Microservices Security: Bad vs. Good Practices

被引：0

作者：

Ponce, Francisco ^{[1
,2
]}

Soldani, Jacopo ^{[3
]}

Astudillo, Hernan ^{[1
]}

Brogi, Antonio ^{[3
]}

机构：

[1] Univ Tecn Federico Santa Maria, Valparaiso, Chile

[2] Univ Andres Bello, Fac Ingn, Inst Tecnol Innovac Salud & Bienestar, Valparaiso, Chile

[3] Univ Pisa, Pisa, Italy

来源：

SOFTWARE ARCHITECTURE. ECSA 2022 TRACKS AND WORKSHOPS | 2023年 / 13928卷

关键词：

microservices; security; bad practices; good practices; GREY LITERATURE; SOFTWARE;

D O I：

10.1007/978-3-031-36889-9_23

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

The microservice architectural style is widespread in enterprise IT, making the securing of microservices a crucial issue. Many bad practices in securing microservices have been identified by researchers and practitioners, along with security good practices that, if adopted, allow to avoid the corresponding security issues. However, this knowledge is scattered across multiple pieces of white and grey literature, making its consulting complex and time consuming. We present here the results of a multivocal literature review that analyzes 44 primary studies discussing bad and good practices for microservice security. We were able to identify four bad and six good practices, and to associate each bad practice with specific bad smell(s) that signal it and with good practice(s) that avoid incurring in it. The resulting mapping between bad and good practices for microservice security can help practitioners and researchers to explore the systematic securing of microservice-based applications.

引用

页码：337 / 352

页数：16

共 50 条

[1] Good vs. bad managed care
Klein, DH
INQUIRY-THE JOURNAL OF HEALTH CARE ORGANIZATION PROVISION AND FINANCING, 1997, 34 (01) : 3 - 4
[2] Bad assumptions vs. good investments
Salek, Edward P.
TRIBOLOGY & LUBRICATION TECHNOLOGY, 2013, 69 (07) : 8 - 8
[3] Good art vs. bad art
Halasz, P
NEW YORK TIMES BOOK REVIEW, 2004, : 5 - 5
[4] Asymmetric News Effects on Exchange Rate Volatility: Good vs. Bad News in Good vs. Bad Times
Laakkonen, Helina
Lanne, Markku
STUDIES IN NONLINEAR DYNAMICS AND ECONOMETRICS, 2010, 14 (01):
[5] Good vs. bad characteristics in vertical differentiation
Garella, PG
Lambertini, L
ECONOMICS LETTERS, 1999, 65 (02) : 245 - 248
[6] Remarks on good vs. bad characteristics in vertical differentiation
Bontems, P
Réquillart, V
ECONOMICS LETTERS, 2001, 70 (03) : 427 - 429
[7] The good and the bad news: surgery vs. drug therapy
Astrup, A.
OBESITY REVIEWS, 2008, 9 (01) : 1 - 3
[8] Traditional vs. Modernized dietary pattern among Tunisian adolescents: The good vs. The bad?
Aounallah-Skhiri, H.
Traissac, P.
El Ati, J.
Eymard-Duvernay, S.
Landais, E.
Achour, N.
Delpeuch, F.
Ben Romdhane, H.
Maire, B.
ANNALS OF NUTRITION AND METABOLISM, 2011, 58 : 133 - 134
[9] Microservices: Granularity vs. Performance
Shadija, Dharmendra
Rezai, Mo
Hill, Richard
COMPANION PROCEEDINGS OF THE 10TH INTERNATIONAL CONFERENCE ON UTILITY AND CLOUD COMPUTING (UCC'17 COMPANION), 2017, : 215 - 220
[10] 'Good' pollutant vs. the 'bad' pollutant. A matter of choice?
1600, (60):

← 1 2 3 4 5 →