Towards security mechanisms for an industrial microservice-oriented architecture
Autor(a) principal: | |
---|---|
Data de Publicação: | 2021 |
Outros Autores: | , , |
Tipo de documento: | Artigo de conferência |
Idioma: | eng |
Título da fonte: | Repositório Institucional da UNESP |
Texto Completo: | http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415 http://hdl.handle.net/11449/222504 |
Resumo: | Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services). |
id |
UNSP_c7cd419da861d4ed92c2af5cd598fd80 |
---|---|
oai_identifier_str |
oai:repositorio.unesp.br:11449/222504 |
network_acronym_str |
UNSP |
network_name_str |
Repositório Institucional da UNESP |
repository_id_str |
2946 |
spelling |
Towards security mechanisms for an industrial microservice-oriented architectureAuthenticationGuard serviceIndustrial internet of thingsIndustry 4.0Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services).Fundação de Amparo à Pesquisa do Estado de São Paulo (FAPESP)Federal Institute of São Paulo (IFSP), SPNational Service of Industrial Training (Senai), SPSão Paulo State University (Unesp), SPSão Paulo State University (Unesp), SPFAPESP: 2018/19984-4Federal Institute of São Paulo (IFSP)National Service of Industrial Training (Senai)Universidade Estadual Paulista (UNESP)Pontarolli, Ricardo P.Bigheti, Jeferson A.de Sá, Lucas Borges Rodrigues [UNESP]Godoy, Eduardo P. [UNESP]2022-04-28T19:45:10Z2022-04-28T19:45:10Z2021-08-15info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/conferenceObject679-685http://dx.doi.org/10.1109/INDUSCON51756.2021.95294152021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685.http://hdl.handle.net/11449/22250410.1109/INDUSCON51756.2021.95294152-s2.0-85115860679Scopusreponame:Repositório Institucional da UNESPinstname:Universidade Estadual Paulista (UNESP)instacron:UNESPeng2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedingsinfo:eu-repo/semantics/openAccess2022-04-28T19:45:10Zoai:repositorio.unesp.br:11449/222504Repositório InstitucionalPUBhttp://repositorio.unesp.br/oai/requestopendoar:29462024-08-05T15:48:40.788974Repositório Institucional da UNESP - Universidade Estadual Paulista (UNESP)false |
dc.title.none.fl_str_mv |
Towards security mechanisms for an industrial microservice-oriented architecture |
title |
Towards security mechanisms for an industrial microservice-oriented architecture |
spellingShingle |
Towards security mechanisms for an industrial microservice-oriented architecture Pontarolli, Ricardo P. Authentication Guard service Industrial internet of things Industry 4.0 |
title_short |
Towards security mechanisms for an industrial microservice-oriented architecture |
title_full |
Towards security mechanisms for an industrial microservice-oriented architecture |
title_fullStr |
Towards security mechanisms for an industrial microservice-oriented architecture |
title_full_unstemmed |
Towards security mechanisms for an industrial microservice-oriented architecture |
title_sort |
Towards security mechanisms for an industrial microservice-oriented architecture |
author |
Pontarolli, Ricardo P. |
author_facet |
Pontarolli, Ricardo P. Bigheti, Jeferson A. de Sá, Lucas Borges Rodrigues [UNESP] Godoy, Eduardo P. [UNESP] |
author_role |
author |
author2 |
Bigheti, Jeferson A. de Sá, Lucas Borges Rodrigues [UNESP] Godoy, Eduardo P. [UNESP] |
author2_role |
author author author |
dc.contributor.none.fl_str_mv |
Federal Institute of São Paulo (IFSP) National Service of Industrial Training (Senai) Universidade Estadual Paulista (UNESP) |
dc.contributor.author.fl_str_mv |
Pontarolli, Ricardo P. Bigheti, Jeferson A. de Sá, Lucas Borges Rodrigues [UNESP] Godoy, Eduardo P. [UNESP] |
dc.subject.por.fl_str_mv |
Authentication Guard service Industrial internet of things Industry 4.0 |
topic |
Authentication Guard service Industrial internet of things Industry 4.0 |
description |
Service and Microservice-oriented architectures (MOA) are being applied in different areas including Industry 4.0 and Industrial Internet of Things. Even though there are many advantages of using MOA in industrial applications, such as the vertical interoperability, there is also an important concern about how to protect these services at different levels and to provide a secure service communication. The security aspect in MOA requires specific mechanisms due to the service interactions in these architectures. This paper investigates proper security mechanisms for industrial SOA and MOA. Several security mechanisms, such as HTTPS for message encryption and authentication, authentication in the transporter service and a guard service that controls the access among services, are implemented and tested in a MOA. A discussion about the benefits of the security mechanisms is presented as well as an analysis of the impact on the MOA communication performance due to these mechanisms' inclusion. Experimental results obtained in a MOA-based process control plant show that there is tradeoff between adding security mechanisms or obtaining better communication performance for the MOA in terms of service composition cycle time (execution time of required sequence of services). |
publishDate |
2021 |
dc.date.none.fl_str_mv |
2021-08-15 2022-04-28T19:45:10Z 2022-04-28T19:45:10Z |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/conferenceObject |
format |
conferenceObject |
status_str |
publishedVersion |
dc.identifier.uri.fl_str_mv |
http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415 2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685. http://hdl.handle.net/11449/222504 10.1109/INDUSCON51756.2021.9529415 2-s2.0-85115860679 |
url |
http://dx.doi.org/10.1109/INDUSCON51756.2021.9529415 http://hdl.handle.net/11449/222504 |
identifier_str_mv |
2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings, p. 679-685. 10.1109/INDUSCON51756.2021.9529415 2-s2.0-85115860679 |
dc.language.iso.fl_str_mv |
eng |
language |
eng |
dc.relation.none.fl_str_mv |
2021 14th IEEE International Conference on Industry Applications, INDUSCON 2021 - Proceedings |
dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
eu_rights_str_mv |
openAccess |
dc.format.none.fl_str_mv |
679-685 |
dc.source.none.fl_str_mv |
Scopus reponame:Repositório Institucional da UNESP instname:Universidade Estadual Paulista (UNESP) instacron:UNESP |
instname_str |
Universidade Estadual Paulista (UNESP) |
instacron_str |
UNESP |
institution |
UNESP |
reponame_str |
Repositório Institucional da UNESP |
collection |
Repositório Institucional da UNESP |
repository.name.fl_str_mv |
Repositório Institucional da UNESP - Universidade Estadual Paulista (UNESP) |
repository.mail.fl_str_mv |
|
_version_ |
1808128565282078720 |