Dataciencia

Colección SciELO Chile

SST: A Tool to Support the Triage of Security Smells in Microservice Applications

Indexado

Scopus

SCOPUS_ID:85208635717

DOI

10.1007/S42979-024-03372-5

Año

2024

Tipo

Citas Totales

Autores Afiliación Chile

Instituciones Chile

% Participación
Internacional

Autores
Afiliación Extranjera

Instituciones
Extranjeras

Abstract

Microservice security smells denote possible symptoms of bad design decisions that may compromise the security of an application. Therefore, security smells should be carefully checked and possibly resolved by applying some refactorings. In this paper, we introduce SST (Security Smell Triager) an open-source tool that automates the triage of the possibly multiple instances of security smells affecting an existing microservice application, to support determining which instance is “more urgent” than others and should be considered first. SST also supports reasoning on whether/how to resolve a security smell instance through refactoring, by displaying the impact on quality attributes (like maintainability and performance efficiency) of both security smell instances and their refactoring. We also assess the usefulness of SST through a controlled experiment.

Métricas Externas

PlumX	Altmetric	Dimensions

Muestra métricas de impacto externas asociadas a la publicación. Para mayor detalle:

Plumx: https://plumanalytics.com/learn/about-metrics/
Altmetric: https://www.altmetric.com/about-altmetrics/what-are-altmetrics/
Dimensions: https://www.dimensions.ai/why-dimensions/

Disciplinas de Investigación

WOS
Sin Disciplinas

Scopus
Sin Disciplinas

SciELO
Sin Disciplinas

Muestra la distribución de disciplinas para esta publicación.

Publicaciones WoS (Ediciones: ISSHP, ISTP, AHCI, SSCI, SCI), Scopus, SciELO Chile.

Colaboración Institucional

Muestra la distribución de colaboración, tanto nacional como extranjera, generada en esta publicación.

Autores - Afiliación

Ord.	Autor	Género	Institución - País
1	Ponce, Francisco	Hombre	Università di Pisa - Italia
2	Malnati, Andrea	-	Università degli Studi di Milano-Bicocca - Italia
3	Negro, Roberto	-	Università degli Studi di Milano-Bicocca - Italia
4	Fontana, Francesca Arcelli	-	Università degli Studi di Milano-Bicocca - Italia
5	Astudillo, Hernán	-	Universidad Nacional Andrés Bello - Chile
6	Brogi, Antonio	-	Università di Pisa - Italia
7	Soldani, Jacopo	-	Università di Pisa - Italia

Muestra la afiliación y género (detectado) para los co-autores de la publicación.

Financiamiento

Fuente
FREEDA

Muestra la fuente de financiamiento declarada en la publicación.

Agradecimientos

Agradecimiento
This work is partly supported by the following projects: FREEDA (CUP: I53D23003550006), funded by the frameworks PRIN (MUR, Italy) and Next Generation EU.