Data transfer and exchange of information through APIs are essential for each microservice architecture. Since these transfers often include private or sensitive data, potential data leaks, either accidentally or through malicious attacks, provide a high-security risk. While there are different techniques, like using data encryption or authentication protocols to secure the data exchange, only a few strategies are known to reduce the damage when an actual data breach happens. Our work presents a novel approach to identifying the optimal amount of data attributes that need to be exchanged between APIs and minimizes the damage in case of a potential breach. Our method relies only on static source code analysis and easy-to-calculate architectural metrics, making it well suited to be used in continuous integration and deployment processes. We further verified and validated the feasibility of our approach by conducting two case studies on open-source microservice systems.
Thu 22 SepDisplayed time zone: Belgrade, Bratislava, Budapest, Ljubljana, Prague change
15:30 - 17:00
|Avoiding Excessive Data Exposure through Microservice APIs|
|Documentation-as-code for Interface Control Document management in Systems of Systems: a Technical Action Research Study|
|To deprecate or to simply drop operations? An empirical study on the evolution of a large OpenAPI collection|
|ExpressO: From Express.js implementation code to OpenAPI interface descriptions|
Tools & Demos
|A Toolchain for Simulation Component Specification and Identification|
Tools & Demos
A: Sandro Koch Karlsruhe Institute of Technology (KIT)
Each paper is presented as a 5-minute pitch talk at the beginning. The rest of the session is a discussion.
After reaching the 3rd floor (either by elevator or the main staircase), turn right.