SafeTree: Expressive Tree Policies for Microservices
Karuna Grewal, P. Brighten Godfrey, and Justin Hsu
TL;DR
SafeTree introduces an expressive policy language and enforcement mechanism for microservice communication, leveraging service tree structures to enhance security and control without modifying service code.
Contribution
We develop a novel service tree policy language and a non-invasive enforcement mechanism using a service mesh, enabling fine-grained control over microservice interactions.
Findings
Enforces rich safety properties with minimal latency overhead
Operates non-invasively without changing service implementations
Utilizes programmable network traffic filtering in Istio
Abstract
A microservice-based application is composed of multiple self-contained components called microservices, and controlling inter-service communication is important for enforcing safety properties. Presently, inter-service communication is configured using microservice deployment tools. However, such tools only support a limited class of single-hop policies, which can be overly permissive because they ignore the rich service tree structure of microservice calls. Policies that can express the service tree structure can offer development and security teams more fine-grained control over communication patterns. To this end, we design an expressive policy language to specify service tree structures, and we develop a visibly pushdown automata-based dynamic enforcement mechanism to enforce service tree policies. Our technique is non-invasive: it does not require any changes to service…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.