Papers Papers/2022 Papers Papers/2022



Authors: Philip Wizenty 1 ; Francisco Ponce 2 ; 3 ; Florian Rademacher 1 ; Jacopo Soldani 4 ; Hernán Astudillo 2 ; 3 ; Antonio Brogi 4 and Sabine Sachweh 1

Affiliations: 1 IDiAL Institute, University of Applied Sciences and Arts Dortmund, Germany ; 2 Universidad Técnica Federico Santa María, Valparaíso, Chile ; 3 ITiSB, Universidad Andrés Bello, Viña del Mar, Chile ; 4 University of Pisa, Pisa, Italy

Keyword(s): Microservice Architecture, Model-Driven Engineering, Security, Bad Smells, Refactoring.

Abstract: Resolving security issues in microservice applications is crucial, as many IT companies rely on microservices to deliver their core businesses. Security smells denote possible symptoms of such security issues. However, detecting security smells and reasoning on how to resolve them through refactoring is complex and costly, mainly because of the intrinsic complexity of microservice architectures. This paper presents the first idea towards supporting a model-driven resolution of microservices’ security smell. The proposed method relies on LEMMA to model microservice applications by suitably extending LEMMA itself to enable the modeling of microservices’ security aspects. The proposed method then enables processing LEMMA models to automatically detect security smells in modeled microservice applications and recommend the refactorings known to resolve the identified security smells. To assess the feasibility of the proposed method, this paper also introduces a proof-of-concept implementa tion of the proposed LEMMA-based, automated microservices’ security smell detection and refactoring. (More)


Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Wizenty, P.; Ponce, F.; Rademacher, F.; Soldani, J.; Astudillo, H.; Brogi, A. and Sachweh, S. (2023). Towards Resolving Security Smells in Microservices, Model-Driven. In Proceedings of the 18th International Conference on Software Technologies - ICSOFT; ISBN 978-989-758-665-1; ISSN 2184-2833, SciTePress, pages 15-26. DOI: 10.5220/0012049800003538

author={Philip Wizenty. and Francisco Ponce. and Florian Rademacher. and Jacopo Soldani. and Hernán Astudillo. and Antonio Brogi. and Sabine Sachweh.},
title={Towards Resolving Security Smells in Microservices, Model-Driven},
booktitle={Proceedings of the 18th International Conference on Software Technologies - ICSOFT},


JO - Proceedings of the 18th International Conference on Software Technologies - ICSOFT
TI - Towards Resolving Security Smells in Microservices, Model-Driven
SN - 978-989-758-665-1
IS - 2184-2833
AU - Wizenty, P.
AU - Ponce, F.
AU - Rademacher, F.
AU - Soldani, J.
AU - Astudillo, H.
AU - Brogi, A.
AU - Sachweh, S.
PY - 2023
SP - 15
EP - 26
DO - 10.5220/0012049800003538
PB - SciTePress