IRIS

The characteristics of cloud native applications - like the inherent decentralization, the intricate threat model, and the presence of highly dynamic and interconnected microservices - bring forth a number of challenges to the security of the (often sensitive) data exchanged in cloud native applications. Besides, data security is not absolute, and its achievement must be mindful of relevant performance and usability aspects (e.g., minimal overhead, transparency, automation, interoperability with external services). In this work-in-progress paper, we discuss the use of Cryptographic Access Control (CAC) in sidecar proxies as a means to guarantee End-to-End (E2E) protection - in terms of confidentiality and integrity - for communications in cloud native applications, as well as usability and adaptable performance.

Work-in-Progress: A Sidecar Proxy for Usable and Performance-Adaptable End-to-End Protection of Communications in Cloud Native Applications / Berlato, Stefano; Rizzi, Matteo; Franzil, Matteo; Cretti, Silvio; De Matteis, Pietro; Carbone, Roberto. - (2024), pp. 706-711. ( 9th IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2024 University of Vienna's Faculty of Informatics, aut 2024) [10.1109/eurospw61312.2024.00086].

Work-in-Progress: A Sidecar Proxy for Usable and Performance-Adaptable End-to-End Protection of Communications in Cloud Native Applications

Berlato, Stefano
;Rizzi, Matteo;Franzil, Matteo;
2024-01-01

Abstract

The characteristics of cloud native applications - like the inherent decentralization, the intricate threat model, and the presence of highly dynamic and interconnected microservices - bring forth a number of challenges to the security of the (often sensitive) data exchanged in cloud native applications. Besides, data security is not absolute, and its achievement must be mindful of relevant performance and usability aspects (e.g., minimal overhead, transparency, automation, interoperability with external services). In this work-in-progress paper, we discuss the use of Cryptographic Access Control (CAC) in sidecar proxies as a means to guarantee End-to-End (E2E) protection - in terms of confidentiality and integrity - for communications in cloud native applications, as well as usability and adaptable performance.
2024
2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
10662 LOS VAQUEROS CIRCLE, PO BOX 3014, LOS ALAMITOS, CA 90720-1264 USA
Institute of Electrical and Electronics Engineers Inc.
2-s2.0-85202997384
WOS:001302657400081
Berlato, Stefano; Rizzi, Matteo; Franzil, Matteo; Cretti, Silvio; De Matteis, Pietro; Carbone, Roberto
Work-in-Progress: A Sidecar Proxy for Usable and Performance-Adaptable End-to-End Protection of Communications in Cloud Native Applications / Berlato, Stefano; Rizzi, Matteo; Franzil, Matteo; Cretti, Silvio; De Matteis, Pietro; Carbone, Roberto. - (2024), pp. 706-711. ( 9th IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2024 University of Vienna's Faculty of Informatics, aut 2024) [10.1109/eurospw61312.2024.00086].
File in questo prodotto:
File Dimensione Formato  
Work-in-Progress_A_Sidecar_Proxy_for_Usable_and_Performance-Adaptable_End-to-End_Protection_of_Communications_in_Cloud_Native_Applications.pdf

Solo gestori archivio

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 788.59 kB
Formato Adobe PDF
  Visualizza/Apri
788.59 kB Adobe PDF   Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/473710
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 2
  • ???jsp.display-item.citation.isi??? 2
  • OpenAlex 1
social impact