Loading…
DevConf.cz 2021 has ended
Back To Schedule
Friday, February 19 • 2:00pm - 2:40pm
Prophet: On holistic analysis of microservice applications

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.


Since the modern trend of application development moves towards the cloud, microservices, and containers, the conventional code-centric analysis tools are becoming obsolete. Thus, we need to realign analysis tools to address the specifics of modern distributed web applications. We introduce Prophet for a holistic analysis of enterprise microservice apps, which utilizes code analysis. Each microservice module is analyzed separately, but the outcomes are combined in the context of other system modules. In particular, we construct a context map (canonical model) from microservice bounded contexts and extract module interaction to understand the overall system detail and resolve the systems' inner dependencies. With this module "fusion" we can treat the system holistically to perform various analytical tasks. Our current experimentation shows confidence with Java and Python projects, utilizing both source code or bytecode, which opens the path for integration into any phase of software development life-cycle or even to deployment management systems Kubernetes to serve DevOps and SysOps.

With the infrastructure we have developed so far, we could respond with automation to recently identified microservice bad smells (bad design practice) and recognize 11 different patterns apparent in the distributed settings. Besides, we can automate Software Architecture Reconstruction (SAR), which is often attempted manually via reverse engineering process. SAR derives a representation of software architecture from artifacts like documentation or source code. The ability to see the system as a whole is essential since SAR is key to architecture verification, conformance checking, and trade-off analysis. Additionally, we manage to assess inconsistencies and errors in Role-based Access Control (RBAC) applied to microservice apps through Java EE Security API Specification (JSR 375) or Spring Security. Specifically in this field, Gartner reposts critical infrastructural gaps and challenges. With Prophet, we face new challenges that emerged in current design trends.



Moderator
avatar for Langdon White

Langdon White

Platform Architect, Red Hat

Speakers
avatar for Tomas Cerny

Tomas Cerny

Assistant Professor, Baylor University
Tomas Cerny received his Bachelor's and Master's degrees from the Faculty of Electrical Engineering at the Czech Technical University in Prague, and M.S. degree from Baylor University. He is a Ph.D. student in Prague. His area of research is software engineering, aspect-driven development... Read More →
avatar for Andrew Walker

Andrew Walker

Researcher, Baylor University
Software Consultant at Credera. Graduate of Baylor University.
DD

Dipta Das

Graduate Student, Baylor University
VB

Vincent Bushong

Student, Baylor University
Computer science masters student at Baylor University.
JS

Jan Svacina

Research Assistant, Baylor University
Research Assistant at Computer Science Department at Baylor University. His research focus is on software engineering, microservice security, and code analysis. He received his Bachelorโ€s degree from the Czech Technical University, FEE, Department of Computer Science. In 2020... Read More →
avatar for Michael Coffey

Michael Coffey

Baylor University



Friday February 19, 2021 2:00pm - 2:40pm CET
Main Stage