SOUTO, R. A. G.; http://lattes.cnpq.br/4543046281566338; SOUTO, Raisson Adrian Grangeiro.
Abstract:
In the context of the SmartCampus project at the Federal University of Campina Grande (UFCG), the provision of a Kafka containing energy consumption information presents complex challenges related to security and access control. Several entities, including developers, end users and operators of production systems, need to interact with this Kafka from different environments, creating the need to differentiate and control access effectively. This work explores strategies based on the Zero Trust model, which advocates continuous authentication and granular authorization, ensuring that each access is verified and authenticated. By adopting SPIRE in conjunction with a series of other microservices, we seek to ensure secure authentication through SPIFFE identities, as well as to configure a personalized authorization service according to the user profile. The goal is to prevent inappropriate access, data leakage and improper manipulation, aiming to obtain a safe and reliable environment for the implementation of the project. Finally, we also want to obtain metrics for monitoring the tools used, in order to quickly identify anomalies and failures.
