Securing APIs in a microservice architecture
Microservices have quickly become a popular way to develop software systems. But as organizations implement production systems based on microservices, they are recognizing the importance and complexity of securing microservices. Rob Wilson shares techniques for securing microservice APIs and details a practical multiplatform model that you can use for securing your own microservice environments.
| Talk Title | Securing APIs in a microservice architecture |
| Speakers | Rob Wilson (SailPoint Technologies) |
| Conference | O’Reilly Software Architecture Conference |
| Conf Tag | Engineering the Future of Software |
| Location | London, United Kingdom |
| Date | October 29-31, 2018 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Microservices have quickly become a popular way to develop software systems. But as organizations implement production systems based on microservices, they are recognizing the importance and complexity of securing microservices. Luckily, there are a number of techniques for controlling access to web APIs in a microservice architecture, including network controls, cryptographic methods, and platform-based capabilities. Rob Wilson shares techniques for securing microservice APIs and offers an overview of the DHARMA model, a practical multiplatform model that you can use for securing your own microservice environments, as outlined in Securing Microservice APIs, a report he coauthored with Matt McLarty and Scott Morrison. The DHARMA model can be implemented on any platform or across multiple platforms in order to provide cohesive security over a network of microservices. Rob concludes by explaining how to extend the DHARMA model to include other types of microservice APIs.
