Micro-service application access control method and device based on taint mark tracking

Micro-service application access control method and device based on taint mark tracking

The invention provides a micro-service application access control method and device based on taint mark tracking, and relates to the field of network technology and security, and the method comprises the steps: obtaining a source code file of a micro-service application; extracting source code fragm...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: ZHANG JIE, HUANG CHUANGGUANG, WU SENYAN
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention provides a micro-service application access control method and device based on taint mark tracking, and relates to the field of network technology and security, and the method comprises the steps: obtaining a source code file of a micro-service application; extracting source code fragments and data objects of which attributes are marked as taint marks, wherein the source code fragments and the data objects are associated with calling among the micro-services; forming stain mark accumulation based on propagation of the stain marks in a request calling process; the method comprises the following steps: pre-defining taint mark propagation rules, wherein the taint mark propagation rules comprise an explicit propagation rule and an implicit propagation rule; designing a data structure composed of a set of two permission nodes and two edges to describe a calling relation between the micro-services, and tracking a taint mark propagation path to generate a calling relation graph between the micro-servic