Microservice security: a systematic literature review

Microservices is an emerging paradigm for developing distributed systems. With their widespread adoption, more and more work investigated the relation between microservices and security. Alas, the literature on this subject does not form a well-defined corpus : it is spread over many venues and comp...

Full description

Saved in:
Bibliographic Details
Published inPeerJ. Computer science Vol. 7; p. e779
Main Authors Berardi, Davide, Giallorenzo, Saverio, Mauro, Jacopo, Melis, Andrea, Montesi, Fabrizio, Prandini, Marco
Format Journal Article
LanguageEnglish
Published United States PeerJ. Ltd 05.01.2022
PeerJ, Inc
PeerJ
PeerJ Inc
Subjects
Analysis
Computer networks
Computer Science
Correlation analysis
Data security
Datasets
Design
Distributed processing (Computers)
Emerging Technologies
Infrastructure
Infrastructure-as-a-service
Literature reviews
Methods
Network security
Programming Languages
Security
Security and Privacy
Service composition
Service deployment
Service discovery
Software development
Software Engineering
Systematic review
Threat model
Web services
Italy
Authentication and authorization
Privacy
Service deployment
Software development
Authentication
Intrusion detection and prevention
Threat model
Service composition
Service discovery
Infrastructure-as-a-service
Online AccessGet full text

Cover

More Information
Summary:Microservices is an emerging paradigm for developing distributed systems. With their widespread adoption, more and more work investigated the relation between microservices and security. Alas, the literature on this subject does not form a well-defined corpus : it is spread over many venues and composed of contributions mainly addressing specific scenarios or needs. In this work, we conduct a systematic review of the field, gathering 290 relevant publications—at the time of writing, the largest curated dataset on the topic. We analyse our dataset along two lines: (a) quantitatively, through publication metadata, which allows us to chart publication outlets, communities, approaches, and tackled issues; (b) qualitatively, through 20 research questions used to provide an aggregated overview of the literature and to spot gaps left open. We summarise our analyses in the conclusion in the form of a call for action to address the main open challenges.
Bibliography:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
content type line 23
ISSN:2376-5992
2376-5992
DOI:10.7717/peerj-cs.779