Towards Teamwise Informed Decisions On Microservice Security Smells

Francisco Ponce, Jacopo Soldani, Hernán Astudillo, Antonio Brogi

Producción científica: Contribución a los tipos de informe/libroContribución a la conferenciarevisión exhaustiva

Resumen

Security smells, i.e., possible symptoms of bad security decisions, can occur in microservice-based applications, potentially resulting in violations of key security properties. The decision of whether or not to refactor a service to mitigate the potential effects of security smells is complex, considering the distributed responsibility of services across teams and the possible impact on their development schedules. In this work-in-progress paper, we propose a team-centric approach that provides insights into the effects of refactorings on quality attributes, the urgency and effort of a refactoring, and its implications for other teams. The ultimate goal is to support teams in making decisions in the context of microservice-based application security and to improve the scheduling of the refactorings that mitigate the potential effects of microservice security smell instances.

Idioma originalInglés
Título de la publicación alojadaSoftware Architecture - 18th European Conference, ECSA 2024, Proceedings
EditoresMatthias Galster, Patrizia Scandurra, Tommi Mikkonen, Pablo Oliveira Antonino, Elisa Yumi Nakagawa, Elena Navarro
EditorialSpringer Science and Business Media Deutschland GmbH
Páginas350-358
Número de páginas9
ISBN (versión impresa)9783031707964
DOI
EstadoPublicada - 2024
Evento18th European Conference on Software Architecture, ECSA 2024 - Luxembourg City, Luxemburgo
Duración: 3 sep. 20246 sep. 2024

Serie de la publicación

NombreLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volumen14889 LNCS
ISSN (versión impresa)0302-9743
ISSN (versión digital)1611-3349

Conferencia

Conferencia18th European Conference on Software Architecture, ECSA 2024
País/TerritorioLuxemburgo
CiudadLuxembourg City
Período3/09/246/09/24

Áreas temáticas de ASJC Scopus

  • Ciencia computacional teórica
  • Ciencia de la Computación General

Huella

Profundice en los temas de investigación de 'Towards Teamwise Informed Decisions On Microservice Security Smells'. En conjunto forman una huella única.

Citar esto