MQTT Security Solution
Fortify MQTT security with TLS/SSL, flexible authentication, fine-grained access control, and enterprise integration. Ensure data privacy with GDPR and SOC 2 compliance.
Overview
Security is critical for any IoT application using the MQTT protocol. EMQX supports various security features, such as TLS/SSL encryption, authentication, and authorization, to ensure that data is transmitted confidentially and with integrity. With EMQX, developers can build secure and reliable MQTT applications that meet the industry's security standards.
EMQX & MQTT Security Architecture
The image showcases MQTT over TLS/SSL and QUIC, Authentication, and Access Control with various external backends.
Capabilities
TLS/SSL Encryption
Secure communication between MQTT clients and EMQX broker via MQTT over TLS/SSL.
Flexible Authentication
Supports authentication using username/password, JWT, PSK, X.509 certificates, and more.
CRL/OCSP Stapling
Monitor the validity of each X.509 certificate and revoke invalid certificates in time.
Fine-grained Authorization
Use a fine-grained ACL system to control who can access your MQTT topics and messages.
Cluster Overload Protection
Supports cluster overload protection against malicious clients through rate limiting.
MQTT Client Blacklisting
Supports banning malicious or flapping MQTT clients by client ID, username, or IP address.
Auditing and Logging
Track and monitor all access to your MQTT topics and messages by detailed auditing and logging. You can use this information to identify security breaches and improve your security posture.
Enterprise Security Integration
Integrate with external security systems such as LDAP and OAuth, HTTP service, SQL and NoSQL databases.