Secure Microservices Deployment for Fog Computing Services in a Remote Office
Favian Dewanta
Abstract
Microservices deployment remains insecure because it relies on the knowledge of microservices' users against security aspects in some particular fog computing networks. As a consequence, the users need to carefully assess the vulnerability of the micorservices' deployment. In addition, the users have to ensure that transactions between microservices and fog computing server should be verified and protected against any potential attacks. This paper proposes secure microservices deployment for environment of fog computing services by establishing trusted and authenticated communication channel prior to engaging any transactions among all entities. The proposed method is lightweight due to employing one-way hash function and XOR operation. Eventually, performance evaluation shows that the method is secure against replay attack, offline guessing attack, impersonation attack, and ephemeral secret leakage attack. Moreover, the proposed scheme is more lightweight in terms of communication and computational cost with respect to the J-PAKE algorithm.