Uploaded bydoquangminh962004
70 views

Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!

Kiến trúc hướng dịch vụ UET

Embed presentation

Download to read offline
Foundations and Modern Approaches to Service-Oriented Architecture Lecture 7: Security, Governance, and Observability 1
SOA Security Fundamentals Authentication Authorization Encryption
Authentication - Traditional
Authentication – Token-based
Pre-signed URLs
Authentication vs Authorization
Authorization • Role-Based Access Control (RBAC): assigns permissions based on roles • Attribute-Based Access Control (ABAC): uses attributes to determine access • Access Control Lists (ACLs): define permissions for individual users or groups on specific resources
Encryption
SOA Security Fundamentals • Authentication: Verifying user identities (e.g., tokens, OAuth) • Authorization: Controlling access to resources (role-based access, ACLs) • Encryption: Securing data in transit and at rest (SSL/TLS, data encryption) • Why: • Ensures trust and data integrity across distributed systems. • Minimizes risks of data breaches and unauthorized access.
Governance, Versioning, and API Management • Governance: Ensuring compliance, security policies, and standardized service contracts, e.g., policy enforcement points • Versioning: Strategies to handle API changes without disrupting clients (URI versioning, header-based versioning). • API Management: Use of API gateways, monitoring, and analytics for continuous improvement.
Policy Enforcement Point
URL versioning
Header-based versioning
Understanding Observability in Distributed Systems • Observability is the measure of how well internal states of a system can be inferred from its external outputs. • Components: • Logging: Capturing event data from services. • Metrics: Numerical data that indicate performance (e.g., response time, throughput). • Tracing: Following the path of a request across microservices (distributed tracing).
Tools & Best Practices for Monitoring • Centralized Logging: Use tools like ELK (Elasticsearch, Logstash, Kibana) or Splunk to aggregate logs. • Distributed Tracing: Jaeger, Zipkin, or OpenTelemetry for tracking request flows. • Metrics Collection: Prometheus/Grafana for gathering and visualizing performance metrics.
Testing Distributed Systems • Importance of Testing: Ensures reliability, performance, and correctness across a distributed environment. • Testing Strategies: • Unit testing for individual services. • Integration testing for service interactions. • End-to-end testing using simulated load. • JMeter, Locust for load testing; automated testing frameworks for microservices.
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!

More Related Content

PDF
Apidays Paris 2023 - API Observability: Improving Governance, Security and Op...
byapidays
 
PPT
Layer 7: Identity Enabled SOA Governance
byCA API Management
 
PDF
Governance and Security Solution Patterns
byWSO2
 
PDF
Observability: Beyond the Three Pillars with Spring
byVMware Tanzu
 
PDF
apidays Helsinki & North 2023 - API authorization with Open Policy Agent, And...
byapidays
 
PDF
Distributed Authorization with Open Policy Agent.pdf
byNordic APIs
 
PDF
Zero Trust Networks Evan Gilman Doug Barth
byburacakerina41
 
PDF
Zero Trust Networks Evan Gilman Doug Barth
byxovaniparpov15
 
Apidays Paris 2023 - API Observability: Improving Governance, Security and Op...
byapidays
 
Layer 7: Identity Enabled SOA Governance
byCA API Management
 
Governance and Security Solution Patterns
byWSO2
 
Observability: Beyond the Three Pillars with Spring
byVMware Tanzu
 
apidays Helsinki & North 2023 - API authorization with Open Policy Agent, And...
byapidays
 
Distributed Authorization with Open Policy Agent.pdf
byNordic APIs
 
Zero Trust Networks Evan Gilman Doug Barth
byburacakerina41
 
Zero Trust Networks Evan Gilman Doug Barth
byxovaniparpov15
 

Similar to Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!

PPTX
04 Service Oriented Architecture Series - SOA Management
byPouria Ghatrenabi
 
PDF
Identiverse 2018 nathanael coffing
byJoshuaCiccone2
 
PPT
Unit_5 grid and cloud comuting security.pt
bygvlbcy
 
PDF
Security-and-Privacy-in-Architectural-Modeling (2).pdf
bypatidararnav007
 
PDF
Making Security Approachable for Developers and Operators
byArmonDadgar
 
PPTX
Microservices security - jpmc tech fest 2018
byMOnCloud
 
PDF
2022 APIsecure_Shift Left API Security - The Right Way
byAPIsecure_ Official
 
PDF
network security.pdf
byKIYALIBAN1
 
PDF
CyberSecurity101.pdf
byDhananjaySingh23178
 
PDF
Security Patterns for Software Development
byNarudom Roongsiriwong, CISSP
 
PPTX
Mit 2014 introduction to open id connect and o-auth 2
byJustin Richer
 
PPTX
API Security in a Microservice Architecture
byMatt McLarty
 
PDF
Single Sign-on Framework in Tizen
byRyo Jin
 
PDF
SOA governance
bySoftware Park Thailand
 
PPTX
Cloud Identity Management
byDamian T. Gordon
 
PPTX
Unit III SPC.pptx- SECURITY AND PRIVACY IN CLOUD
by23b129
 
PPTX
Agile Gurugram Conference 2020 | Keeping software secure in agile | Gurpreet ...
byAgileNetwork
 
PDF
apidays LIVE Australia 2021 - Levelling up database security by thinking in A...
byapidays
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
TADSummit, DataArt Keynote: Security in Virtualized Telecom Networks Michael ...
byAlan Quayle
 
04 Service Oriented Architecture Series - SOA Management
byPouria Ghatrenabi
 
Identiverse 2018 nathanael coffing
byJoshuaCiccone2
 
Unit_5 grid and cloud comuting security.pt
bygvlbcy
 
Security-and-Privacy-in-Architectural-Modeling (2).pdf
bypatidararnav007
 
Making Security Approachable for Developers and Operators
byArmonDadgar
 
Microservices security - jpmc tech fest 2018
byMOnCloud
 
2022 APIsecure_Shift Left API Security - The Right Way
byAPIsecure_ Official
 
network security.pdf
byKIYALIBAN1
 
CyberSecurity101.pdf
byDhananjaySingh23178
 
Security Patterns for Software Development
byNarudom Roongsiriwong, CISSP
 
Mit 2014 introduction to open id connect and o-auth 2
byJustin Richer
 
API Security in a Microservice Architecture
byMatt McLarty
 
Single Sign-on Framework in Tizen
byRyo Jin
 
SOA governance
bySoftware Park Thailand
 
Cloud Identity Management
byDamian T. Gordon
 
Unit III SPC.pptx- SECURITY AND PRIVACY IN CLOUD
by23b129
 
Agile Gurugram Conference 2020 | Keeping software secure in agile | Gurpreet ...
byAgileNetwork
 
apidays LIVE Australia 2021 - Levelling up database security by thinking in A...
byapidays
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
TADSummit, DataArt Keynote: Security in Virtualized Telecom Networks Michael ...
byAlan Quayle
 

Recently uploaded

PPTX
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
PPTX
Edison MuleSoft Meetup : Vibe Coding | MuleSoft Meetups
bySravan Lingam
 
PDF
apidays Amsterdam 2025 | APIs with a Purpose
byapidays
 
PDF
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
PDF
Image and video processing: From Mars to Hollywood with a stop at the hospita...
byHarinath Palavalli
 
PDF
apidays Amsterdam 2025 | Making AI work for you as an API Product Manager
byapidays
 
PPTX
HR Software for Construction: Smarter Workforce & Payroll Management
byhelixtahr
 
PPTX
Salesforce Spring '26 Release presentation - Melbourne Salesforce User Group
byAnne N
 
PDF
apidays Australia 2025 | Orchestrator vs. Choreography
byapidays
 
PDF
Animated Safety Induction: A Smarter Way to Onboard for Workplace Safety
byTECH EHS Solution
 
PDF
software architecture for busy developers
byMuhammadAwaisQaisran
 
PDF
Figma systems development services
bydavidjohansen1597
 
PDF
Monitoring your MySQL Server's Health Trends
byIgor Donchovski
 
PDF
Taxi App UIUX Design for Seamless Ride Booking
byV3CUBE TECHNOLABS
 
PDF
Attendance Dashboard – Time & Attendance Analytics
byHajir Pro
 
PPTX
Device Repair and Maintenance Management
byAxisTechnolabs
 
PDF
Massage Booking App Development Company
byV3CUBE TECHNOLABS
 
PDF
On Demand Grocery Delivery App Development
byV3CUBE TECHNOLABS
 
PDF
Track Phone Location Android (2026)_ What Actually Works, What’s New, and the...
byRachel Green
 
PDF
apidays Australia 2025 | Build Your First MCP Server with Postman Flows
byapidays
 
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
Edison MuleSoft Meetup : Vibe Coding | MuleSoft Meetups
bySravan Lingam
 
apidays Amsterdam 2025 | APIs with a Purpose
byapidays
 
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
Image and video processing: From Mars to Hollywood with a stop at the hospita...
byHarinath Palavalli
 
apidays Amsterdam 2025 | Making AI work for you as an API Product Manager
byapidays
 
HR Software for Construction: Smarter Workforce & Payroll Management
byhelixtahr
 
Salesforce Spring '26 Release presentation - Melbourne Salesforce User Group
byAnne N
 
apidays Australia 2025 | Orchestrator vs. Choreography
byapidays
 
Animated Safety Induction: A Smarter Way to Onboard for Workplace Safety
byTECH EHS Solution
 
software architecture for busy developers
byMuhammadAwaisQaisran
 
Figma systems development services
bydavidjohansen1597
 
Monitoring your MySQL Server's Health Trends
byIgor Donchovski
 
Taxi App UIUX Design for Seamless Ride Booking
byV3CUBE TECHNOLABS
 
Attendance Dashboard – Time & Attendance Analytics
byHajir Pro
 
Device Repair and Maintenance Management
byAxisTechnolabs
 
Massage Booking App Development Company
byV3CUBE TECHNOLABS
 
On Demand Grocery Delivery App Development
byV3CUBE TECHNOLABS
 
Track Phone Location Android (2026)_ What Actually Works, What’s New, and the...
byRachel Green
 
apidays Australia 2025 | Build Your First MCP Server with Postman Flows
byapidays
 

Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!

  • 1.
    Foundations and Modern Approachesto Service-Oriented Architecture Lecture 7: Security, Governance, and Observability 1
  • 2.
  • 3.
  • 4.
  • 5.
  • 6.
  • 7.
    Authorization • Role-Based AccessControl (RBAC): assigns permissions based on roles • Attribute-Based Access Control (ABAC): uses attributes to determine access • Access Control Lists (ACLs): define permissions for individual users or groups on specific resources
  • 9.
  • 10.
    SOA Security Fundamentals •Authentication: Verifying user identities (e.g., tokens, OAuth) • Authorization: Controlling access to resources (role-based access, ACLs) • Encryption: Securing data in transit and at rest (SSL/TLS, data encryption) • Why: • Ensures trust and data integrity across distributed systems. • Minimizes risks of data breaches and unauthorized access.
  • 11.
    Governance, Versioning, andAPI Management • Governance: Ensuring compliance, security policies, and standardized service contracts, e.g., policy enforcement points • Versioning: Strategies to handle API changes without disrupting clients (URI versioning, header-based versioning). • API Management: Use of API gateways, monitoring, and analytics for continuous improvement.
  • 12.
  • 13.
  • 14.
  • 16.
    Understanding Observability inDistributed Systems • Observability is the measure of how well internal states of a system can be inferred from its external outputs. • Components: • Logging: Capturing event data from services. • Metrics: Numerical data that indicate performance (e.g., response time, throughput). • Tracing: Following the path of a request across microservices (distributed tracing).
  • 17.
    Tools & BestPractices for Monitoring • Centralized Logging: Use tools like ELK (Elasticsearch, Logstash, Kibana) or Splunk to aggregate logs. • Distributed Tracing: Jaeger, Zipkin, or OpenTelemetry for tracking request flows. • Metrics Collection: Prometheus/Grafana for gathering and visualizing performance metrics.
  • 18.
    Testing Distributed Systems •Importance of Testing: Ensures reliability, performance, and correctness across a distributed environment. • Testing Strategies: • Unit testing for individual services. • Integration testing for service interactions. • End-to-end testing using simulated load. • JMeter, Locust for load testing; automated testing frameworks for microservices.