Note:This MQTT client library does not support secured connections to the publictest.mosquitto.orgbroker by default because the server uses the SHA1 hashing algorithm. As cautioned by Mbed TLS, SHA-1 is considered a weak message digest and is therefore not enabled in Mbed TLS by default. The...
The client can then utilize this proof to verify the server's possession of the correct password, enabling mutual authentication. This additional step reduces the vulnerability to man-in-the-middle attacks. However, using hash algorithms like SHA256 in SCRAM introduces additional computational over...
In this case, it is necessary to subscribe to the topics, with the vulnerability consisting of the possibility of subscribing to unknown topics. As we can see in Figure 7, packets of type Subscribe are used, and the attackers only need to manipulate the topic Id field to subscribe to the...