Defense-in-depth and Role Authentication for Microservice Systems

Jander, Kai; Braubach, Lars; Pokahr, Alexander

doi:10.1016/j.procs.2018.04.047

Cited by 19 publications

(7 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• The call to the different microservices corresponding to the credentials is established (by a nurse, doctor, IT developer or administrator). • Based on the considerations described above, microservices are classified based on the common characteristics of their operation [52], [53] into three groups [14]: the first performs the control and management of user accounts, roles, permissions [54] and manages the measurements received from the biosensors [55], [56]; the second group administers the different patients, affiliated institutions and manages the medical data collected by the first group [14]; and the third is responsible for infectious disease registries. It is also responsible for receiving notifications from the clinical decision support system (CDSS) for the prevention, treatment and management of the three groups of infectious diseases, using the model detailed by Baldominos et al [6].…”

Section: ) Platformmentioning

confidence: 99%

“…The microservices developed in PHP use the Laravel framework, while the those developed in Python use the Django framework. It should be noted that all microservices developed in SPIDEP have an asynchronous HTTPS server based on TLS for client authentication [25], [54], and the databases applied to each one were SQL (MariaDB) and NoSQL (Cassandra or MongoDB). As a complement to this microservicesbased architecture, we use the "service instance per container" and "database per service" implementation patterns [64].…”

Section: Figure 2 Framework For the Automation And Continuous Deploymentioning

confidence: 99%

See 1 more Smart Citation

Telemonitoring System for Infectious Disease Prediction in Elderly People Based on a Novel Microservice Architecture

et al. 2020

View full text Add to dashboard Cite

This article describes the design, development and implementation of a set of microservices based on an architecture that enables detection and assisted clinical diagnosis within the field of infectious diseases of elderly patients, via a telemonitoring system. The proposed system is designed to continuously update a medical database fed with vital signs from biosensor kits applied by nurses to elderly people on a daily basis. The database is hosted in the cloud and is managed by a flexible microservices software architecture. The computational paradigms of the edge and the cloud were used in the implementation of a hybrid cloud architecture in order to support versatile high-performance applications under the microservices pattern for the pre-diagnosis of infectious diseases in elderly patients. The results of an analysis of the usability of the equipment, the performance of the architecture and the service concept show that the proposed e-health system is feasible and innovative. The system components are also selected to give a cost-effective implementation for people living in disadvantaged areas. The proposed e-health system is also suitable for distributed computing, big data and NoSQL structures, thus allowing the immediate application of machine learning and AI algorithms to discover knowledge patterns from the overall population.

show abstract

Section: ) Platformmentioning

confidence: 99%

Section: Figure 2 Framework For the Automation And Continuous Deploymentioning

confidence: 99%

Telemonitoring System for Infectious Disease Prediction in Elderly People Based on a Novel Microservice Architecture

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Thus, in a single microservices-based application system, the constituting services may be built using different languages (e.g., Ruby, Golang, Java) and may be hosting different stores (e.g., document datastore, graphical Database (DB), or multimedia DB). Each component service is developed by a team-a microservice or DevOps team-which provides all of the development and operational requirements for that service with a high degree of autonomy regarding development and deployment techniques so long as the service functionality or service contract is agreed upon [6].…”

Section: Building Blocksmentioning

confidence: 99%

Security strategies for microservices-based application systems

Chandramouli¹

2019

View full text Add to dashboard Cite

This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130. Nothing in this publication should be taken to contradict the standards and guidelines made mandatory and binding on federal agencies by the Secretary of Commerce under statutory authority. Nor should these guidelines be interpreted as altering or superseding the existing authorities of the Secretary of Commerce, Director of the OMB, or any other federal official. This publication may be used by nongovernmental organizations on a voluntary basis and is not subject to copyright in the United States. Attribution would, however, be appreciated by NIST.

show abstract

“…Selected studies Defense-in-depth and Role Authentication for Microservice Systems [12]. 2 A Cluster of CP-ABE Microservices for VANET [13].…”

mentioning

confidence: 99%

Confidentiality and Integrity Mechanisms for Microservices Communication

Leines-Vite¹,

Arriaga²,

Limón³

2021

Computer Science and Information Technology Trends

View full text Add to dashboard Cite

The microservices architecture tries to deal with the challenges posed by distributed systems, such as scalability, availability, and system deployment; by means of highly cohesive, heterogeneous, and independent microservices. However, this architecture also brings new security challenges related to communication, system design, development, and operation. The literature contains spread information regarding security related solutions for microservicesbased systems, but this spread makes difficult for practitioners to adopt novel security related solutions. In this study, we aim to present a catalogue of security solutions based on algorithms, protocols, standards, or implementations; supporting principles or characteristics of information security, also considering the three possible states of data, according to the McCumber Cube. Our research follows a Systematic Literature Review, synthesizing the results with a meta-aggregation process. We identified a total of 30 primary studies, yielding 71 security solutions for the communication of microservices.

show abstract

Defense-in-depth and Role Authentication for Microservice Systems

Cited by 19 publications

References 10 publications

Telemonitoring System for Infectious Disease Prediction in Elderly People Based on a Novel Microservice Architecture

Telemonitoring System for Infectious Disease Prediction in Elderly People Based on a Novel Microservice Architecture

Security strategies for microservices-based application systems

Confidentiality and Integrity Mechanisms for Microservices Communication

Contact Info

Product

Resources

About