Enhancing Microservices Security with Token-Based Access Control Method.

IF 3.5 3区综合性期刊 Q2 CHEMISTRY, ANALYTICAL

Sensors Pub Date : 2023-03-22 DOI:10.3390/s23063363

Algimantas Venčkauskas, Donatas Kukta, Šarūnas Grigaliūnas, Rasa Brūzgienė

{"title":"Enhancing Microservices Security with Token-Based Access Control Method.","authors":"Algimantas Venčkauskas, Donatas Kukta, Šarūnas Grigaliūnas, Rasa Brūzgienė","doi":"10.3390/s23063363","DOIUrl":null,"url":null,"abstract":"<p><p>Microservices are compact, independent services that work together with other microservices to support a single application function. Organizations may quickly deliver high-quality applications using the effective design pattern of the application function. Microservices allow for the alteration of one service in an application without affecting the other services. Containers and serverless functions, two cloud-native technologies, are frequently used to create microservices applications. A distributed, multi-component program has a number of advantages, but it also introduces new security risks that are not present in more conventional monolithic applications. The objective is to propose a method for access control that ensures the enhanced security of microservices. The proposed method was experimentally tested and validated in comparison to the centralized and decentralized architectures of the microservices. The obtained results showed that the proposed method enhanced the security of decentralized microservices by distributing the access control responsibility across multiple microservices within the external authentication and internal authorization processes. This allows for easy management of permissions between microservices and can help prevent unauthorized access to sensitive data and resources, as well as reduce the risk of attacks on microservices.</p>","PeriodicalId":21698,"journal":{"name":"Sensors","volume":"23 6","pages":""},"PeriodicalIF":3.5000,"publicationDate":"2023-03-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10052058/pdf/","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Sensors","FirstCategoryId":"103","ListUrlMain":"https://doi.org/10.3390/s23063363","RegionNum":3,"RegionCategory":"综合性期刊","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"CHEMISTRY, ANALYTICAL","Score":null,"Total":0}

引用次数: 0

Abstract

Microservices are compact, independent services that work together with other microservices to support a single application function. Organizations may quickly deliver high-quality applications using the effective design pattern of the application function. Microservices allow for the alteration of one service in an application without affecting the other services. Containers and serverless functions, two cloud-native technologies, are frequently used to create microservices applications. A distributed, multi-component program has a number of advantages, but it also introduces new security risks that are not present in more conventional monolithic applications. The objective is to propose a method for access control that ensures the enhanced security of microservices. The proposed method was experimentally tested and validated in comparison to the centralized and decentralized architectures of the microservices. The obtained results showed that the proposed method enhanced the security of decentralized microservices by distributing the access control responsibility across multiple microservices within the external authentication and internal authorization processes. This allows for easy management of permissions between microservices and can help prevent unauthorized access to sensitive data and resources, as well as reduce the risk of attacks on microservices.

Abstract Image

查看原文本刊更多论文

基于令牌的访问控制方法增强微服务安全性。

微服务是紧凑的、独立的服务，它们与其他微服务一起工作以支持单个应用程序功能。组织可以使用应用程序功能的有效设计模式快速交付高质量的应用程序。微服务允许在不影响其他服务的情况下更改应用程序中的一个服务。容器和无服务器功能是两种云原生技术，经常用于创建微服务应用程序。分布式的多组件程序具有许多优点，但它也引入了新的安全风险，这些风险在更传统的单片应用程序中是不存在的。目标是提出一种访问控制方法，以确保微服务的增强安全性。通过实验测试和验证了该方法与微服务的集中式和分散式架构的对比。结果表明，该方法通过在外部认证和内部授权过程中跨多个微服务分配访问控制责任，增强了分散微服务的安全性。这样可以方便地管理微服务之间的权限，并有助于防止对敏感数据和资源的未经授权的访问，以及降低对微服务的攻击风险。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Sensors 工程技术-电化学

CiteScore

7.30

自引率

12.80%

发文量

8430

审稿时长

1.7 months

期刊介绍： Sensors (ISSN 1424-8220) provides an advanced forum for the science and technology of sensors and biosensors. It publishes reviews (including comprehensive reviews on the complete sensors products), regular research papers and short notes. Our aim is to encourage scientists to publish their experimental and theoretical results in as much detail as possible. There is no restriction on the length of the papers. The full experimental details must be provided so that the results can be reproduced.