Skip to Main Content

Microservices Security in Action

Design secure network and API endpoint security for Microservices applications, with examples using Java, Kubernetes, and Istio

Part of In Action
Published by Manning
Distributed by Simon & Schuster



Free shipping when you spend $40. Terms apply.

Buy from Other Retailers

About The Book

”A complete guide to the challenges and solutions in securing microservices architectures.” —Massimo Siani, FinDynamic

Key Features
Secure microservices infrastructure and code
Monitoring, access control, and microservice-to-microservice communications
Deploy securely using Kubernetes, Docker, and the Istio service mesh.
Hands-on examples and exercises using Java and Spring Boot

Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.

Microservices Security in Action teaches you how to address microservices-specific security challenges throughout the system. This practical guide includes plentiful hands-on exercises using industry-leading open-source tools and examples using Java and Spring Boot.

About The Book
Design and implement security into your microservices from the start. Microservices Security in Action teaches you to assess and address security challenges at every level of a Microservices application, from APIs to infrastructure.

You’ll find effective solutions to common security problems, including throttling and monitoring, access control at the API gateway, and microservice-to-microservice communication. Detailed Java code samples, exercises, and real-world business use cases ensure you can put what you’ve learned into action immediately.

What You Will Learn

Microservice security concepts
Edge services with an API gateway
Deployments with Docker, Kubernetes, and Istio
Security testing at the code level
Communications with HTTP, gRPC, and Kafka

This Book Is Written For
For experienced microservices developers with intermediate Java skills.

About The Author
Prabath Siriwardena is the vice president of security architecture at WSO2. Nuwan Dias is the director of API architecture at WSO2. They have designed secure systems for many Fortune 500 companies.

Table of Contents

1 Microservices security landscape
2 First steps in securing microservices

3 Securing north/south traffic with an API gateway
4 Accessing a secured microservice via a single-page application
5 Engaging throttling, monitoring, and access control

6 Securing east/west traffic with certificates
7 Securing east/west traffic with JWT
8 Securing east/west traffic over gRPC
9 Securing reactive microservices

10 Conquering container security with Docker
11 Securing microservices on Kubernetes
12 Securing microservices with Istio service mesh

13 Secure coding practices and automation

About The Authors

Prabath Siriwardena has over a decade of experience working in access management and security. He has built security solutions for numerous Fortune 500 companies, and spoken at some of the world’s top security conferences.

Nuwan Dias is the director of API architecture at WSO2 and has worked in the software industry for more than 7 years, most of which he spent focusing on the API management domain. Both have helped build security designs for Fortune 500 companies including Boeing, Verizon, Nissan, HP, and GE.

Product Details

  • Publisher: Manning (August 4, 2020)
  • Length: 616 pages
  • ISBN13: 9781617295959

Browse Related Books

Resources and Downloads

High Resolution Images

More books from this author: Prabath Siriwardena

More books in this series: In Action