OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

mqtt message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: [OASIS Issue Tracker] (MQTT-203) MQTT URI Scheme

    [ https://tools.oasis-open.org/issues/browse/MQTT-203?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=36897#comment-36897 ] 

Raphael Cohen commented on MQTT-203:
------------------------------------

I think addressing this with a committee note is the right way to go. At the same time, I'd like to make sure that we do a few other things in the same note:-
- outline the use of DNS SRV records for finding brokers (and perhaps tying this very simply to the URI format)
- suggest the use of DNS LOC records to allow IoT clients to find geographically close brokers (eg taking a GPS fix and then finding the broker in the SRV set closest to them)

A couple of things I'd like to explore at the same time
- explore publishing MQTTS broker certificates in DNS (there's a couple of ways) so clients can do the double-check (ie DNS cert cert matches TLS provided cert - forcing an attacker to then control the entire infrastructure). For instance, opendns do this currently for some of their services.
- explore having a URN

In doing this, we need to be mindful that
- we don't upset security conscious users;
- we don't make things hard in the future if we need multiple topic spaces or routing features
- and likewise for redirect ideas (for which I'd recommend SRV as above, but we need to be careful)


> MQTT URI Scheme
> ---------------
>
>                 Key: MQTT-203
>                 URL: https://tools.oasis-open.org/issues/browse/MQTT-203
>             Project: OASIS Message Queuing Telemetry Transport (MQTT) TC
>          Issue Type: New Feature
>            Reporter: Nick O'Leary
>            Priority: Minor
>
> There have been a number of discussions in the community on how to specify a broker's connection details in a uri.
> The result of the community discussion is captured here - https://github.com/mqtt/mqtt.github.io/wiki/URI-Scheme
> In summary, the following uri format is proposed:
>     mqtt://[username][:password]@host.domain[:port][?clientid=clientid]
> The uri scheme could alternative be 'mqtts' to specify a secure TLS connection should be used.
> Other connection-time options (clean session etc) could also be expressed as query parameters.
> A path portion of the uri could be used to specify a specific topic.
> This JIRA can be addressed by way of Committee Note, rather than as an addition to the spec itsef.



--
This message was sent by Atlassian JIRA
(v6.1.1#6155)

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]