Towards security mechanisms for an industrial microservice-oriented architecture

Detalhes bibliográficos
Autor(a) principal: Pontarolli, Ricardo P.
Data de Publicação: 2021
Outros Autores: Bigheti, Jeferson A., de Sá, Lucas Borges Rodrigues [UNESP], Godoy, Eduardo P. [UNESP]
Tipo de documento: Artigo de conferência
Idioma: eng
Título da fonte: Repositório Institucional da UNESP
Texto Completo: http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415
http://hdl.handle.net/11449/222504
Resumo: Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services).
id UNSP_c7cd419da861d4ed92c2af5cd598fd80
oai_identifier_str oai:repositorio.unesp.br:11449/222504
network_acronym_str UNSP
network_name_str Repositório Institucional da UNESP
repository_id_str 2946
spelling Towards security mechanisms for an industrial microservice-oriented architectureAuthenticationGuard serviceIndustrial internet of thingsIndustry 4.0Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services).Fundação de Amparo à Pesquisa do Estado de São Paulo (FAPESP)Federal Institute of São Paulo (IFSP), SPNational Service of Industrial Training (Senai), SPSão Paulo State University (Unesp), SPSão Paulo State University (Unesp), SPFAPESP: 2018/19984-4Federal Institute of São Paulo (IFSP)National Service of Industrial Training (Senai)Universidade Estadual Paulista (UNESP)Pontarolli, Ricardo P.Bigheti, Jeferson A.de Sá, Lucas Borges Rodrigues [UNESP]Godoy, Eduardo P. [UNESP]2022-04-28T19:45:10Z2022-04-28T19:45:10Z2021-08-15info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/conferenceObject679-685http://dx.doi.org/10.1109/INDUSCON51756.2021.95294152021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685.http://hdl.handle.net/11449/22250410.1109/INDUSCON51756.2021.95294152-s2.0-85115860679Scopusreponame:Repositório Institucional da UNESPinstname:Universidade Estadual Paulista (UNESP)instacron:UNESPeng2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedingsinfo:eu-repo/semantics/openAccess2022-04-28T19:45:10Zoai:repositorio.unesp.br:11449/222504Repositório InstitucionalPUBhttp://repositorio.unesp.br/oai/requestopendoar:29462022-04-28T19:45:10Repositório Institucional da UNESP - Universidade Estadual Paulista (UNESP)false
dc.title.none.fl_str_mv Towards security mechanisms for an industrial microservice-oriented architecture
title Towards security mechanisms for an industrial microservice-oriented architecture
spellingShingle Towards security mechanisms for an industrial microservice-oriented architecture
Pontarolli, Ricardo P.
Authentication
Guard service
Industrial internet of things
Industry 4.0
title_short Towards security mechanisms for an industrial microservice-oriented architecture
title_full Towards security mechanisms for an industrial microservice-oriented architecture
title_fullStr Towards security mechanisms for an industrial microservice-oriented architecture
title_full_unstemmed Towards security mechanisms for an industrial microservice-oriented architecture
title_sort Towards security mechanisms for an industrial microservice-oriented architecture
author Pontarolli, Ricardo P.
author_facet Pontarolli, Ricardo P.
Bigheti, Jeferson A.
de Sá, Lucas Borges Rodrigues [UNESP]
Godoy, Eduardo P. [UNESP]
author_role author
author2 Bigheti, Jeferson A.
de Sá, Lucas Borges Rodrigues [UNESP]
Godoy, Eduardo P. [UNESP]
author2_role author
author
author
dc.contributor.none.fl_str_mv Federal Institute of São Paulo (IFSP)
National Service of Industrial Training (Senai)
Universidade Estadual Paulista (UNESP)
dc.contributor.author.fl_str_mv Pontarolli, Ricardo P.
Bigheti, Jeferson A.
de Sá, Lucas Borges Rodrigues [UNESP]
Godoy, Eduardo P. [UNESP]
dc.subject.por.fl_str_mv Authentication
Guard service
Industrial internet of things
Industry 4.0
topic Authentication
Guard service
Industrial internet of things
Industry 4.0
description Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services).
publishDate 2021
dc.date.none.fl_str_mv 2021-08-15
2022-04-28T19:45:10Z
2022-04-28T19:45:10Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/conferenceObject
format conferenceObject
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415
2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685.
http://hdl.handle.net/11449/222504
10.1109/INDUSCON51756.2021.9529415
2-s2.0-85115860679
url http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415
http://hdl.handle.net/11449/222504
identifier_str_mv 2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685.
10.1109/INDUSCON51756.2021.9529415
2-s2.0-85115860679
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv 679-685
dc.source.none.fl_str_mv Scopus
reponame:Repositório Institucional da UNESP
instname:Universidade Estadual Paulista (UNESP)
instacron:UNESP
instname_str Universidade Estadual Paulista (UNESP)
instacron_str UNESP
institution UNESP
reponame_str Repositório Institucional da UNESP
collection Repositório Institucional da UNESP
repository.name.fl_str_mv Repositório Institucional da UNESP - Universidade Estadual Paulista (UNESP)
repository.mail.fl_str_mv
_version_ 1803649506483372032

Registros relacionados