我是微服务架构的新手。设计原则说微服务有自己的数据库。我应该担心连接数据库的安全性还是微服务与数据库通信的安全性?
最佳答案
是的,应该使用 TLS 或其他一些方法来保护流量。
Microsoft 列出了一些想法和选项 here (尽管它们会引导您使用 MSFT 产品,但这些概念是相关的)。
Best practice: Secure access from multiple workstations located on-premises to an Azure virtual network.
Detail: Use site-to-site VPN.
Best practice: Secure access from an individual workstation located on-premises to an Azure virtual network.
Detail: Use point-to-site VPN.
Best practice: Move larger data sets over a dedicated high-speed WAN link.
Detail: Use ExpressRoute. If you choose to use ExpressRoute, you can also encrypt the data at the application level by using SSL/TLS or other protocols for added protection.
Best practice: Interact with Azure Storage through the Azure portal.
Detail: All transactions occur via HTTPS. You can also use Storage REST API over HTTPS to interact with Azure Storage and Azure SQL Database.
关于java - 微服务和数据库安全,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/53621693/