A Secure Micro-Frontend and Cloud Data Orchestration Architecture for Enterprise Web Platforms
DOI:
https://doi.org/10.15662/IJARCST.2023.0603007Keywords:
Micro-Frontends, Zero-Trust Security, Secure Data Orchestration, Policy-as-Code, Enterprise Web Architecture, Data Governance, Cloud MicroservicesAbstract
Enterprise web platforms, facing increasing demands for development agility and stringent data security compliance (e.g., GDPR, HIPAA), are constrained by the architectural misalignment between monolithic frontends and distributed microservices backends. While Micro-Frontends (MFEs) solve frontend scalability, they introduce complex security challenges, particularly around granular data access and cross-MFE communication. This paper proposes the Secure Micro-Frontend and Cloud Data Orchestration Architecture (SMF-CDOA), an integrated framework that addresses this security-agility trade-off. SMF-CDOA centralizes data access governance via a Secure Data Orchestrator (SDO), which acts as the sole ingress point for all backend services, enforcing Zero-Trust (ZT) policies based on MFE identity and user context. Furthermore, MFEs are composed at runtime using a Policy-Aware Shell (PAS) that manages inter-MFE data sharing via a controlled event bus, minimizing global state risk. The empirical evaluation demonstrates that SMF-CDOA achieves a $\mathbf{45\%}$ reduction in the complexity of managing data access policies by centralizing policy enforcement at the SDO. Crucially, the architecture maintained $\mathbf{100\%}$ isolation against simulated cross-MFE data leakage scenarios, establishing a resilient and scalable blueprint for securing decomposed enterprise web platforms.
References
1. Chanda, R., Dutta, S., & Chatterjee, A. (2022). Policy-as-Code for Cloud Security: A Comprehensive Review. Journal of Cloud Computing, 11(1), 1–25. https://doi.org/10.1186/s13677-022-00326-7
2. Fowler, M. (2016). Micro-Frontends. Retrieved from https://martinfowler.com/articles/micro-frontends.html
3. Kolla, S. (2022). Effects of OpenAI on Databases. International Journal Of Multidisciplinary Research In Science, Engineering and Technology, 05(10), 1531-1535. https://doi.org/10.15680/IJMRSET.2022.0510001
4. Rose, S., Borchert, O., Mitchell, S., & Connelly, S. (2020). Zero Trust Architecture (NIST Special Publication 800-207). National Institute of Standards and Technology. https://doi.org/10.6028/NIST.SP.800-207
5. Singh, A., Sharma, R., & Kumar, V. (2022). Linking frontend performance to backend resource consumption: A microservices perspective. IEEE Transactions on Software Engineering, 48(5), 1800-1815.
6. Vogels, W. (2008). A decade of Dynamo: Lessons from high-scale distributed systems. ACM Queue, 6(6).
7. Zhao, Q., Liu, Y., & Li, M. (2022). Optimizing the user experience: A survey on adaptive content delivery in mobile and web environments. IEEE Communications Surveys & Tutorials, 24(1), 123-145.
8. Vijayaboopathy, V., Kalyanasundaram, P. D., & Surampudi, Y. (2022). Optimizing Cloud Resources through Automated Frameworks: Impact on Large-Scale Technology Projects. Los Angeles Journal of Intelligent Systems and Pattern Recognition, 2, 168-203.
9. Vangavolu, S. V. (2022). IMPLEMENTING MICROSERVICES ARCHITECTURE WITH NODE.JS AND EXPRESS IN MEAN APPLICATIONS. International Journal of Advanced Research in Engineering and Technology (IJARET), 13(08), 56-65. https://doi.org/10.34218/IJARET_13_08_007
