Desarrollo de sistemas de microservicios, y evaluación de modelos arquitecturales y mecanismos de seguridad en relación al rendimiento

Abstract

Microservices systems have become an industry standard for development, this because of the multiple advantages they provide, such as easier scaling, less complexity to implement changes, resilience to service failure and more. So it's of no surprise the rise in popularity of service mesh technologies, which adds an extra layer of communication between services, providing security, observability and traffic control, abstracting the complexity of the system networking, allowing developers to focus on app development. This work focuses on the security aspects of service meshes, specifically the impact in system resources, latency, CPU and Memory usage, that different security mechanisms Mtls, Jwt and Waf generate throughout multiple architectural models like API Gateway, Sidecar and Sidecar-Less. The results show that both Jwt and Mtls do not generate a significant impact  in the systems performance, however Waf comes with a much higher resource consumption and therefore should be used cautiously.