3 research outputs found
Microservices-based IoT Applications Scheduling in Edge and Fog Computing: A Taxonomy and Future Directions
Edge and Fog computing paradigms utilise distributed, heterogeneous and
resource-constrained devices at the edge of the network for efficient
deployment of latency-critical and bandwidth-hungry IoT application services.
Moreover, MicroService Architecture (MSA) is increasingly adopted to keep up
with the rapid development and deployment needs of the fast-evolving IoT
applications. Due to the fine-grained modularity of the microservices along
with their independently deployable and scalable nature, MSA exhibits great
potential in harnessing both Fog and Cloud resources to meet diverse QoS
requirements of the IoT application services, thus giving rise to novel
paradigms like Osmotic computing. However, efficient and scalable scheduling
algorithms are required to utilise the said characteristics of the MSA while
overcoming novel challenges introduced by the architecture. To this end, we
present a comprehensive taxonomy of recent literature on microservices-based
IoT applications scheduling in Edge and Fog computing environments.
Furthermore, we organise multiple taxonomies to capture the main aspects of the
scheduling problem, analyse and classify related works, identify research gaps
within each category, and discuss future research directions.Comment: 35 pages, 10 figures, submitted to ACM Computing Survey
MicroFog: A Framework for Scalable Placement of Microservices-based IoT Applications in Federated Fog Environments
MicroService Architecture (MSA) is gaining rapid popularity for developing
large-scale IoT applications for deployment within distributed and
resource-constrained Fog computing environments. As a cloud-native application
architecture, the true power of microservices comes from their loosely coupled,
independently deployable and scalable nature, enabling distributed placement
and dynamic composition across federated Fog and Cloud clusters. Thus, it is
necessary to develop novel microservice placement algorithms that utilise these
microservice characteristics to improve the performance of the applications.
However, existing Fog computing frameworks lack support for integrating such
placement policies due to their shortcomings in multiple areas, including MSA
application placement and deployment across multi-fog multi-cloud environments,
dynamic microservice composition across multiple distributed clusters,
scalability of the framework, support for deploying heterogeneous microservice
applications, etc. To this end, we design and implement MicroFog, a Fog
computing framework providing a scalable, easy-to-configure control engine that
executes placement algorithms and deploys applications across federated Fog
environments. Furthermore, MicroFog provides a sufficient abstraction over
container orchestration and dynamic microservice composition. The framework is
evaluated using multiple use cases. The results demonstrate that MicroFog is a
scalable, extensible and easy-to-configure framework that can integrate and
evaluate novel placement policies for deploying microservice-based applications
within multi-fog multi-cloud environments. We integrate multiple microservice
placement policies to demonstrate MicroFog's ability to support horizontally
scaled placement, thus reducing the application service response time up to
54%
Toward a Reference Architecture for Software Supply Chain Metadata Management
An Software Supply Chain (SSC) attack combines an upstream attack, where
malicious codes are injected into a software artefact via a compromised life
cycle activity, and a downstream attack on the consumers who use the
compromised artefact. Organisations need thorough and trustworthy visibility
over the entire SSC of their software inventory to detect risks early and
rapidly identify compromised assets in the event of an SSC attack. One way to
achieve such visibility is through SSC metadata, machine-readable and
authenticated documents describing an artefact's lifecycle, such as how it was
constructed and the utilised ``ingredients''. Adopting SSC metadata requires
organisations to procure or develop a Software Supply Chain Metadata Management
system (SCM2), a suite of software tools for performing life cycle activities
of SSC metadata documents such as creation, signing, distribution, and
consumption. Selecting or developing an SCM2 is challenging due to the lack of
a comprehensive domain model and architectural blueprint to aid practitioners
in navigating the vast design space of SSC metadata terminologies, frameworks,
and solutions. This paper addresses the above-mentioned challenge with a
Systematisation of Knowledge about SSC metadata and SCM2, presented as a
Reference Architecture (RA). The RA comprises a domain model and an
architectural blueprint for SCM2 systems, constructed from the concepts and
building blocks scattered across existing SSC security frameworks and
standards. Our evaluation shows that the RA framework is effective for
analysing existing SCM2 solutions and guiding the engineering of new SCM2