Information system development for restricting access to software tool built on microservice architecture

Safaryan, Olga; Pinevich, Elena; Roshchina, Evgeniya; Cherckesova, Larissa V.; Kolennikova, Nadezhda

doi:10.1051/e3sconf/202022401041

Cited by 4 publications

(2 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In compliance with the General Data Protection Regulation, the hybrid solution combined the services for sensitive data (TSD) as a service platform and the Hypertext Transfer Protocol security techniques while taking into account security features such as identity brokering, OAuth2, multifactor authentication, and access control to safeguard the microservices architecture APIs. Safaryan et al [ 49 ] created a secure software architecture of microservices that ensures authorized access to confidential data by stating the case for selecting a potential authentication method and creating a security layer that achieves the security objective. The designed architecture enables users to assign or restrict permissions to specific information items using a discretionary or credential approach, protecting them reliably against unwanted access.…”

Section: Resultsmentioning

confidence: 99%

“…This solution securely constructed a platform where identity brokering, OAuth2, multifactor authentication, and the access control mechanism ensure proper data safety and user management through API protection. Finally, we can utilize the second solution [ 49 ] from our findings for providing confidentially, which also covers the least-privileged principle.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Rahaman

Islam

Černý

et al. 2023

Sensors

View full text Add to dashboard Cite

Security is a significant priority for cloud-native systems, regardless of the system size and complexity. Therefore, one must utilize a set of defensive mechanisms or controls to protect the system from exploitation by potential adversaries. There is an expanding amount of research on security issues, including attacks against individual microservices or overall systems and their corresponding defense mechanism options. This study intends to provide a comprehensive overview of currently used defense mechanisms involving static analysis that can detect and react against associated attacks and vulnerabilities. We present a systematic literature review that extracts current approaches for the security analysis of microservices and the violation of security principles. We gathered 1049 relevant publications, of which 50 were selected as primary studies. We are providing practitioners and developers with a structured survey of the existing literature of defensive solutions for microservice architectures and cloud-native systems to aid them in identifying applicable solutions for their systems.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Resultsmentioning

confidence: 99%

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Rahaman

Islam

Černý

et al. 2023

Sensors

View full text Add to dashboard Cite

show abstract

Corporate chat under DLP–system controlling

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

Optimizing Parameters of University Cloud Systems to Ensure Reliability and Security in Identity Decentralization

Lakhno,

Moskalenko

2024

Cybersecurity

View full text Add to dashboard Cite

It is shown that microservice architecture (MSA) of cloud services (CS) of a private university cloud is an approach to software development (SW), according to which an application is built from small ones independent services that interact with each other through an APIs, with each service responsible for execution specific functionality and can be deployed and scaled separately, thereby enabling the creation of flexible and scalable applications that can quickly adapt to changing conditions and workloads for each task of using microservice architecture. A review and analysis of previous studies devoted to the use of MCA in cloud computing (CC) and CS was conducted, which showed that CMA is widely used in CC and CS due to its flexibility, scalability and high availability. It is shown that the decentralization of identity will make it possible to increase the security and privacy of user data, because each service in the MSA CS can have its own access and identity management system, which, on the one hand, leads to a number of advantages, such as scalability, flexibility and resistance to failures, but on the other hand, the decentralized nature of the MSA also creates problems with identity management. The model for simulating the system load factor during the MSA was further developed. The solution proposed in the work, unlike existing solutions, takes into account the limitations of decentralized identity management (i.e., DID). A software solution using the Python algorithmic language for the implementation of a mathematical model for the simulation of CS parameters is described. The model, among other things, takes into account the weights (importance) of applications entering the decentralized identity management system.

show abstract

Information system development for restricting access to software tool built on microservice architecture

Cited by 4 publications

References 6 publications

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Corporate chat under DLP–system controlling

Optimizing Parameters of University Cloud Systems to Ensure Reliability and Security in Identity Decentralization

Contact Info

Product

Resources

About