Quantum Safe MQTT Data Pipes

We have been working on this for 15 months. We now have a Quantum Safe MQTT Data Pipe written in C++ and running in Mosquitto MQTT Broker.

IoT security can be enhanced by adding a second symmetric encryption layer within the TLS layer, decrypting the second later directly into the application. This approach is ideal for high-value, high-risk assets and critical infrastructure, improving the security of MQTT data pipes.

This is how our Quantum Safe MQTT Double Wrap method works:

• To counter vulnerabilities and future quantum threats, Quantropi and Blue Mesh Solutions propose double-wrapping the MQTT message and variable header.

• The first layer is standard TLS.

• The second layer employs Blue Mesh’s Quantum Safe Library (TLS + QEEP (C++)) with Quantropi’s QEEP cryptography, using Quantum Random Number Generator (QRNG) sources for key material to ensure high unpredictability. Both AES and QEEP are symmetric encryption methods, utilizing the same key for encryption and decryption.