EnglishSvenskaNorsk
Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Introducing model-based tool support for applying zero-trust security for microservices at a bank
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.ORCID-id: 0000-0003-3712-7454
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.ORCID-id: 0000-0003-3290-2597
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.ORCID-id: 0000-0001-9044-5836
2024 (engelsk)Inngår i: BIR-WS 2024, BIR 2024 Workshops and Doctoral Consortium / [ed] Ana-Maria Ghiran; Anne Gutschmidt; Ulf Seigerroth; Kurt Sandkuhl; Marite Kirikova; Peter Forbrig; Charles Møller; Robert Andrei Buchmann; Emanuele Laurenzi; Björn Johansson; Filip Vencovský, 2024, s. 180-188Konferansepaper, Publicerat paper (Fagfellevurdert)
Abstract [en]

Zero-trust security involves designing, coding, and deploying applications, assuming that threats may exist both inside and outside the application environment. Developing applications using a zero-trust design is complex since it requires internal development teams to understand and apply zero-trust principles throughout the development process. This is especially crucial for microservice architectures, where many independent teams develop services. However, enforcing and teaching security principles may lead to a formal process, focusing on documentation and auditing rather than agile development. In this paper, we describe a pragmatic use of a modeling tool that is tied to a knowledge repository and contains means for team communication. The tool supports a systemic way of developing zero-trust architectures, catering to both programming needs and the desire to improve the overall development process. The paper concludes with lessons learned from a bank case study where the tool has been developed and utilised for microservices development.
sted, utgiver, år, opplag, sider
2024. s. 180-188
Serie
CEUR Workshop Proceedings, E-ISSN 1613-0073
Emneord [en]
Zero-trust architecture, Modeling tool, STRIDE analysis, VSM
HSV kategori
Forskningsprogram
data- och systemvetenskap
Identifikatorer
URN: urn:nbn:se:su:diva-235704OAI: oai:DiVA.org:su-235704DiVA, id: diva2:1914449
Konferanse
BIR-WS 2024: BIR 2024 Workshops and Doctoral Consortium, 23rd International Conference on Perspectives in Business Informatics Research (BIR 2024), September 11, 2024, Prague, Czech Republic.
Tilgjengelig fra: 2024-11-19 Laget: 2024-11-19 Sist oppdatert: 2024-11-20bibliografisk kontrollert

Open Access i DiVA

Fulltekst mangler i DiVA

Andre lenker

Länk till publikationen

Person

Baldwin, DonaldHenkel, MartinPerjons, Erik

Søk i DiVA

Av forfatter/redaktør
Baldwin, DonaldHenkel, MartinPerjons, Erik
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar

urn-nbn

Altmetric

urn-nbn
Totalt: 59 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
Stockholms universitetsbibliotek
|
DiVA portal
|
DiVA Kontakt
|
DiVA Logga in