Optimization of Microservices Security

• Published in: 2021 3rd International Conference on Advancements in Computing (ICAC) pp. 49 - 54
• Main Authors: Kalubowila, D. C, Athukorala, S. M, Tharaka, B. A. S, Samarasekara, H. W. Y. R, Samaratunge Arachchilage, Udara Srimath S., Kasthurirathna, Dharshana
• Format: Conference Proceeding
• Language: English
• Published: IEEE 09.12.2021
• Subjects: Business; Codes; Computer architecture; Envoy; Inter Service Communication security; Istio; Kubernetes; Microservice architectures; Microservices; Network security; Optimization; Optimizaton; Pod security; Reverse Proxy; Software
• DOI: 10.1109/ICAC54203.2021.9671131

Microservices is a trending architecture, and due to its demanding features and behaviors, billions of business applications are developed based on it. Due to its remarkable ability to deploy and coordinate containerized microservices, Kubernetes deployments support the service mesh architectures, and that ensures secured inter-service communication. The Istio is the widely used service mesh tool at present. However, service-to-service communication happens in the present Istio architecture, and there is a probability of exchanging unauthorized and over-provisioned requests due to incorrect implementation. Currently, these requests are verified within the upstream microservice. Obtaining a response to an erroneous request may take considerable time latency. This research thereby aims to address a solution to reduce the latency of a response by implementing an external validation model. The proposed external validation model ensures that the required parameters are validated and actions are taken before requests reach the service level. External validation enables applications to save significant time and resources.