Towards a Security Benchmark for the Architectural Design of Microservice Applications

Towards a Security Benchmark for the Architectural Design of Microservice Applications

Abstract

The microservice architecture presents many challenges from a security perspective, due to the large amount of services, leading to an increased attack surface and an unmanageable cognitive load for security analysts. Several benchmarks exist to guide the secure configuration of the deployment infrastructure for microservice applications, including containers (e.g., Docker), orchestration systems (e.g., Kubernetes), cloud platforms (e.g., AWS), and even operating systems (e.g., Linux). In this paper, we approach the creation of a benchmark for the design of the microservice applications themselves. To this aim, we inventorize a number of relevant security rules for the architectural design of microservice applications and assess (in a preliminary way) how these rules could be checked automatically.

Grafik Top
Authors
  • Tukaram, Anusha Bambhore
  • Schneider, Simon
  • Ferreyra, Nicolas E. Diaz
  • Simhandl, Georg
  • Zdun, Uwe
  • Scandariato, Riccardo
Grafik Top
Projects
Grafik Top
Shortfacts
Category
Paper in Conference Proceedings or in Workshop Proceedings (Paper)
Event Title
ARES '22: Proceedings of the 17th International Conference on Availability, Reliability and Security
Divisions
Software Architecture
Subjects
Computersicherheit
Systemarchitektur Sonstiges
Software Engineering
Webentwicklung, Webanwendungen
Systemarchitektur Allgemeines
Event Location
Vienna
Event Type
Conference
Event Dates
23-26 Aug
Date
2022
Export
Grafik Top