NoMQ (No Message Queue) is a lightweight, secure, and scalable messaging protocol designed for Internet of Things (IoT) applications. Built for resource-constrained devices running MicroPython (e.g., ESP32, ESP8266), NoMQ delivers enterprise-grade security, reliable message delivery, and real-time communication without the overhead of traditional message brokers. Itβs ideal for industrial IoT, smart homes, and sensor networks.
NoMQ: Secure, efficient, and brokerless messaging for IoT, designed for high reliability in industrial environments.
- Introduction
- System Objectives
- Protocol Structure
- Features
- Installation
- Usage
- Testing
- Deployment in Real-World Scenarios
- UML Diagram
- License
- Contact
NoMQ is a modern IoT messaging protocol that combines the simplicity of CoAP with the reliability of MQTT, tailored for resource-constrained environments. It uses AES-256-CBC encryption, HMAC-SHA256 authentication, and a robust Quality of Service (QoS) model (0β2) to ensure secure, reliable, and efficient communication. NoMQ operates without a central broker, leveraging UDP for low-latency, peer-to-peer messaging, making it perfect for industrial automation, smart homes, and distributed sensor networks.
- Lightweight: Optimized for devices with limited memory and CPU (e.g., <256 KB RAM).
- Secure: End-to-end encryption and authentication protect against eavesdropping and tampering.
- Brokerless: Eliminates the need for heavy message brokers, reducing latency and infrastructure costs.
- Reliable: QoS levels ensure message delivery, even in unstable networks.
- Scalable: Supports multiple devices, channels, and prioritized messaging.
NoMQ is designed to meet the following goals:
- Security: Ensure data confidentiality, integrity, and authenticity using advanced cryptography.
- Reliability: Provide configurable QoS (0: fire-and-forget, 1: acknowledged, 2: assured delivery).
- Efficiency: Minimize resource usage for MicroPython devices.
- Scalability: Enable communication across multiple devices and channels.
- Robustness: Handle network failures, packet loss, and hardware constraints gracefully.
NoMQ uses a compact, secure packet structure to balance efficiency and security. Each packet consists of four layers: Control Header, Security Header, Data Header, and Verification.
| Layer | Field | Size (Bytes) | Description |
|---|---|---|---|
| Control | Magic Number | 2 | Fixed value (0x4E4D, "NM") for identification |
| Version | 1 | Protocol version (0x01) |
|
| Packet Type | 1 | Type (e.g., Publish: 0x01, Subscribe: 0x02) |
|
| Flags | 1 | QoS (0β2), Retain, Priority (0β15) | |
| Packet ID | 4 | Unique packet identifier | |
| Session ID | 4 | Session identifier for persistence | |
| TTL | 2 | Time-to-live for message expiration | |
| Security | IV | 16 | Initialization Vector for AES-256-CBC |
| Timestamp | 4 | Unix timestamp for replay protection | |
| Data | Channel ID | 16 | SHA256 hash of channel name (truncated) |
| Payload Length | 2 | Length of encrypted payload | |
| Payload | Variable | Encrypted data (AES-256-CBC) | |
| Verification | HMAC | 32 | HMAC-SHA256 for integrity and authenticity |
0x01: Publish (send message to a channel)0x02: Subscribe (join a channel)0x03: Ack (acknowledge receipt)0x04: Unsubscribe (leave a channel)0x05: Heartbeat (maintain session)0x06β0x08: QoS 2 handshake (PUBREC, PUBREL, PUBCOMP)
- Bits 0β1: QoS (0: At most once, 1: At least once, 2: Exactly once)
- Bit 2: Retain (store message for new subscribers)
- Bits 4β7: Priority (0β15, higher = higher priority)
- π Enterprise-Grade Security:
- AES-256-CBC encryption for confidentiality.
- HMAC-SHA256 for integrity and authentication.
- Replay attack protection using nonces and timestamps.
- π¬ Reliable Messaging:
- QoS levels (0β2) for flexible delivery guarantees.
- Automatic retries with exponential backoff.
- Retained messages for new subscribers.
- β‘ Lightweight Design:
- Optimized for MicroPython on ESP32/ESP8266.
- Memory-efficient with configurable limits (e.g., max 50 pending messages).
- π Scalable Communication:
- Supports multiple channels (up to 20) and devices.
- Broadcast support (e.g.,
255.255.255.255) for network-wide messaging.
- π Robustness:
- Automatic socket reinitialization with backoff.
- Session renewal and nonce cleanup to prevent memory leaks.
- Comprehensive error handling for network and payload issues.
- Hardware: MicroPython-compatible microcontroller (e.g., ESP32, ESP8266).
- Software: MicroPython v1.20 or higher.
- Modules:
uhashlib,ucryptolib,ubinascii,uasyncio,socket,json,struct,os. - Tools:
esptool,ampy,rshell, orThonnyfor deployment.
-
Install MicroPython:
- Download the latest firmware from micropython.org.
- Flash the firmware to your device:
esptool.py --port /dev/ttyUSB0 erase_flash esptool.py --port /dev/ttyUSB0 write_flash -z 0x1000 esp32-firmware.bin
-
Clone the Repository:
git clone https://github.com/armanghobadi/nomq.git cd nomq -
Deploy the Code:
- Copy
nomq.pyand optionallytest_nomq.pyto your device:ampy --port /dev/ttyUSB0 put nomq.py ampy --port /dev/ttyUSB0 put test_nomq.py
- Copy
-
Create Configuration:
- Generate a
nomq_config.jsonfile with secure keys:from nomq import NoMQ import ubinascii, os config = { "ip": "0.0.0.0", "port": 8888, "use_ipv6": False, "encryption_key": ubinascii.hexlify(os.urandom(32)).decode(), "hmac_key": ubinascii.hexlify(os.urandom(32)).decode() } nomq = NoMQ() nomq.create_config(config, "nomq_config.json")
- Generate a
Below is an example of using NoMQ to publish and subscribe to a channel, with WiFi setup and JSON message handling.
import uasyncio as asyncio
import network
import json
import time
import ubinascii
from machine import unique_id
from nomq import NoMQ
# WiFi credentials
SSID = "your_wifi_ssid"
PASSWORD = "your_wifi_password"
async def connect_wifi():
wlan = network.WLAN(network.STA_IF)
wlan.active(True)
if not wlan.isconnected():
print("Connecting to WiFi...")
wlan.connect(SSID, PASSWORD)
while not wlan.isconnected():
await asyncio.sleep(1)
print("WiFi connected:", wlan.ifconfig())
async def main():
try:
await connect_wifi()
nomq = NoMQ("nomq_config.json", log_level="INFO", timeout=5)
# Generate authentication signature
signature = nomq.gen_signature("auth")
# Subscribe to a channel
print("Subscribing to test/channel...")
await nomq.subscribe("test/channel", priority=0, signature=signature, message="auth")
# Publish a JSON message
message_json = {
"device_id": ubinascii.hexlify(unique_id()).decode(),
"timestamp": int(time.time()),
"type": "environmental_sensor",
"data": {
"temperature": {"value": 25.3, "unit": "Celsius"},
"humidity": {"value": 60.5, "unit": "Percent"},
"battery": {"level": 85, "unit": "Percent"}
},
"location": {"latitude": 35.6895, "longitude": 51.3890}
}
message = json.dumps(message_json)
await nomq.publish(
"test/channel",
message,
qos=2,
retain=True,
ip="255.255.255.255",
port=8888,
signature=signature,
auth_message="auth"
)
# Listen for messages
print("Listening for messages...")
listener = await nomq.listen()
while True:
msg = listener.mssg()
if msg:
try:
parsed_msg = json.loads(msg["message"])
print(f"Received JSON: {msg['channel']} -> {parsed_msg}")
except ValueError:
print(f"Received non-JSON: {msg['channel']} -> {msg['message']}")
await asyncio.sleep(0.1)
except Exception as e:
print(f"Error: {e}")
raise
try:
asyncio.run(main())
except KeyboardInterrupt:
print("Terminated by user")
except Exception as e:
print(f"Unexpected error: {e}")- Sender Device:
- Receiver Device:
- Unit Test:
subscribe(channel, priority, signature, message, addr): Join a channel with optional authentication.publish(channel, message, qos, retain, ttl, priority, ip, port, signature, auth_message): Send a message to a channel.listen(): Asynchronously receive messages, returning aListenerobject with amssg()method.unsubscribe(channel): Leave a channel.create_config(config_dict, output_file): Generate an encrypted configuration file.gen_signature(message): Create an HMAC-SHA256 signature for authentication.authenticate(signature, message, addr): Verify device authenticity.
NoMQ includes a comprehensive test suite (test.py) to validate functionality, security, and performance on MicroPython devices. The suite covers:
- Unit Tests: Test internal functions (
gen_signature,_create_packet,_parse_packet, etc.). - Integration Tests: Verify subscribe, publish, and listen workflows with QoS 0β2.
- Security Tests: Ensure HMAC authentication and replay attack prevention.
- Performance Tests: Evaluate high-load scenarios (e.g., 30 messages).
- Ensure WiFi connectivity (see
connect_wifiabove). - Upload
nomq.pyandtest.pyto your device. - Run the test suite:
import test asyncio.run(test.main())
- Check the output for test results:
[INFO] PASS: HMAC-SHA256 signature generation [INFO] PASS: Publish and receive message with QoS 1 [INFO] Test Suite: NoMQ Tests [INFO] Passed: 12, Failed: 0
- Tests use a broadcast IP (
255.255.255.255) to ensure message delivery on single-device setups. - The suite is optimized for MicroPythonβs limited exception handling (e.g., no
UnicodeDecodeError). - For low-memory devices, reduce the performance test load (e.g., 20 messages).
NoMQ is designed for various IoT applications:
- Industrial IoT:
- Securely connect sensors and controllers in factories.
- Example: Monitor machine health and send high-priority alerts (QoS 2).
- Smart Homes:
- Control devices like lights or thermostats with guaranteed delivery.
- Example: Toggle a relay remotely with authentication.
- Sensor Networks:
- Collect real-time data from distributed sensors.
- Example: Aggregate environmental data (temperature, humidity) across a farm.
- Prototyping:
- Test lightweight protocols in research or academic projects.
- Example: Simulate a mesh network for IoT communication.
- Security: Use unique, randomly generated
encryption_keyandhmac_keyfor each deployment. - Network: Configure a stable WiFi network or dedicated access point. Use NTP for time synchronization:
import ntptime ntptime.settime()
- Monitoring: Log messages to a file or external server:
with open("nomq_log.txt", "a") as f: f.write(f"[INFO] {msg}\n")
- Scalability: Deploy multiple devices with unique
device_idvalues and manage channel priorities.
Below is the UML class diagram for the NoMQ class, reflecting its structure and methods.
classDiagram
class NoMQ {
-ip: str
-port: int
-use_ipv6: bool
-socket: socket
-poller: select.poll
-device_id: str
-session_id: int
-session_start: float
-channels: list
-retained_messages: dict
-pending_messages: dict
-nonce_set: list
-encryption_key: bytes
-hmac_key: bytes
-logger: SimpleLogger
-running: bool
-backoff_count: int
+__init__(config_file, log_level, timeout)
+_load_config(config_file)
+create_config(config_dict, output_file)
+_initialize_socket()
+_reinitialize_socket() async
+_get_device_id() str
+_generate_session_id() int
+_generate_packet_id() int
+_renew_session()
+_cleanup_nonces()
+gen_signature(message) bytes
+authenticate(signature, message, addr) async bool
+subscribe(channel, priority, signature, message, addr) async
+publish(channel, message, qos, retain, ttl, priority, ip, port, signature, auth_message) async
+listen() async Listener
+_create_packet(packet_type, flags, channel_id, payload, packet_id, ttl) bytes
+_parse_packet(data) dict
+send_ack(packet, addr, qos) async
+send_heartbeat_response(addr) async
+handle_qos2(packet, addr) async
+unsubscribe(channel) async
+cleanup_expired_messages() async
+_limit_retained_messages(channel)
+_limit_pending_messages()
+close()
}
class SimpleLogger {
-level: str
-levels: dict
+__init__(level)
+info(msg)
+warning(msg)
+error(msg)
+debug(msg)
}
class Listener {
-nomq: NoMQ
-message_queue: list
+__init__(nomq)
+mssg() dict
}
NoMQ --> SimpleLogger : uses
NoMQ --> Listener : returns
NoMQ is licensed under the MIT License. See the LICENSE file for details.
For questions, suggestions, or support, please:
- Open an issue on the GitHub repository.
- Contact the maintainers at arman.ghobadi.ag@gmail.com.
NoMQ: Empowering secure, lightweight, and reliable IoT communication for the future. π