Microservices Security Resources

The new hype in Enterprise architectures are "micro-services". The concept to build distributed systems from many small, independent building blocks that are accessible through REST APIs is not new. The rise of container architecture where you can realistically start the whole operating system very quickly to just serve a method call.

When you start thinking about building such a solution, or at least demo, one of the first questions are about handling security. Clearly just using HTTPS is not enough for a serious system.

Here is a dump of links to some interesting online resources about micro-services security:

• http://www.techrepublic.com/article/10-tips-for-securing-microservice-architecture/
• http://www.infoworld.com/article/3157423/security/got-microservices-youd-better-secure-them.html 
• http://www.darkreading.com/endpoint/rethinking-application-security-with-microservices-architectures-/a/d-id/1325155
• https://techbeacon.com/8-best-practices-microservices-security
• https://www.infoq.com/news/2016/11/microservices-security
• http://www.grahamlea.com/2015/07/microservices-security-questions/