The event-driven distributed system is now a crucial architectural foundation for modern cloud-native platforms, mostly due to its flexibility and scalability. However, these systems have significant security flaws due to their inherent asynchronous and decentralized nature. The security issues that event-driven distributed systems encounter are discussed in detail in this article, with an emphasis on risk models, system flaws, and mitigation methods. The study highlights significant risks such as event spoofing, message modification, unlawful access, and denial-of-service attacks. It also examines security measures such authentication, encryption, access management, and monitoring methods. The findings highlight the importance of integrating security into the architectural design while striking a balance between system complexity and performance.
Nirmiti Tamore (Thu,) studied this question.