loading page

Security monitoring of microservice-based applications
  • Wei Zhang
Wei Zhang
Independent Researcher

Corresponding Author:[email protected]

Author Profile

Abstract

Microservice-based architecture is a relatively new paradigm of software development that has gained tremendous popularity recently. A microservice-based application comprises multiple relatively small independent functional components (microservices) that interact to accomplish a sophisticated function. Microservices enable agile development and deployment of applications and enhanced scalability and resiliency. However, microservices-based systems have more significant security concerns than traditional monolithic systems. In this article, we discuss the various security loopholes of a microservice-based architecture and how these diverse components increase the attack surface of the aggregate framework. This article also proposes a machine learning (ML) based behavioral analysis framework that analyzes the network traffic and API calls to detect flaws and vulnerabilities in the microservice architecture to overcome these challenges. Prior research has demonstrated the potential of network monitoring to secure microservice-based cloud applications. However, they used hand-designed policies to enforce security compliance. Manually designed policies have their drawbacks. This article discusses these challenges and proposes a novel ML-based pattern recognition to automate the manual definition of policies. ML-based attack detection techniques have achieved stateof-the-art performance in various cybersecurity applications like malware detection and vulnerability detection. However, security monitoring of microservice-based applications is still a developing research field that has not experienced the impact of ML yet. This article proposes implementing supervised ML-based security monitoring of microservice-based applications based on Seeker to detect vulnerability exploits in real-time.