Enhancing Effectiveness and Security in Microservices Architecture

Michael Matias; Ernesto Ferreira; Nuno Mateus-Coelho; Luis Ferreira

doi:10.1016/j.procs.2024.06.417

Enhancing Effectiveness and Security in Microservices Architecture

Michael Matias, Ernesto Ferreira, Nuno Mateus-Coelho, Luis Ferreira

Resultado de pesquisa › revisão de pares

2 Citações (Scopus)

Resumo

Microservices have allowed the decomposition of large monoliths and introduced the simple responsibility principle into its essence. It allowed complex systems to be more cost efficient and easily scalable. With this new architecture, new vulnerabilities were introduced, such as the large surface that started to get exposed to the internet. Instead of having one monolithic surface exposed, we started to have several small services exposed. New patterns were introduced to try to diminish these threats and among them the "API Gateway"pattern was introduced. The purpose of this article is to further explore the API Gateway pattern, and to further enhance the microservices communication security as part of that pattern. This research proposes a hybrid approach, using HTTPS and JWT only when strictly necessary, towards overcoming those recognized limitations of security and performance. Furthermore, proof of concept on top of NB-IoT communication protocol was developed. It intends to explore the transmission of a large quantity of low-frequency data from devices to the cloud, while the communication maintains effective and with low latency. The created supporting microservices API followed the proposed architecture and was tested against security attacks towards mitigating its impacts.

Idioma original	Inglês
Páginas (de-até)	2260-2269
Número de páginas	10
Revista	Procedia Computer Science
Volume	239
DOIs	https://doi.org/10.1016/j.procs.2024.06.417
Estado da publicação	Publicadas - 2023
Evento	2023 International Conference on ENTERprise Information Systems, CENTERIS 2023 - International Conference on Project MANagement, ProjMAN 2023 - International Conference on Health and Social Care Information Systems and Technologies, HCist 2023 - Porto Duração: 8 nov. 2023 → 10 nov. 2023

Nota bibliográfica

Publisher Copyright:
© 2024 The Author(s). Published by Elsevier B.V.

Financiamento

Financiadoras/-es	Número do financiador
Fundação para a Ciência e a Tecnologia
Ministério da Ciência, Tecnologia e Ensino Superior	UIDB/05549/2020, UIDP/05549/2020

Acesso ao documento

10.1016/j.procs.2024.06.417

Outros arquivos e links

Link to publication in Scopus

Citar isto

@article{0399395f87074cf598005a507e8858c0,

title = "Enhancing Effectiveness and Security in Microservices Architecture",

abstract = "Microservices have allowed the decomposition of large monoliths and introduced the simple responsibility principle into its essence. It allowed complex systems to be more cost efficient and easily scalable. With this new architecture, new vulnerabilities were introduced, such as the large surface that started to get exposed to the internet. Instead of having one monolithic surface exposed, we started to have several small services exposed. New patterns were introduced to try to diminish these threats and among them the {"}API Gateway{"}pattern was introduced. The purpose of this article is to further explore the API Gateway pattern, and to further enhance the microservices communication security as part of that pattern. This research proposes a hybrid approach, using HTTPS and JWT only when strictly necessary, towards overcoming those recognized limitations of security and performance. Furthermore, proof of concept on top of NB-IoT communication protocol was developed. It intends to explore the transmission of a large quantity of low-frequency data from devices to the cloud, while the communication maintains effective and with low latency. The created supporting microservices API followed the proposed architecture and was tested against security attacks towards mitigating its impacts.",

keywords = "API Gateway, Effectiveness, Microservices, Microservices Architecture, NB-IoT, Security",

author = "Michael Matias and Ernesto Ferreira and Nuno Mateus-Coelho and Luis Ferreira",

note = "Publisher Copyright: {\textcopyright} 2024 The Author(s). Published by Elsevier B.V. DBLP License: DBLP's bibliographic metadata records provided through http://dblp.org/ are distributed under a Creative Commons CC0 1.0 Universal Public Domain Dedication. Although the bibliographic metadata records are provided consistent with CC0 1.0 Dedication, the content described by the metadata records is not. Content may be subject to copyright, rights of privacy, rights of publicity and other restrictions.; 2023 International Conference on ENTERprise Information Systems, CENTERIS 2023 - International Conference on Project MANagement, ProjMAN 2023 - International Conference on Health and Social Care Information Systems and Technologies, HCist 2023 ; Conference date: 08-11-2023 Through 10-11-2023",

year = "2023",

doi = "10.1016/j.procs.2024.06.417",

language = "English",

volume = "239",

pages = "2260--2269",

journal = "Procedia Computer Science",

issn = "1877-0509",

publisher = "Elsevier B.V.",

}

TY - JOUR

T1 - Enhancing Effectiveness and Security in Microservices Architecture

AU - Matias, Michael

AU - Ferreira, Ernesto

AU - Mateus-Coelho, Nuno

AU - Ferreira, Luis

N1 - Publisher Copyright: © 2024 The Author(s). Published by Elsevier B.V. DBLP License: DBLP's bibliographic metadata records provided through http://dblp.org/ are distributed under a Creative Commons CC0 1.0 Universal Public Domain Dedication. Although the bibliographic metadata records are provided consistent with CC0 1.0 Dedication, the content described by the metadata records is not. Content may be subject to copyright, rights of privacy, rights of publicity and other restrictions.

PY - 2023

Y1 - 2023

N2 - Microservices have allowed the decomposition of large monoliths and introduced the simple responsibility principle into its essence. It allowed complex systems to be more cost efficient and easily scalable. With this new architecture, new vulnerabilities were introduced, such as the large surface that started to get exposed to the internet. Instead of having one monolithic surface exposed, we started to have several small services exposed. New patterns were introduced to try to diminish these threats and among them the "API Gateway"pattern was introduced. The purpose of this article is to further explore the API Gateway pattern, and to further enhance the microservices communication security as part of that pattern. This research proposes a hybrid approach, using HTTPS and JWT only when strictly necessary, towards overcoming those recognized limitations of security and performance. Furthermore, proof of concept on top of NB-IoT communication protocol was developed. It intends to explore the transmission of a large quantity of low-frequency data from devices to the cloud, while the communication maintains effective and with low latency. The created supporting microservices API followed the proposed architecture and was tested against security attacks towards mitigating its impacts.

AB - Microservices have allowed the decomposition of large monoliths and introduced the simple responsibility principle into its essence. It allowed complex systems to be more cost efficient and easily scalable. With this new architecture, new vulnerabilities were introduced, such as the large surface that started to get exposed to the internet. Instead of having one monolithic surface exposed, we started to have several small services exposed. New patterns were introduced to try to diminish these threats and among them the "API Gateway"pattern was introduced. The purpose of this article is to further explore the API Gateway pattern, and to further enhance the microservices communication security as part of that pattern. This research proposes a hybrid approach, using HTTPS and JWT only when strictly necessary, towards overcoming those recognized limitations of security and performance. Furthermore, proof of concept on top of NB-IoT communication protocol was developed. It intends to explore the transmission of a large quantity of low-frequency data from devices to the cloud, while the communication maintains effective and with low latency. The created supporting microservices API followed the proposed architecture and was tested against security attacks towards mitigating its impacts.

KW - API Gateway

KW - Effectiveness

KW - Microservices

KW - Microservices Architecture

KW - NB-IoT

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85201301654&partnerID=8YFLogxK

U2 - 10.1016/j.procs.2024.06.417

DO - 10.1016/j.procs.2024.06.417

M3 - Article

AN - SCOPUS:85201301654

SN - 1877-0509

VL - 239

SP - 2260

EP - 2269

JO - Procedia Computer Science

JF - Procedia Computer Science

T2 - 2023 International Conference on ENTERprise Information Systems, CENTERIS 2023 - International Conference on Project MANagement, ProjMAN 2023 - International Conference on Health and Social Care Information Systems and Technologies, HCist 2023

Y2 - 8 November 2023 through 10 November 2023

ER -

Enhancing Effectiveness and Security in Microservices Architecture

Resumo

Nota bibliográfica

Financiamento

Acesso ao documento

Outros arquivos e links

Impressão digital

Citar isto