Automated Identification of Security Discussions in Microservices Systems: Industrial Surveys and Experiments
Ali Rezaei Nasab, Mojtaba Shahin, Peng Liang, Mohammad Ehsan Basiri,, Seyed Ali Hoseyni Raviz, Hourieh Khalajzadeh, Muhammad Waseem, Amine Naseri
TL;DR
This paper explores automatic identification of security-related discussions in microservices systems using machine learning, validated through surveys and experiments, to aid security decision-making.
Contribution
It introduces fifteen machine/deep learning models for identifying security discussions and demonstrates their effectiveness with high accuracy metrics.
Findings
DeepM1 outperforms baselines with over 84% in all metrics.
Practitioners find identified discussions useful for security decisions.
Models effectively distinguish security discussions from non-security ones.
Abstract
Lack of awareness and knowledge of microservices-specific security challenges and solutions often leads to ill-informed security decisions in microservices system development. We claim that identifying and leveraging security discussions scattered in existing microservices systems can partially close this gap. We define security discussion as "a paragraph from developer discussions that includes design decisions, challenges, or solutions relating to security". We first surveyed 67 practitioners and found that securing microservices systems is a unique challenge and that having access to security discussions is useful for making security decisions. The survey also confirms the usefulness of potential tools that can automatically identify such security discussions. We developed fifteen machine/deep learning models to automatically identify security discussions. We applied these models on…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.