Department of Mathematics and Computer Science, Transilvania University of Brasov, 500036 Brașov, Romania.
Sensors (Basel). 2022 Dec 24;23(1):189. doi: 10.3390/s23010189.
The design and implementation of secure IoT platforms and software solutions represent both a required functional feature and a performance acceptance factor nowadays. This paper describes relevant cybersecurity problems considered during the proposed microservices architecture development. Service composition mechanisms and their security are affected by the underlying hardware components and networks. The overall speedup of the platforms, which are implemented using the new 5G networks, and the capabilities of new performant IoT devices may be wasted by an inadequate combination of authentication services and security mechanisms, by the architectural misplacing of the encryption services, or by the inappropriate subsystems scaling. Considering the emerging microservices platforms, the Spring Boot alternative is used to implement data generation services, IoT sensor reading services, IoT actuators control services, and authentication services, and ultimately assemble them into a secure microservices architecture. Furthermore, considering the designed architecture, relevant security aspects related to the medical and energy domains are analyzed and discussed. Based on the proposed architectural concept, it is shown that well-designed and orchestrated architectures that consider the proper security aspects and their functional influence can lead to stable and secure implementations of the end user's software platforms.
如今,安全的物联网平台和软件解决方案的设计和实现既是必需的功能特性,也是性能验收因素。本文描述了在提出的微服务架构开发过程中考虑的相关网络安全问题。服务组合机制及其安全性受底层硬件组件和网络的影响。使用新的 5G 网络实现的平台的整体加速以及新的高性能物联网设备的功能可能会因身份验证服务和安全机制的组合不当、加密服务的架构位置不当或子系统的缩放不当而浪费。考虑到新兴的微服务平台,使用 Spring Boot 替代方案来实现数据生成服务、物联网传感器读取服务、物联网执行器控制服务和身份验证服务,并最终将它们组装成安全的微服务架构。此外,考虑到所设计的架构,还分析和讨论了与医疗和能源领域相关的相关安全方面。基于所提出的架构概念,表明精心设计和协调的架构考虑了适当的安全方面及其功能影响,可以为最终用户的软件平台的稳定和安全实现提供指导。
