TUHH Open Research
Hilfe
  • Log In
    or
    New user? Click here to register.Have you forgotten your password?
  • English
  • Deutsch
  • Communities & Collections
  • Publications
  • Research Data
  • People
  • Institutions
  • Projects
  • Statistics
  1. Home
  2. TUHH
  3. Publications without fulltext
  4. Towards a Security Benchmark for the Architectural Design of Microservice Applications
 
Options

Towards a Security Benchmark for the Architectural Design of Microservice Applications

Publikationstyp
Conference Paper
Publikationsdatum
2022-08
Sprache
English
Author
Bambhore Tukaram, Anusha 
Schneider, Simon 
Díaz Ferreyra, Nicolás orcid-logo
Simhandl, Georg 
Zdun, Uwe 
Scandariato, Riccardo 
Institut
Software Security E-22 
TORE-URI
http://hdl.handle.net/11420/13576
Article Number
116
Citation
17th International Conference on Availability, Reliability and Security (ARES 2022)
Contribution to Conference
17th International Conference on Availability, Reliability and Security, ARES 2022 
Publisher DOI
10.1145/3538969.3543807
Scopus ID
2-s2.0-85136965983
The microservice architecture presents many challenges from a security perspective, due to the large amount of services, leading to an increased attack surface and an unmanageble cognitive load for security analysts. Several benchmarks exist to guide the secure configuration of the deployment infrastructure for microservice applications, including containers (e.g., Docker), orchestration systems (e.g., Kubernetes), cloud platforms (e.g., AWS), and even operating systems (e.g., Linux). In this paper we approach the creation of a benchmark for the design of the microservice applications themselves. To this aim, we inventorize a number of relevant security rules for the architectural design of microservice applications and assess (in a preliminary way) how these rules could be checked automatically.
Schlagworte
architecture
constraints
microservices
rules
security
TUHH
Weiterführende Links
  • Contact
  • Send Feedback
  • Cookie settings
  • Privacy policy
  • Impress
DSpace Software

Built with DSpace-CRIS software - Extension maintained and optimized by 4Science
Design by effective webwork GmbH

  • Deutsche NationalbibliothekDeutsche Nationalbibliothek
  • ORCiD Member OrganizationORCiD Member Organization
  • DataCiteDataCite
  • Re3DataRe3Data
  • OpenDOAROpenDOAR
  • OpenAireOpenAire
  • BASE Bielefeld Academic Search EngineBASE Bielefeld Academic Search Engine
Feedback