Abstract
The adoption of microservice architecture is rapidly growing, involving industries of every size. Their ability to scale and reconstitute complex functionalities into small, cohesive, and interconnected components (the microservices), and their limited use of isolation contribute to this success. Unfortunately but unsurprisingly, these very factors enlarge the attack surface and increase the security risks of today’s deployments. In this study, we performed a systematization of knowledge about the run-time security of microservices. Starting from a keyword search, we initially reviewed 807 papers available in digital libraries (e.g., Google Scholar and Scopus), which we filtered down to 48 by applying a number of selection criteria (e.g., the presence of a proof-of-concept implementation). We also considered over 30 industry tools that offer various security services for microservices. We categorized both papers and tools and highlighted areas where research is abundant, where it is lacking, and where it is misleading. We conclude that the run-time security of microservices is still in its infancy and we supplement our analyses with insights into addressing the key challenges.
| Original language | English |
|---|---|
| Article number | 103119 |
| Pages (from-to) | 1-14 |
| Number of pages | 14 |
| Journal | Computers & Security |
| Volume | 127 |
| Early online date | 24 Jan 2023 |
| DOIs | |
| Publication status | Published - Apr 2023 |
Bibliographical note
Funding Information:This work has received funding from the European Union under the H2020 grant 952647 (AssureMOSS).
Publisher Copyright:
© 2023 The Author(s)
Funding
This work has received funding from the European Union under the H2020 grant 952647 (AssureMOSS).
| Funders | Funder number |
|---|---|
| Horizon 2020 Framework Programme | 952647 |
| Horizon 2020 Framework Programme | |
| European Commission |
Keywords
- Cloud
- Containers
- Microservices
- Security
- Survey