Security in Cloud-Native Services: A Survey-Reference-Cited by-同舟云学术

Security in Cloud-Native Services: A Survey

Published:2023-10-26 Issue:4 Volume:3 Page:758-793
ISSN:2624-800X
Container-title:Journal of Cybersecurity and Privacy
language:en
Short-container-title:JCP

Author:

Theodoropoulos Theodoros¹^ORCID,Rosa Luis²^ORCID,Benzaid Chafika³^ORCID,Gray Peter⁴,Marin Eduard⁵,Makris Antonios¹^ORCID,Cordeiro Luis²^ORCID,Diego Ferran⁵,Sorokin Pavel⁴,Girolamo Marco Di⁶^ORCID,Barone Paolo⁶,Taleb Tarik³^ORCID,Tserpes Konstantinos¹^ORCID

Affiliation:

1. Department of Informatics and Telematics, Harokopio University of Athens, 17671 Athens, Greece

2. OneSource, 3030-384 Coimbra, Portugal

3. Faculty of Information Technology and Electrical Engineering, University of Oulu, 90570 Oulu, Finland

4. CloudSigma, 6300 Zug, Switzerland

5. Telefonica Research, 28050 Madrid, Spain

6. Hewlett Packard Enterprise, 20063 Milan, Italy

Abstract

Cloud-native services face unique cybersecurity challenges due to their distributed infrastructure. They are susceptible to various threats like malware, DDoS attacks, and Man-in-the-Middle (MITM) attacks. Additionally, these services often process sensitive data that must be protected from unauthorized access. On top of that, the dynamic and scalable nature of cloud-native services makes it difficult to maintain consistent security, as deploying new instances and infrastructure introduces new vulnerabilities. To address these challenges, efficient security solutions are needed to mitigate potential threats while aligning with the characteristics of cloud-native services. Despite the abundance of works focusing on security aspects in the cloud, there has been a notable lack of research that is focused on the security of cloud-native services. To address this gap, this work is the first survey that is dedicated to exploring security in cloud-native services. This work aims to provide a comprehensive investigation of the aspects, features, and solutions that are associated with security in cloud-native services. It serves as a uniquely structured mapping study that maps the key aspects to the corresponding features, and these features to numerous contemporary solutions. Furthermore, it includes the identification of various candidate open-source technologies that are capable of supporting the realization of each explored solution. Finally, it showcases how these solutions can work together in order to establish each corresponding feature. The insights and findings of this work can be used by cybersecurity professionals, such as developers and researchers, to enhance the security of cloud-native services.

Funder

EU’s Horizon 2020

Publisher

MDPI AG

Subject

General Earth and Planetary Sciences,General Environmental Science

Link

https://www.mdpi.com/2624-800X/3/4/34/pdf

Reference157 articles.

1. Cloud-native applications;Gannon;IEEE Cloud Comput.,2017

2. Huang, S.Y., Chen, C.Y., Chen, J.Y., and Chao, H.C. (2023). A Survey on Resource Management for Cloud Native Mobile Computing: Opportunities and Challenges. Symmetry, 15.

3. DevOps critical succes factors—A systematic literature review;Azad;Inf. Softw. Technol.,2023

4. Beyond the Buzz: A Journey Through CI/CD Principles and Best Practices;Thatikonda;Eur. J. Theor. Appl. Sci.,2023

5. Kumar, M., Mishra, S., Lathar, N., and Singh, P. (2023). Sentiment Analysis and Deep Learning: Proceedings of ICSADL 2022, Springer Nature Singapore.