A Novel Approach for Security Analysis in Microservices using Graph Neural NetworksNEMI
Microservice architectures, as opposed to traditional monolithic ones, require an entirely different approach to identify vulnerabilities, anomalies and other security issues. This is primarily due to the increased attack surface they expose through APIs. A comprehensive analysis of how anomalies in one microservice may affect others requires a detailed understanding of the structure of the entire application. This knowledge can drive the software architecture to be followed in production applications - particularly those that store and manipulate critical information where vulnerabilities can have a significant business or privacy impact. With this motivation, this paper proposes MicroSecPost, a GNN based microservices security analysis approach. MicroSecPost models a microservice based application as a graph that combines data from both static and dynamic analysis, representing each service as a node and service-to-service interactions as edges. MicroSecPost uses Graph Neural Networks(GNNs) on this graph representation to assign a vulnerability score to each node, predict edge features and score the entire application based on the scores of individual nodes and edges. MicroSecPost aims to help understand the existing security posture of a microservice based application and determine where possible improvements can be made.
Thu 6 JunDisplayed time zone: Chennai, Kolkata, Mumbai, New Delhi change
14:00 - 15:30 | Session 3B: Ethics, Security, Trust and ResponsibilityNew and Emerging Ideas / Research Papers Session Chair: Patricia Lago, Vrije Universiteit Amsterdam | ||
14:00 20mResearch paper | Towards Anthropomorphic Trust Management for Digital SocietyNEMI New and Emerging Ideas | ||
14:20 20mResearch paper | An architecture for ethics-based negotiation in the decision-making of intelligent autonomous systemsNEMI New and Emerging Ideas A: Mashal Afzal Memon University of L’Aquila, Italy, A: Gian Luca Scoccia Gran Sasso Science Institute, A: Marco Autili University of L'Aquila, Italy, A: Paola Inverardi University of L'Aquila | ||
14:40 15mShort-paper | Towards Responsible Generative AI: A Reference Architecture for Designing Foundation Model based AgentsShort Paper Research Papers A: Qinghua Lu Data61, CSIRO, A: Liming Zhu The University of New South Wales, A: Xiwei (Sherry) Xu Data61, CSIRO, A: Zhenchang Xing CSIRO’s Data61; Australian National University, A: Stefan Harrer , A: Jon Whittle CSIRO's Data61 and Monash University | ||
14:55 15mResearch paper | A Novel Approach for Security Analysis in Microservices using Graph Neural NetworksNEMI New and Emerging Ideas A: Chitra Babu , A: Akil Karthikeyan Sri Sivasubramaniya Nadar College of Engineering, A: Nandakishor Velu , A: Kaarthik Sivakumar , A: Abhishek Pathak | ||
15:10 15mResearch paper | Towards a Single Source of Truth with a Freely Shareable DeltachainNEMI New and Emerging Ideas | ||