Security in microservice architecture

Author: Davit Martkoplishvili
Keywords: firewall, microservices, security, jwt token
Annotation:

The microservice architecture allows different parts of the application to be independently developed, deployed and scaled, so there is a tendency to develop cloud applications. However, it does have complex security issues. Firstly, the complexity of a network with a large number of microservices significantly increases the complexity of monitoring the security of the entire application. Secondly, microservices are often designed to be completely trustworthy of each other, so compromising one microservice can ruin an entire application. The problems are amplified by the cloud as applications no longer have full control over their networks. As we can see the problem is quite urgent because the popularity of microservices is increasing day by day because of its advantages so this problem is becoming more and more topical, we have already mentioned that the popularity of microservices is growing so many people are working to solve this problem. There are many standalone applications that try to solve this problem, for example OAuth which is one of the main players in authorization and authentication that allows us to access our information securely and its main focus is only security and it is so good that it was included in spring framework recently and integration process is still going on. In this paper It is described the safety methods, good approaches and problem solving methods. There is also a touch on specific standards and architecture as well as methods of microservice application that will be protected from both external and internal threats, also a significant portion of the data will be encrypted in case of data leak.