Model-Driven End-to-End Resolution of Security Smells in Microservice Architectures

Philip Wizenty, Francisco Ponce, Florian Rademacher, Jacopo Soldani, Hernán Astudillo, Antonio Brogi, Sabine Sachweh

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Microservice Architecture (MSA) is a popular approach to designing, implementing, and deploying complex software systems. However, MSA introduces inherent challenges associated with distributed systems—one of them is the detection and mitigation of security smells. This paper draws on recent works that identified and categorized security smells in MSAs to propose a novel end-to-end approach for resolving security smells in existing MSAs. To this end, the presented approach extends a modeling ecosystem for MSAs with (i) reconstruction capabilities that automatically map MSA source code to viewpoint-specific architecture models; (ii) validations that detect security smells from reconstructed models; and (iii) model refactorings that support the interactive resolution of security smells and solutions’ reflection back to source code. Our approach allows for (i) uncovering security smells, which originate from the combination of different places in source code with possibly heterogeneous purposes, technologies, and software languages; as well as (ii) clustering, reifying, and fixing smells using a level of abstraction that is directed towards MSA stakeholders. The applicability and effectiveness of our approach are evaluated utilizing a standard case study from MSA research.

Original languageEnglish
Title of host publicationProceedings of the 14th International Conference on Cloud Computing and Services Science, CLOSER 2024
EditorsMaarten van Steen, Claus Pahl
PublisherScience and Technology Publications, Lda
Pages204-215
Number of pages12
ISBN (Electronic)9789897587016
DOIs
Publication statusPublished - 2024
Event14th International Conference on Cloud Computing and Services Science, CLOSER 2024 - Angers, France
Duration: 2 May 20244 May 2024

Publication series

NameInternational Conference on Cloud Computing and Services Science, CLOSER - Proceedings
ISSN (Electronic)2184-5042

Conference

Conference14th International Conference on Cloud Computing and Services Science, CLOSER 2024
Country/TerritoryFrance
CityAngers
Period2/05/244/05/24

Keywords

  • Microservice Architecture
  • Model-Driven Engineering
  • Refactoring
  • Security

ASJC Scopus subject areas

  • Computer Science Applications
  • Software
  • Computer Science (miscellaneous)

Fingerprint

Dive into the research topics of 'Model-Driven End-to-End Resolution of Security Smells in Microservice Architectures'. Together they form a unique fingerprint.

Cite this