To Security and Beyond: On The Impacts of Microservice Security Smells and Refactorings

Francisco Ponce, Jacopo Soldani, Carla Taramasco, Hernan Astudillo, Antonio Brogi

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

3 Citations (Scopus)

Abstract

Microservices gained momentum in enterprise IT, as they enable building cloud-native applications. At the same time, they come with new security challenges, including security smells, viz., symptoms of bad (though often unintentional) design decisions that might affect application security. This study aims to explore the impacts of microservice security smells- and of the refactorings known to mitigate their effects-beyond security. In particular, we systematically elicit possible impacts of smells and refactorings on applications' maintainability, performance efficiency, and adherence to microservices' key design principles. We then validate the elicited impacts by means of an online survey targeting experienced practitioners and researchers. Our main contributions include 35 validated impacts, and a discussion of the survey results geared towards analyzing the (mis)alignment between practitioners and researchers.

Original languageEnglish
Title of host publicationProceedings - 2023 49th Latin American Computing Conference, CLEI 2023
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9798350318876
DOIs
Publication statusPublished - 2023
Event49th Latin American Computing Conference, CLEI 2023 - La Paz, Bolivia, Plurinational State of
Duration: 16 Oct 202320 Oct 2023

Publication series

NameProceedings - 2023 49th Latin American Computing Conference, CLEI 2023

Conference

Conference49th Latin American Computing Conference, CLEI 2023
Country/TerritoryBolivia, Plurinational State of
CityLa Paz
Period16/10/2320/10/23

Keywords

  • design principles
  • maintainability
  • microservices
  • performance efficiency
  • refactoring
  • security smells

ASJC Scopus subject areas

  • Artificial Intelligence
  • Computer Networks and Communications
  • Computer Science Applications
  • Computational Mathematics
  • Radiology Nuclear Medicine and imaging

Fingerprint

Dive into the research topics of 'To Security and Beyond: On The Impacts of Microservice Security Smells and Refactorings'. Together they form a unique fingerprint.

Cite this