Visible to the public Attribute-Based Access Control in Service Mesh

TitleAttribute-Based Access Control in Service Mesh
Publication TypeConference Paper
Year of Publication2019
AuthorsPonomarev, Kirill Yu.
Conference Name2019 Dynamics of Systems, Mechanisms and Machines (Dynamics)
KeywordsAccess Control, attribute-based encryption, Attribute-based encryption methods, authentication, authorisation, Buildings, cloud computing, cryptography, Encryption, fine-grained access control, highly dynamic environment, Human Behavior, interservice interaction, modern cloud applications, policy-based governance, Protocols, pubcrawl, Scalability, service discovery, Service Mesh, service mesh mechanisms, software infrastructure layer, Temperature sensors
AbstractModern cloud applications can consist of hundreds of services with thousands of instances. In order to solve the problems of interservice interaction in this highly dynamic environment, an additional software infrastructure layer called service mesh is introduced. This layer provides a single point of interaction with the network for each service. Service mesh mechanisms are responsible for: load balancing, processing of network requests, service discovery, authentication, authorization, etc. However, the following questions arise: complex key management, fine-grained access control at the application level, confidentiality of data and many-to-many communications. It is possible to solve these problems with Attribute-based encryption (ABE) methods. This paper presents an abstract model of a service mesh and a protocol for interservice communications, which uses ABE for authorization and confidentiality of the messages.
Citation Keyponomarev_attribute-based_2019