DevConf.cz 2021 has ended
Back To Schedule
Friday, February 19 • 2:00pm - 2:40pm
Prophet: On holistic analysis of microservice applications

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

Since the modern trend of application development moves towards the cloud, microservices, and containers, the conventional code-centric analysis tools are becoming obsolete. Thus, we need to realign analysis tools to address the specifics of modern distributed web applications. We introduce Prophet for a holistic analysis of enterprise microservice apps, which utilizes code analysis. Each microservice module is analyzed separately, but the outcomes are combined in the context of other system modules. In particular, we construct a context map (canonical model) from microservice bounded contexts and extract module interaction to understand the overall system detail and resolve the systems' inner dependencies. With this module "fusion" we can treat the system holistically to perform various analytical tasks. Our current experimentation shows confidence with Java and Python projects, utilizing both source code or bytecode, which opens the path for integration into any phase of software development life-cycle or even to deployment management systems Kubernetes to serve DevOps and SysOps.

With the infrastructure we have developed so far, we could respond with automation to recently identified microservice bad smells (bad design practice) and recognize 11 different patterns apparent in the distributed settings. Besides, we can automate Software Architecture Reconstruction (SAR), which is often attempted manually via reverse engineering process. SAR derives a representation of software architecture from artifacts like documentation or source code. The ability to see the system as a whole is essential since SAR is key to architecture verification, conformance checking, and trade-off analysis. Additionally, we manage to assess inconsistencies and errors in Role-based Access Control (RBAC) applied to microservice apps through Java EE Security API Specification (JSR 375) or Spring Security. Specifically in this field, Gartner reposts critical infrastructural gaps and challenges. With Prophet, we face new challenges that emerged in current design trends.

avatar for Langdon White

Langdon White

Clinical Assistant Professor, Boston University
Langdon White is a Clinical Assistant Professor and the Spark! Technical Director at Boston University. In these roles, he helps to provide industry-affiliated experiential learning to students and teaches with the goal of making computing and data sciences more accessible. White... Read More →

avatar for Tomas Cerny

Tomas Cerny

Assistant Professor, Baylor University
Tomas Cerny received his Bachelor's and Master's degrees from the Faculty of Electrical Engineering at the Czech Technical University in Prague, and M.S. degree from Baylor University. He is a Ph.D. student in Prague. His area of research is software engineering, aspect-driven development... Read More →
avatar for Andrew Walker

Andrew Walker

Researcher, Baylor University
Software Consultant at Credera. Graduate of Baylor University.

Dipta Das

Graduate Student, Baylor University

Vincent Bushong

Student, Baylor University
Computer science masters student at Baylor University.

Jan Svacina

Research Assistant, Baylor University
Research Assistant at Computer Science Department at Baylor University. His research focus is on software engineering, microservice security, and code analysis. He received his Bachelorโ€s degree from the Czech Technical University, FEE, Department of Computer Science. In 2020... Read More →
avatar for Michael Coffey

Michael Coffey

Baylor University

Friday February 19, 2021 2:00pm - 2:40pm CET
Main Stage