Abstract [eng] |
Modern and contemporary systems, the Internet of Things, are often large-scale and have a complex structure. To increase the reliability and availability of systems, together with the development of containerization technologies, the use of microservices architecture began. The autonomy and isolation of the services of this architecture made it possible to optimize the management and development of the fragmented system. As the number of systems based on microservices architecture grows, so do challenges related to the security of services and devices. Access control is one of the main security issues faced when designing and developing a system based on microservices architecture. Services are designed to trust requests that come from communicating services. This trust can be exploited to disrupt other services or devices if access control in one of the components of the microservices architecture is compromised. As the Internet of Things technology evolves, it increasingly uses small, constrained devices that also require adequate security and access control. For this reason, the goal of the paper is to propose a method that solves the current problems of access management in microservices architecture. After analyzing the microservices architecture and access management problems related to it, an access management method was proposed and designed, which solves the access management problem in an environment of limited resources. According to the requirements set out in the paper, a prototype was created and tested, and a study of the resource use and speed of the proposed access control method in the infrastructure was carried out. |