MQTT, SSL, and Tunnel

Can you tunnel MQTT inside HTTP(S) without it being TLS or SSL ?

Thanks
Anthony LuciaAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
btanConnect With a Mentor Exec ConsultantCommented:
MQTT is a many-to-many communication protocol for passing messages between multiple clients through a central broker. It decouples producer and consumer by letting clients publish and having the broker decide where to route and copy messages. MQTT brokers may require username and password authentication from clients to connect. To ensure privacy, the TCP connection may be encrypted with SSL/TLS. In other words, it is still SSL/TLS for HTTPS connection.

Below is an instance of tunnelling MQTT through HTML5 websockets using node.js Streams.
https://github.com/mcollina/mows

So extending the WebSocket, I uderstand such connection starts its life with an HTTP or HTTPS handshake. When the page is accessed through HTTP, you can use WS or WSS (WebSocket secure: WS over TLS) . However, when your page is loaded through HTTPS, you can only use WSS - browsers don't allow to "downgrade" security.
http://en.wikipedia.org/wiki/WebSocket#Proxy_traversal

I believe https will still need tls - in fact https is mostly tls/ssl
0
 
Anthony LuciaAuthor Commented:
Excellent Answer.  Thanks
0
All Courses

From novice to tech pro — start learning today.