An authentication : authorization approach for a microservices architecture
مقدم أطروحة جامعية
مشرف أطروحة جامعية
الجامعة
جامعة بيرزيت
الكلية
كلية الهندسة و التكنولوجيا
القسم الأكاديمي
دائرة هندسة أنظمة الحاسوب
دولة الجامعة
فلسطين (الضفة الغربية)
الدرجة العلمية
ماجستير
تاريخ الدرجة العلمية
2020
الملخص الإنجليزي
Microservices architecture is an evolving trend in software engineering that enables building large scale, highly scalable, available and flexible systems.
However, microservices are not a silver bullet, they have their challenges and complexities.
One of these main challenges is security.
State-of-the-art shows that microservices security and their aspects are an important challenge that is not well researched and needs more attention.
Among these aspects are authentication and authorization.
For microservices applications to be secure, a proper authentication and fine-grained authorization framework should be in place.
In this research, we propose a new security framework for authentication and fine-grained authorization (MSFAA) that relies on the use and coordination of a set of security standards and frameworks to tackle the security requirements in a microservices architecture.
Our solution is based on a combination of OAuth2, JWT and Open Policy Agent (OPA).
To evaluate our results, we adopted an industrial motivating use case, the Applicant Tracking System (ATS).
On top of it, we implemented our security framework and evaluated the effectiveness of the proposed framework.
To study the performance implications of our security framework, we designed and conducted an experiment in which we measured the overhead caused by the proposed security framework in terms of API latency.
Our results show that the performance overhead of the security framework is around 12%.
We believe that this is an acceptable overhead due to two main reasons.
The first reason is that security is an essential and critical aspect in a microservices systems.
The second reason is that microservices are tolerant to API latency due to their distributed nature.
التخصصات الرئيسية
تكنولوجيا المعلومات وعلم الحاسوب
عدد الصفحات
130
قائمة المحتويات
Table of contents.
Abstract.
Chapter One : Introduction.
Chapter Two : Background.
Chapter Three : Literature review.
Chapter Four : Microservices security framework for authentication and fine grained authorization (MSFAA).
Chapter Five : Methodology and experimental design.
Chapter Six : Experiment.
Chapter Seven : Discussion.
Chapter Eight : Conclusions and future work.
References.
نمط استشهاد جمعية علماء النفس الأمريكية (APA)
Aruri, Muhammad. (2020). An authentication : authorization approach for a microservices architecture. (Master's theses Theses and Dissertations Master). Birzeit University, Palestine (West Bank)
https://search.emarefa.net/detail/BIM-1429203
نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)
Aruri, Muhammad. An authentication : authorization approach for a microservices architecture. (Master's theses Theses and Dissertations Master). Birzeit University. (2020).
https://search.emarefa.net/detail/BIM-1429203
نمط استشهاد الجمعية الطبية الأمريكية (AMA)
Aruri, Muhammad. (2020). An authentication : authorization approach for a microservices architecture. (Master's theses Theses and Dissertations Master). Birzeit University, Palestine (West Bank)
https://search.emarefa.net/detail/BIM-1429203
لغة النص
الإنجليزية
نوع البيانات
رسائل جامعية
رقم السجل
BIM-1429203
قاعدة معامل التأثير والاستشهادات المرجعية العربي "ارسيف Arcif"
أضخم قاعدة بيانات عربية للاستشهادات المرجعية للمجلات العلمية المحكمة الصادرة في العالم العربي
منصة "معرفة" للكتاب العربي الجامعي الرقمي 
تقوم هذه الخدمة بالتحقق من التشابه أو الانتحال في الأبحاث والمقالات العلمية والأطروحات الجامعية والكتب والأبحاث باللغة العربية، وتحديد درجة التشابه أو أصالة الأعمال البحثية وحماية ملكيتها الفكرية. تعرف اكثر
