NIST publishes security guidance for microservices deployment

NIST published a paper, Attribute-based Access Control (ABAC) for Microservices-based Applications using a Service Mesh, to provide guidance for building a deployment model that meets a variety of requirements. Cloud-native applications now consist of loosely coupled components (microservices), with all application services (e.g., authentication, authorization, load balancing, etc.) provided through a dedicated infrastructure (service mesh) independent of the application code.

The requirements of the authorization service in this environment are: (a) to build the concept of zero trust by enabling all authorizations for every interaction to be based on the identity of the user, service, or device irrespective of the location or nature of the requesting service and (b) a robust access control mechanism based on an expressive access control model such as Attribute-based Access Control (ABAC) that can be used to express a wide set of policies and is scalable in terms of the user base, objects (resources), and deployment environment.

The security assurance provided by the deployment, the supporting infrastructure needed, and the advantages of the Next Generation Access Control (NGAC), the ABAC model representation developed at NIST that is used in the deployment, are also discussed in the paper.

Read the full report

Related Posts

Previous Post
IPE Real Estate: Mass PRIM to include repo and Total Return Swaps for real estate debt financing
Next Post
LCH and Eurex look to sponsored repo for the right reasons

Fill out this field
Fill out this field
Please enter a valid email address.


Reset password

Create an account