Analisis Komparatif Keamanan dan Kinerja Protokol Komunikasi pada Web of Things: Tinjauan Sistematis terhadap HTTP, CoAP, dan MQTT
DOI:
https://doi.org/10.55606/jurritek.v5i1.7684Keywords:
Communication Protocols, IoT Security, MQTT, PRISMA, Web of ThingsAbstract
The integration of the Internet of Things (IoT) into the Web of Things (WoT) offers cross-platform interoperability but presents significant security challenges for constrained devices. This study aims to evaluate the effectiveness and efficiency of security mechanisms in three major WoT protocols: HTTP, CoAP, and MQTT. The research methodology employs a Systematic Literature Review (SLR) following PRISMA guidelines, reviewing 22 selected articles published between 2020 and 2025. The analysis utilizes PICOC criteria to compare communication overhead, computational consumption, and security mechanisms such as DTLS, OSCORE, and TLS integration. The results indicate that CoAP, combined with OSCORE and EDHOC mechanisms, provides the optimal balance between energy efficiency and end-to-end security for resource-constrained devices. MQTT demonstrates superiority in throughput and data transmission speed but requires additional security layers to ensure data confidentiality. Meanwhile, HTTP dominates in terms of Web service integration and access control, despite having the highest overhead burden. In conclusion, no single protocol is superior for all scenarios; the choice of protocol in WoT architecture must be based on the trade-offs between latency, resource efficiency, and system security requirements
Downloads
References
Albarrak, K. M. (2024). Securing the future of web-enabled IoT: A critical analysis of Web of Things security. Applied Sciences (Switzerland), 14(23). https://doi.org/10.3390/app142310867
Alharbi, S., Awad, W., & Bell, D. (2025). HECS4MQTT: A multi-layer security framework for lightweight and robust encryption in healthcare IoT communications. Future Internet, 17(7). https://doi.org/10.3390/fi17070298
Chien, H. Y., & Ciou, P. P. (2023). Design and implementation of efficient IoT authentication schemes for MQTT 5.0. Journal of Internet Technology, 24(3), 665-674. https://doi.org/10.53106/160792642023052403012
Chien, H.-Y., & Wang, N.-Z. (2022). A novel MQTT 5.0-based over-the-air updating architecture facilitating stronger security. Electronics (Switzerland), 11(23). https://doi.org/10.3390/electronics11233899
Gong, X., & Feng, T. (2022). Lightweight anonymous authentication and key agreement protocol based on CoAP of Internet of Things. Sensors, 22(19). https://doi.org/10.3390/s22197191
Gong, X., Kou, T., & Li, Y. (2024). Enhancing MQTT-SN security with a lightweight PUF-based authentication and encrypted channel establishment scheme. Symmetry, 16(10). https://doi.org/10.3390/sym16101282
Hintaw, A. J., Manickam, S., Karuppayah, S., Aladaileh, M. A., Aboalmaaly, M. F., & Laghari, S. U. A. (2023). A robust security scheme based on enhanced symmetric algorithm for MQTT in the Internet of Things. IEEE Access, 11(March 2023), 43019-43040. https://doi.org/10.1109/ACCESS.2023.3267718
Höglund, R., Tiloca, M., Selander, G., Preuß Mattsson, J. P., Vučinić, M., & Watteyne, T. (2024). Secure communication for the IoT: EDHOC and (Group) OSCORE protocols. IEEE Access, 12, 49865-49877. https://doi.org/10.1109/ACCESS.2024.3384095
Hristozov, S., Huber, M., Xu, L., Fietz, J., Liess, M., & Sigl, G. (2021). The cost of OSCORE and EDHOC for constrained devices. 245-250. https://doi.org/10.1145/3422337.3447834
Hsu, T.-C. (2024). Designing a secure and scalable service agent for IoT transmission through blockchain and MQTT fusion. Applied Sciences (Switzerland), 14(7). https://doi.org/10.3390/app14072975
Insan, I. M., & Samopa, F. (2024). Implementation of HTTP security protocol for Internet of Things based on digital envelope. Procedia Computer Science, 234(2023), 1332-1339. https://doi.org/10.1016/j.procs.2024.03.131
Kaganurmath, S., & Cholli, N. (2025). Enabling robust security in MQTT-based IoT networks with dynamic resource-aware key sharing. Procedia Computer Science, 252, 633-642. https://doi.org/10.1016/j.procs.2025.01.023
Kaganurmath, S., Cholli, N. G., & Anala, M. R. (2025). DLKS-MQTT: A lightweight key sharing protocol for secure IoT communications. Engineering, Technology and Applied Science Research, 15(2), 21532-21538. https://doi.org/10.48084/etasr.10216
Khoury, D., Haddad, S., Sondi, P., Balian, P., Harb, H., Danash, K., Merhej, J., & Sayah, J. (2025). CoAP/DTLS protocols in IoT based on blockchain light certificate. Internet of Things, 6(1). https://doi.org/10.3390/iot6010004
Kurdi, H., & Thayananthan, V. (2022). A multi-tier MQTT architecture with multiple brokers based on fog computing for securing industrial IoT. Applied Sciences (Switzerland), 12(14). https://doi.org/10.3390/app12147173
Narasimha Swamy, S., Anna, D. M., Vijayalakshmi, M. N., & Kota, S. R. (2024). Enabling lightweight device authentication in Message Queuing Telemetry Transport protocol. IEEE Internet of Things Journal, 11(9), 15792-15807. https://doi.org/10.1109/JIOT.2024.3349394
Nguyen, L. T. T., Ha, S. X., Le, T. H., Luong, H. H., Vo, K. H., Nguyen, K. H. T., Nguyen, A. T., Dao, T. A., & Nguyen, H. V. K. (2022). BMDD: A novel approach for IoT platform (broker-less and microservice architecture, decentralized identity, and dynamic transmission messages). PeerJ Computer Science, 8. https://doi.org/10.7717/peerj-cs.950
Oliver, S. G., & Purusothaman, T. (2022). Lightweight and secure mutual authentication scheme for IoT devices using CoAP protocol. Computer Systems Science and Engineering, 41(2), 767-780. https://doi.org/10.32604/csse.2022.020888
Sahmi, I., Abdellaoui, A., Tomader, T., & Hmina, N. (2021). MQTT-PRESENT: Approach to secure Internet of Things applications using MQTT protocol. International Journal of Electrical and Computer Engineering, 11(5), 4577-4586. https://doi.org/10.11591/ijece.v11i5.pp4577-4586
Seoane, V., Garcia-Rubio, C., Almenares-Mendoza, F., & Campo, C. (2021). Performance evaluation of CoAP and MQTT with security support for IoT environments. Computer Networks, 197. https://doi.org/10.1016/j.comnet.2021.108338
Silva, D., Carvalho, L. I., Soares, J., & Sofia, R. C. (2021). A performance analysis of Internet of Things networking. Applied Sciences, 11(4879), 1-30. https://doi.org/10.3390/app11114879
Subhashini, R., & Jyothi, D. G. (2024). Broken-stick regressive lightweight speck cryptographic constrained application protocol for data security in IoT aware smart home. International Journal of Computer Networks and Applications, 11(3), 335-350. https://doi.org/10.22247/ijcna/2024/21
Thanh, L. N. T., Phien, N. N., Nguyen, T. A., Vo, H. K., Luong, H. H., Anh, T. D., Tuan, K. N. H., & Son, H. X. (2021). UIP2SOP: A unique IoT network applying single sign-on and message queue protocol. International Journal of Advanced Computer Science and Applications, 12(6), 19-30. https://doi.org/10.14569/IJACSA.2021.0120603
Tian, S., & Vassilakis, V. G. (2023). On the efficiency of a lightweight authentication and privacy preservation scheme for MQTT. Electronics (Switzerland), 12(14). https://doi.org/10.3390/electronics12143085
Tsai, W. C., Tsai, T. H., Wang, T. J., & Chiang, M. L. (2022). Automatic key update mechanism for lightweight M2M communication and enhancement of IoT security: A case study of CoAP using Libcoap library. Sensors, 22(1). https://doi.org/10.3390/s22010340
Wytrębowicz, J., Cabaj, K., & Krawiec, J. (2021). Messaging protocols for IoT systems-A pragmatic comparison. Sensors, 21(20). https://doi.org/10.3390/s21206904
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2026 JURAL RISET RUMPUN ILMU TEKNIK
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
_001.jpg)
