{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,9]],"date-time":"2025-09-09T21:20:41Z","timestamp":1757452841390,"version":"3.40.3"},"publisher-location":"Cham","reference-count":29,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783031166969"},{"type":"electronic","value":"9783031166976"}],"license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2022]]},"DOI":"10.1007\/978-3-031-16697-6_1","type":"book-chapter","created":{"date-parts":[[2022,9,8]],"date-time":"2022-09-08T07:12:17Z","timestamp":1662621137000},"page":"3-18","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["Avoiding Excessive Data Exposure Through Microservice APIs"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4236-5951","authenticated-orcid":false,"given":"Patric","family":"Genfer","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6233-2591","authenticated-orcid":false,"given":"Uwe","family":"Zdun","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2022,9,9]]},"reference":[{"key":"1_CR1","unstructured":"Nadareishvili, I., Mitra, R., McLarty, M., Amundsen, M.: Microservice Architecture: Aligning Principles, Practices, And Culture. O\u2019Reilly Media, Inc., Sebastopol (2016)"},{"key":"1_CR2","doi-asserted-by":"crossref","unstructured":"Miller, L., M\u00e9rindol, P., Gallais, A., Pelsser, C.: Towards secure and leak-free workflows using microservice isolation. In: 2021 IEEE 22nd International Conference on High Performance Switching and Routing (HPSR), pp. 1\u20135. IEEE (2021)","DOI":"10.1109\/HPSR52026.2021.9481820"},{"key":"1_CR3","doi-asserted-by":"crossref","unstructured":"Yu, D., Jin, Y., Zhang, Y., Zheng, X.: A survey on security issues in services communication of Microservices-enabled fog applications. Concurr. Comput. Pract. Exp. 31(22) (2019)","DOI":"10.1002\/cpe.4436"},{"key":"1_CR4","doi-asserted-by":"crossref","unstructured":"Hannousse, A., Yahiouche, S.: Securing microservices and microservice architectures: a systematic mapping study. Comput. Sci. Rev. 41 (2021)","DOI":"10.1016\/j.cosrev.2021.100415"},{"key":"1_CR5","unstructured":"Dias, W.K.A.N., Siriwardena, P.: Microservices Security in Action. Simon and Schuster (2020)"},{"key":"1_CR6","doi-asserted-by":"crossref","unstructured":"Laigner, R., Zhou, Y., Salles, M.A.V., Liu, Y., Kalinowski, M.: Data management in microservices: state of the practice, challenges, and research directions. arXiv preprint arXiv:2103.00170 (2021)","DOI":"10.14778\/3484224.3484232"},{"key":"1_CR7","doi-asserted-by":"crossref","unstructured":"Sill, A.: The design and architecture of microservices. IEEE Cloud Comput. 3(5), 76\u201380 (2016)","DOI":"10.1109\/MCC.2016.111"},{"key":"1_CR8","unstructured":"Newman, S.: Building Microservices. O\u2019Reilly Media, Inc. Sebastopol (2021)"},{"key":"1_CR9","doi-asserted-by":"crossref","unstructured":"Yarygina, T., BaggeA. H.: Overcoming security challenges in Microservice architectures. In: 2018 IEEE Symposium on Service-Oriented System Engineering (SOSE). Bamberg, pp. 11\u201320. IEEE (2018)","DOI":"10.1109\/SOSE.2018.00011"},{"key":"1_CR10","doi-asserted-by":"publisher","unstructured":"Ntentos, E., Zdun, U., Plakidas, K., Schall, D., Li, F., Meixner, S.: Supporting architectural decision making on data management in microservice architectures. In: Bures, T., Duchien, L., Inverardi, P. (eds.) ECSA 2019. LNCS, vol. 11681, pp. 20\u201336. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-29983-5_2","DOI":"10.1007\/978-3-030-29983-5_2"},{"key":"1_CR11","doi-asserted-by":"crossref","unstructured":"Bogner, J., Fritzsch, J., Wagner, S., Zimmermann, A.: Microservices in industry: insights into technologies, characteristics, and software quality. In: IEEE International Conference on Software Architecture Companion (ICSA-C), pp. 87\u2013195. IEEE (2019)","DOI":"10.1109\/ICSA-C.2019.00041"},{"key":"1_CR12","doi-asserted-by":"crossref","unstructured":"Singjai, A., Zdun, U., Zimmermann, O., Pautasso, C.: Patterns on deriving APIs and their endpoints from domain models. In: 26th European Conference on Pattern Languages of Programs, pp. 1\u201315 (2021)","DOI":"10.1145\/3489449.3489976"},{"key":"1_CR13","doi-asserted-by":"publisher","unstructured":"Genfer, P., Zdun, U.: Identifying domain-based cyclic dependencies in microservice APIs using source code detectors. In: Biffl, S., Navarro, E., L\u00f6we, W., Sirjani, M., Mirandola, R., Weyns, D. (eds.) ECSA 2021. LNCS, vol. 12857, pp. 207\u2013222. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-86044-8_15","DOI":"10.1007\/978-3-030-86044-8_15"},{"key":"1_CR14","doi-asserted-by":"crossref","unstructured":"Shu, X., Yao, D., Bertino, E.: Privacy-preserving detection of sensitive data exposure. IEEE Trans. Inf. Foren. Secur. 10(5), 1092\u20131103 (2015)","DOI":"10.1109\/TIFS.2015.2398363"},{"key":"1_CR15","doi-asserted-by":"crossref","unstructured":"Tripp, O., Pistoia, M., Fink, S.J., Sridharan, M., Weisman, O.: Taj: effective taint analysis of web applications. ACM Sigplan Notices 44(6), 87\u201397 (2009)","DOI":"10.1145\/1543135.1542486"},{"key":"1_CR16","doi-asserted-by":"crossref","unstructured":"Arzt, S., et al.: Flowdroid: precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for android apps. ACM SIGPLAN Notices 49(6), 259\u2013269 (2014)","DOI":"10.1145\/2666356.2594299"},{"key":"1_CR17","doi-asserted-by":"crossref","unstructured":"Soldani, J., Muntoni, G., Neri, D., Brogi, A.: The $$\\mu $$tosca toolchain: mining, analyzing, and refactoring microservice-based architectures. Pract. Exp. Softw. 51 (2021)","DOI":"10.1002\/spe.2974"},{"key":"1_CR18","doi-asserted-by":"crossref","unstructured":"Fowkes, J., Sutton, C.: Parameter-free probabilistic API mining across GitHUB. In: Proceedings of the 2016 24th ACM SIGSOFT International Symposium on Foundations of Software Engineering, pp. 254\u2013265 (2016)","DOI":"10.1145\/2950290.2950319"},{"key":"1_CR19","doi-asserted-by":"crossref","unstructured":"Bogner, J., Wagner, S., Zimmermann, A.: Automatically measuring the maintainability of service-and microservice-based systems: a literature review. In: Proceedings of the 27th International Workshop on Software Measurement and 12th International Conference on Software Process and Product Measurement, pp. 107\u2013115 (2017)","DOI":"10.1145\/3143434.3143443"},{"key":"1_CR20","doi-asserted-by":"publisher","unstructured":"Saidani, I., Ouni, A., Mkaouer, M.W., Saied, A.: Towards automated microservices extraction using Muti-objective evolutionary search. In: Yangui, S., Bouassida Rodriguez, I., Drira, K., Tari, Z. (eds.) ICSOC 2019. LNCS, vol. 11895, pp. 58\u201363. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-33702-5_5","DOI":"10.1007\/978-3-030-33702-5_5"},{"key":"1_CR21","doi-asserted-by":"crossref","unstructured":"Zimmermann, O., L\u00fcbke, D., Zdun, U., Pautasso, C., Stocker, M.: Interface responsibility patterns: processing resources and operation responsibilities. In: Proceedings of the European Conference on Pattern Languages of Programs, pp. 1\u201324 (2020)","DOI":"10.1145\/3424771.3424822"},{"key":"1_CR22","doi-asserted-by":"crossref","unstructured":"Walker, A., Das, D., Cerny, T.: Automated code-smell detection in microservices through static analysis: a case study. Appl. Sci. 10(21), 7800 (2020)","DOI":"10.3390\/app10217800"},{"key":"1_CR23","doi-asserted-by":"publisher","unstructured":"Ntentos, E., Zdun, U., Plakidas, K., Genfer, P., Geiger, S., Meixner, S., Hasselbring, W.: Detector-based component model abstraction for microservice-based systems. Computing 103(11), 2521\u20132551 (2021). https:\/\/doi.org\/10.1007\/s00607-021-01002-z","DOI":"10.1007\/s00607-021-01002-z"},{"key":"1_CR24","doi-asserted-by":"crossref","unstructured":"Fan, L., Wang, Y., Cheng, X., Jin, S.: Quantitative analysis for privacy leak software with privacy petri net. In: Proceedings of the ACM SIGKDD Workshop on Intelligence and Security Informatics, pp. 1\u20139 (2012)","DOI":"10.1145\/2331791.2331798"},{"key":"1_CR25","doi-asserted-by":"publisher","unstructured":"Rademacher, F., Sachweh, S., Z\u00fcndorf, A.: A Modeling method for systematic architecture reconstruction of microservice-based software systems. In: Nurcan, S., Reinhartz-Berger, I., Soffer, P., Zdravkovic, J. (eds.) BPMDS\/EMMSAD -2020. LNBIP, vol. 387, pp. 311\u2013326. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-49418-6_21","DOI":"10.1007\/978-3-030-49418-6_21"},{"key":"1_CR26","doi-asserted-by":"crossref","unstructured":"Vural, H., Koyuncu, M.: Does domain-driven design lead to finding the optimal modularity of a microservice? IEEE Access 9, 3 2721\u20133 2733 (2021)","DOI":"10.1109\/ACCESS.2021.3060895"},{"key":"1_CR27","doi-asserted-by":"crossref","unstructured":"El Malki, A., Zdun, U.: Evaluation of API request bundling and its impact on performance of microservice architectures. In: 2021 IEEE International Conference on Services Computing (SCC), pp. 419\u2013424. IEEE (2021)","DOI":"10.1109\/SCC53864.2021.00060"},{"key":"1_CR28","doi-asserted-by":"crossref","unstructured":"Mashkoor, A., Fernandes, J.M.: Deriving software architectures for crud applications: the FPL tower interface case study. In: International Conference on Software Engineering Advances (ICSEA 2007), pp. 25\u201325. IEEE (2007)","DOI":"10.1109\/ICSEA.2007.25"},{"key":"1_CR29","unstructured":"Yin, R.K.: Case Study Research and Applications. Sage, Thousand Oaks (2018)"}],"container-title":["Lecture Notes in Computer Science","Software Architecture"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-16697-6_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,9,14]],"date-time":"2022-09-14T23:15:45Z","timestamp":1663197345000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-16697-6_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"ISBN":["9783031166969","9783031166976"],"references-count":29,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-16697-6_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2022]]},"assertion":[{"value":"9 September 2022","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ECSA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Conference on Software Architecture","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Prague","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Czech Republic","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2022","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 September 2022","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 September 2022","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ecsa2022","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/conf.researchr.org\/home\/ecsa-2022","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"47","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"9","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"6","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"19% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}