ |access-date=2023-12-22 |website=www.bevywise.com |language=en}}</ref> As an efficient and lightweight messaging protocol, MQTT clustering allows for the creation of a resilient network of interconnected broker nodes, ensuring continuous and reliable message delivery even in the face of hardware failures or network disruptions.


== See also ==
== See also ==

Latest revision as of 03:23, 16 November 2024

MQTT
MQTT logo
StatusPublished
Year started1999
Latest version5.0[1]
7 March 2019
Organization
CommitteeOASIS Message Queuing Telemetry Transport Technical Committee[4]
EditorsAndrew Banks (IBM), Ed Briggs (Microsoft), Ken Borgendale (IBM), Rahul Gupta (IBM)[1]
Related standardsMQTT-SN[5]
Websitemqtt.org

MQTT (originally an initialism of MQ Telemetry Transport[a]) is a lightweight, publish-subscribe, machine to machine network protocol for message queue/message queuing service. It is designed for connections with remote locations that have devices with resource constraints or limited network bandwidth, such as in the Internet of Things (IoT). It must run over a transport protocol that provides ordered, lossless, bi-directional connections—typically, TCP/IP.[1] It is an open OASIS standard and an ISO recommendation (ISO/IEC 20922).

History

[edit]

Andy Stanford-Clark (IBM) and Arlen Nipper (then working for Eurotech, Inc.) authored the first version of the protocol in 1999.[6] It was used to monitor oil pipelines within the SCADA industrial control system.[7] The goal was to have a protocol that is bandwidth-efficient, lightweight and uses little battery power, because the devices were connected via satellite link which, at that time, was extremely expensive.[8]

Historically, the "MQ" in "MQTT" came from the IBM MQ (then 'MQSeries') product line, where it stands for "Message Queue". However, the protocol provides publish-and-subscribe messaging (no queues, in spite of the name).[9] In the specification opened by IBM as version 3.1 the protocol was referred to as "MQ Telemetry Transport".[10][11] Subsequent versions released by OASIS strictly refer to the protocol as just "MQTT", although the technical committee itself is named "OASIS Message Queuing Telemetry Transport Technical Committee".[4] Since 2013, "MQTT" does not stand for anything.[12][9]

In 2013, IBM submitted MQTT v3.1 to the OASIS specification body with a charter that ensured only minor changes to the specification could be accepted.[4] After taking over maintenance of the standard from IBM, OASIS released version 3.1.1 on October 29, 2014.[13][14] A more substantial upgrade to MQTT version 5, adding several new features,[15] was released on March 7, 2019.[1]

MQTT-SN (MQTT for Sensor Networks) is a variation of the main protocol aimed at battery-powered embedded devices on non-TCP/IP networks,[16] such as Zigbee.[17]

Overview

[edit]

The MQTT protocol defines two types of network entities: a message broker and a number of clients. An MQTT broker is a server that receives all messages from the clients and then routes the messages to the appropriate destination clients.[18] An MQTT client is any device (from a micro controller up to a fully-fledged server) that runs an MQTT library and connects to an MQTT broker over a network.[19]

Information is organized in a hierarchy of topics. When a publisher has a new item of data to distribute, it sends a control message with the data to the connected broker. The broker then distributes the information to any clients that have subscribed to that topic. The publisher does not need to have any data on the number or locations of subscribers, and subscribers, in turn, do not have to be configured with any data about the publishers.

If a broker receives a message on a topic for which there are no current subscribers, the broker discards the message unless the publisher of the message designated the message as a retained message. A retained message is a normal MQTT message with the retained flag set to true. The broker stores the last retained message and the corresponding quality of service (QoS) for the selected topic. Each client that subscribes to a topic pattern that matches the topic of the retained message receives the retained message immediately after they subscribe. The broker stores only one retained message per topic.[20] This allows new subscribers to a topic to receive the most current value rather than waiting for the next update from a publisher.

When a publishing client first connects to the broker, it can set up a default message to be sent to subscribers if the broker detects that the publishing client has unexpectedly disconnected from the broker.

Clients only interact with a broker, but a system may contain several broker servers that exchange data based on their current subscribers' topics.

A minimal MQTT control message can be as little as two bytes of data. A control message can carry nearly 256 megabytes of data if needed. There are fourteen defined message types used to connect and disconnect a client from a broker, to publish data, to acknowledge receipt of data, and to supervise the connection between client and server.

MQTT relies on the TCP protocol for data transmission. A variant, MQTT-SN, is used over other transports such as UDP or Bluetooth.

MQTT sends connection credentials in plain text format and does not include any measures for security or authentication. This can be provided by using TLS to encrypt and protect the transferred information against interception, modification or forgery.

The default unencrypted MQTT port is 1883. The encrypted port is 8883.[21]

MQTT broker

[edit]

The MQTT broker is a piece of software running on a computer (running on-premises or in the cloud), and could be self-built or hosted by a third party. It is available in both open source and proprietary implementations.

The broker acts as a post office. MQTT clients don't use a direct connection address of the intended recipient, but use the subject line called "Topic". Anyone who subscribes receives a copy of all messages for that topic. Multiple clients can subscribe to a topic from a single broker (one to many capability), and a single client can register subscriptions to topics with multiple brokers (many to one).

Each client can both produce and receive data by both publishing and subscribing, i.e. the devices can publish sensor data and still be able to receive the configuration information or control commands (MQTT is a bi-directional communication protocol). This helps in both sharing data, managing and controlling devices. A client cannot broadcast the same data to a range of topics, and must publish multiple messages to the broker, each with a single topic given.

With the MQTT broker architecture, the client devices and server application become decoupled. In this way, the clients are kept unaware of each other's information. MQTT, if configured to, can use TLS encryption with certificate, username and password protected connections. Optionally, the connection may require certification, in the form of a certificate file that a client provides and must match with the server's copy.

In case of failure, the broker software and clients can automatically hand over to a redundant/automatic backup broker. Backup brokers can also be set up to share the load of clients across multiple servers on site, in the cloud, or a combination of these.

The broker can support both standard MQTT and MQTT for compliant specifications such as Sparkplug.[22] This can be done with the same server, at the same time and with the same levels of security.

The broker keeps track of all the session's information as the device goes on and off, in a function called "persistent sessions". In this state, a broker will store both connection info for each client, topics each client has subscribed to, and any messages for a topic with a QoS of 1 or 2.[23]

The main advantages of an MQTT broker are:

  1. Elimination of vulnerable and insecure client connections (when appropriately configured).
  2. Ability to easily scale from a single device to thousands.
  3. Management and tracking of client connection states, including security credentials and certificates (when appropriately configured).
  4. Reduction of strain on cellular or satellite networks without compromising security (when appropriately configured).

Message types

[edit]

Connect

[edit]
Example of an MQTT connection (QoS 0) with connect, publish/subscribe, and disconnect. The first message from client B is stored due to the retain flag.

Waits for a connection to be established with the server and creates a link between the nodes.

Disconnect

[edit]

Waits for the MQTT client to finish any work it must do, and for the TCP/IP session to disconnect.

Publish

[edit]

Returns immediately to the application thread after passing the request to the MQTT client.

Version 5.0

[edit]

In 2019, OASIS released the official MQTT 5.0 standard.[1] Version 5.0 includes the following major new features:[24]

  • Reason codes: Acknowledgements now support return codes, which provide a reason for a failure.
  • Shared subscriptions: Allow the load to be balanced across clients, thus reducing the risk of load problems.
  • Message expiry: Messages can include an expiry date and are deleted if they are not delivered within this time period.
  • Topic alias: The name of a topic can be replaced with a single number.

Quality of service

[edit]

Each connection to the broker can specify a QoS measure.[25] These are classified in increasing order of overhead:

  • At most once – the message is sent only once and the client and broker take no additional steps to acknowledge delivery (fire and forget).
  • At least once – the message is re-tried by the sender multiple times until acknowledgement is received (acknowledged delivery).
  • Exactly once – the sender and receiver engage in a two-level handshake to ensure only one copy of the message is received (assured delivery).

This field does not affect handling of the underlying TCP data transmissions; it is only used between MQTT senders and receivers.

Security

[edit]

Security of the MQTT protocol was compromised[26] in 2020 by Italian researchers, executing Slow DoS Attacks on such protocol (see CVE-2020-13849).

Clustering

[edit]

MQTT clustering is a technique employed to ensure high availability, fault tolerance, and scalability in MQTT deployments.[27] As an efficient and lightweight messaging protocol, MQTT clustering allows for the creation of a resilient network of interconnected broker nodes, ensuring continuous and reliable message delivery even in the face of hardware failures or network disruptions.

See also

[edit]

Notes

[edit]
  1. ^ MQ stands for "message queues", as derived from the IBM MQ product name.

References

[edit]
  1. ^ a b c d e "MQTT Version 5.0". OASIS. 2019-03-07. Retrieved 2020-12-15.
  2. ^ Cite error: The named reference iec-standard was invoked but never defined (see the help page).
  3. ^ "ISO/IEC 20922:2016 Information technology — Message Queuing Telemetry Transport (MQTT) v3.1.1". Retrieved 2024-10-27.
  4. ^ a b c "OASIS Message Queuing Telemetry Transport (MQTT) Technical Committee Charter". OASIS. Retrieved 2020-12-15.
  5. ^ "MQTT SN Subcommittee". OASIS. Retrieved 2020-12-15.
  6. ^ "10th birthday party". MQTT.org. July 2009. Archived from the original on March 15, 2015. Retrieved April 25, 2015.
  7. ^ "Transcript of IBM podcast" (PDF). IBM.com. November 2011. Retrieved January 7, 2021.
  8. ^ "Getting Started with MQTT". HiveMQ. 2020-04-24.
  9. ^ a b Team, The HiveMQ. "Introducing the MQTT Protocol - MQTT Essentials: Part 1". www.hivemq.com. Retrieved 2021-09-26.
  10. ^ "MQTT v3.1 and MQTT v3.1.1 Differences". OASIS Message Queuing Telemetry Transport (MQTT) TC. 12 February 2015. Retrieved 19 August 2021.
  11. ^ "MQTT V3.1 Protocol Specification". Eurotech, International Business Machines Corporation (IBM). 2010. Retrieved 2020-12-15.
  12. ^ "OASIS MQTT Technical Committee Minutes of for the meeting of Thursday, 25th April 2013 Teleconference" (PDF).
  13. ^ "MQTT Version 3.1.1". 2014-10-29. Retrieved 2020-12-16.
  14. ^ "6 facts why it's worth upgrading to the brand new MQTT 3.1.1 version". 2014-10-30. Retrieved 2020-12-16.
  15. ^ "Differences between 3.1.1 and 5.0". GitHub.
  16. ^ Stanford-Clark, Andy; Hong Linh Truong (November 14, 2013). "MQTT For Sensor Networks (MQTT-SN) Protocol Specification Version 1.2" (PDF). oasis-open.org. OASIS Message Queuing Telemetry Transport (MQTT) Technical Committee. p. 28. Retrieved 2020-12-15.
  17. ^ "Introduction to MQTT-SN (MQTT for Sensor Networks)". 25 January 2017. Retrieved 2020-09-16.
  18. ^ Yuan, Michael. "Getting to know MQTT". IBM Developer. Retrieved 13 October 2019.
  19. ^ "Client, Broker / Server and Connection Establishment - MQTT Essentials: Part 3". hivemq.com. 17 July 2019. Retrieved 13 October 2019.
  20. ^ "Retained Messages - MQTT Essentials: Part 8". hivemq.com. 2 March 2015. Retrieved 13 October 2019.
  21. ^ "FAQ - Frequently Asked Questions | MQTT". Retrieved 2020-03-19.
  22. ^ "MQTT Sparkplug/Tahu". www.cirrus-link.com. Retrieved November 5, 2019.
  23. ^ Cope, Stephen (2020). MQTT For Complete Beginners. p. 17. ISBN 9798779030762.
  24. ^ "What is MQTT? Definition and Details". www.paessler.com. Retrieved 2020-06-09.
  25. ^ "IBM Knowledge Center - IBM MQ - Using MQTT with IBM Integration Bus - Quality of service and connection management". www.ibm.com. Retrieved 2018-01-30.
  26. ^ Vaccari, I., Aiello, M., & Cambiaso, E. (2020). SlowITe, a novel denial of service attack affecting MQTT. Sensors, 20(10), 2932.
  27. ^ "High availability MQTT Cluster - Bevywise Networks". www.bevywise.com. Retrieved 2023-12-22.
  28. ^ "APIs & Protocols". Solace. Retrieved 2021-04-08.
  29. ^ "MQTT 5.0 Support 🎉". Solace Community. 4 January 2021. Retrieved 2021-04-08.
[edit]