Thesis in external company
Reference persons RICCARDO SISTO
Thesis type THEORETICAL/EXPERIMENTAL
Description With the diffusion of the new microservices-based development paradigm, the new need of securing microservices in their ecosystems arises, not only with respect to the incoming traffic (load balancing, rate-limiting, authentication and authorization policies), but also internally (intra-pod security). As the complexity of business logic entails multi-team management of microservices, it is necessary to segregate traffic in between specific microservices by means of proper security logic. A possible solution is the adoption of a Service Mesh, a software layer that enables security and observability logics (traffic encryption between certain services, route definition, etc.) in a cluster of microservices. The goal of the thesis is to study how this concept and a zero-trust architecture can be implemented by means of Istio, and highlight pros and cons when this concept is introduced into an industrial context.
Required skills Programming, scripting, networking
Deadline 01/03/2022 PROPONI LA TUA CANDIDATURA