Inhalt anspringen

Towards Resolving Security Smells in Microservices, Model-Driven

Schnelle Fakten

  • Weitere Publizierende

    Francisco Ponce, Florian Rademacher, Jacopo Soldani, Hernán Astudillo, Antonio Brogi

  • Veröffentlichung

    • 2023
  • Sammelband

    Towards Resolving Security Smells in Microservices, Model-Driven (Proceedings of the 18th International Conference on Software Technologies ICSOFT - Volume 1)

  • Organisationseinheit

  • Fachgebiete

    • Informatik allgemein
  • Format

    Konferenzpaper

Zitat

P. Wizenty, F. Ponce, F. Rademacher, J. Soldani, H. Astudillo, A. Brogi, and S. Sachweh, “Towards Resolving Security Smells in Microservices, Model-Driven,” in Proceedings of the 18th International Conference on Software Technologies ICSOFT - Volume 1, 2023, pp. 15–26.

Abstract

Resolving security issues in microservice applications is crucial, as many IT companies rely on microservices to deliver their core businesses.
Security smells denote possible symptoms of such security issues.

However, detecting security smells and reasoning on how to resolve them through refactoring is complex and costly, mainly because of the intrinsic complexity of microservice architectures.

This paper presents the first idea towards supporting a model-driven resolution of microservices' security smell.

The proposed method relies on LEMMA to model microservice applications by suitably extending LEMMA itself to enable the modeling of microservices' security aspects.
The proposed method then enables processing LEMMA models to automatically detect security smells in modeled microservice applications and recommend the refactorings known to resolve the identified security smells.

To assess the feasibility of the proposed method, this paper also introduces a proof-of-concept implementation of the proposed LEMMA-based, automated microservices' security smell detection and refactoring.

Erläuterungen und Hinweise

Diese Seite verwendet Cookies, um die Funktionalität der Webseite zu gewährleisten und statistische Daten zu erheben. Sie können der statistischen Erhebung über die Datenschutzeinstellungen widersprechen (Opt-Out).

Einstellungen (Öffnet in einem neuen Tab)