Hernán Astudillo

Verified

Hernán verified their affiliation via an institutional email.

Learn more

Verified

Hernán verified their affiliation via an institutional email.

Learn more

• PhD Information and Computer Science
• Research Professor at Andrés Bello University

The increasing globalization has made the preservation of the Intangible Cultural Heritage (ICH) an urgent need, and the UNESCO's states parties have compromised to make collaborative inventories of ICH. Many traditional inventories become obsolete quickly because they present rigid data models and/or because data adquisition from scarce specialist...

Background Microservices are an architectural approach of growing use, and the optimal granularity of a microservice directly affects the application’s quality attributes and usage of computational resources. Determining microservice granularity is an open research topic. Methodology We conducted a systematic literature review to analyze literatur...

Context Securing microservices is crucial, as many IT companies are delivering their businesses through microservices. If security “smells” affect microservice-based applications, they can possibly suffer from security leaks and need to be refactored to mitigate the effects of security smells therein. Objective As the available knowledge on securi...

Architectural tactics are a key abstraction of software architecture, and support the systematic design and analysis of software architectures to satisfy quality attributes. Since originally proposed in 2003, architectural tactics have been extended and adapted to address additional quality attributes and newer kinds of systems, making quite hard f...

The increasing use of the Internet of Things (IoT) in homes and industry brings significant security and privacy challenges, while also considering trade-off for performance, energy consumption, and processing capabilities. Few explicit and specific guidelines exist to help architects in considering these trade-offs while designing secure IoT syste...

Microservice security smells denote possible symptoms of bad design decisions that may compromise the security of an application. Therefore, security smells should be carefully checked and possibly resolved by applying some refactorings. In this paper, we introduce SST (Security Smell Triager) an open-source tool that automates the triage of the po...

The multidisciplinary nature of software architects demands a diverse set of skills, ranging from technical expertise to interpersonal abilities. Within this domain, software architects are responsible for designing systems that adhere to quality standards, meet functional requirements, and align with organizational goals. However, educating or tra...

Conventional methods for process monitoring often fail to capture the causal relationships that drive outcomes, making hard to distinguish causal anomalies from mere correlations in activity flows. Hence, there is a need for approaches that allow causal interpretation of atypical scenarios (anomalies), allowing to identify the influence of operatio...

Zero trust architecture (ZTA) is a novel security approach to building secure systems. For ZTA-based systems, several quality attributes (QAs) are critical given the challenges presented by its principles such as continuous verification, least privilege, and network micro-segmentation. Although several studies have contributed to the analysis the q...

The effective transfer and acquisition of necessary knowledge, methods, and attitudes pose significant challenges for Software Engineering Education. Furthermore, training in software development skills and knowledge currently lacks a clear set of techniques to link learning styles and preferences with development team roles. This paper characteriz...

Microservices gained momentum in enterprise IT, as they enable building cloud-native applications. At the same time, they come with new security challenges, including security smells, viz., symptoms of bad (though often unintentional) design decisions that might affect application security. This study aims to explore the impacts of microservice sec...

Role Playing (RP) serves as an instructional approach to enrich the learning experience for students and boost their learning by the effective application of their theoretical knowledge within a practical context. In Software Engineering Education (SEE), the utilization of RP proves beneficial in fostering the development of skills such as teamwork...

Between 1990 and 2023, Chile’s Congress processed and approved 2738 laws, with an average processing time of 667.8 days from proposal to official publication. Recent political circumstances have underscored the need to identify legislative proposals that can be expedited for approval and which ones are unlikely to be approved at all. This article d...

Context: Software Engineering is dedicated to the systematic and efficient development of software, which necessitates the active participation of all team members and a recognition of their unique skills and abilities, including those with autism spectrum disorders (ASD). The inclusion of individuals with ASD presents new perspectives, yet there i...

Role playing is a teaching method widely used to enhance students learning and engagement, by allowing them to adopt specific roles and interact with others in simulating real-world scenarios, thus applying their theoretical knowledge in a practical context. In Software Engineering Education (SEE), role playing may help students to develop key skil...

Since the return of democracy in 1990 until the end of 2020, Chile’s Congress has processed and approved 2404 laws, with an average processing time of 695 days from proposal to official publication. Recent political circumstances have given urgency to identifying those law propositions that might be shepherded to faster approval and those that will...

Architects often evaluate, analyze, and select application frameworks that totally or partially implement architectural patterns that structure architectural software design to address different quality attribute concerns. To satisfy the quality attributes through architectural patterns, these must be complemented by architectural tactics. Although...

The microservice architectural style is widespread in enterprise IT, making the securing of microservices a crucial issue. Many bad practices in securing microservices have been identified by researchers and practitioners, along with security good practices that, if adopted, allow to avoid the corresponding security issues. However, this knowledge...

Resolving security issues in microservice applications is crucial, as many IT companies rely on microservices to deliver their core businesses. Security smells denote possible symptoms of such security issues. However, detecting security smells and reasoning on how to resolve them through refactoring is complex and costly, mainly because of the int...

Microservices is an architectural style for service-oriented distributed computing, and is being widely adopted in several domains, including autonomous vehicles, sensor networks, IoT systems, energy systems, telecommunications networks and telemedicine systems. When migrating a monolithic system to a microservices architecture, one of the key desi...

Information Technology (IT) is a resource for achieving strategic business objectives. However, many Small and Medium-sized Enterprises (SME’s) do not consider IT a strategic area. This article explores the perception of IT governance in Colombia among IT professionals. It presents the design, data analysis, and results of a survey based on the Gov...

The microservice architectural style is widespread in enterprise IT, making the securing of microservices a crucial issue. Many bad practices in securing microservices have been identified by researchers and practitioners, along with security good practices that, if adopted, allow to avoid the corresponding security issues. However, this knowledge...

Securing microservice-based applications is crucial, as many IT companies are delivering their businesses through microservices. Security smells, i.e. possible symptoms of (often unintentional) bad design decisions, can occur in microservice-based applications, resulting in violations of key security properties as well as design soundness (i.e. adh...

The microservice granularity directly affects the quality attributes and usage of computational resources of the system, determining optimal microservice granularity is an open research topic. Microservices granularity is defined by the number of operations exposed by the microservice, the number of microservices that compose the whole application,...

Context: Securing microservice-based applications is crucial, as many IT companies are delivering their businesses through microservices. If security smells affect microservice-based applications, they can possibly suffer from security leaks and need to be refactored to mitigate the effects of security smells therein. Objective: As the currently av...

Microservices define an architectural style that conceives systems as a suite of modular, independent and scalable services. While application design is now simpler, designing secure applications is in general harder than for monolithic applications and the current literature offers little orientation to architects and developers regarding solution...

Many governments worldwide are engaging into digital transformation initiatives to improve efficiency, effectiveness, cost, and transparency. Collaborative e-government processes offer a way to overcome the typical integration and interoperability issues of existing isolated e-government solutions. A study was conducted to help e-government modelle...

Microservice-based systems promote agility and rapid business development. Some features, such as fast time-to-market, scalability and optimal response times, have encouraged stakeholders to get more involved in the development and implementation of microservices architectures in order to translate their business vision into the implementation of t...

Current public administration trends have raised the importance of putting the public values of the states' mission (social value and well-being) at the centre of the public management. Digital transformation of the states is a public initiative to adapt public processes of institutions to the new digital reality, and in this way, to adapt public p...

Making the right decisions is challenging for architects on all levels of seniority. Less experienced architects in particular perceive the transition from design problems to their solutions as hard; it is not always clear how to find suitable concepts and technologies, how to compare alternatives, and how to build consensus. Lack of experience mak...

Software architecture evaluations allow systematic checking of software architecture fitness regarding the context and business. However, selecting and using an evaluation method always have some challenges and issues. This article reports an architecture review while developing an innovation projects support platform for a Chilean R&D and engineer...

Microservices are a software development approach where applications are composed of small independent services that communicate through well-defined APIs. A major challenge of designing these applications is determining the appropriate microservices granularity, which is currently done by architects using their judgment. This article describes Mic...

[Context and Motivation] It is common for teams to take shortcuts during software development that, in the future, will lead to maintainability issues and affect productivity and development cost. Different types of technical debt may affect software projects, including those associated with software documentation. Although there are many studies o...

The Electronic Health Record (EHR) is a digital document that stores sensitive patient information. In this regard, there are novel techniques and methods for satisfying security in EHR in specific domains (such as authentication, networking, cryptography, among others). Nevertheless, there is not enough evidence on quality instruments composed of...

While building microservice-based applications, architects need to choose among different frameworks to provide generic functionalities to address quality attribute concerns, such as high-availability. Although using frameworks brings various benefits, it is not clear how they actually impact on the properties characterizing the high-availability o...

Microservices is an architectural style that promotes the facility to build and maintain systems by breaking down its business capabilities into smaller and distributed services. Often, practitioners commonly use frameworks to provide generic functionalities to address recurring quality attribute concerns on microservices-based systems. Nevertheles...

Telehealth systems deliver remote care of elderly and physically less able patients as well as remote surgeries, treatments, and diagnoses. In this regard, several systemic properties must be satisfied (such as security) in order to ensure the functionality of Telehealth systems. Although existing studies discuss different security episodes that in...

Microservices architecture has become enormously popular because traditional monolithic architectures no longer meet the needs of scalability and rapid development cycle, and the success of some large companies in building and deploying services is a strong motivation for others to consider making the change. However, performing the migration proce...

Cyber-Physical Systems (CPS) attract growing interest from architects and attackers, given their potential effect on privacy and safety of ecosystems and users. Architectural tactics have been proposed as a design-time abstraction useful to guide and evaluate systems design decisions that address specific system qualities, but there is little publi...

There is growing use of Internet-of-Things (IoT) and Cyber-Physical Systems (CPS) in industry, homes, cars, and other environments, and several operating systems have been proposed to manage these environments. The growing use of long-lived IoT and CPS has made them susceptible to obsolescence and change, just like "normal" software, demanding syst...

Los microservicios son un enfoque arquitectónico y organizativo del desarrollo de software en el que las aplicaciones están compuestas por pequeños servicios independientes que se comunican a través de un API bien definida y protocolos ligeros. En este trabajo se realizó una revisión de literatura para identificar los desafíos y tendencias de inves...

Microservices is an architectural style that considers systems as modular, costumer-centric, independent, and scalable suite of services. In order to address security requirements in microservices-based systems, architects often must focus on critical quality attributes, such as availability, aiming at employing architectural solutions that provide...

Microservices is an architectural style that conceives of systems as modular, costumer-centric, independent and scalable suite of services; it offers several advantages but its growing popularity has given rise to security challenges. Building secure systems is greatly helped by deploying existing security mechanisms, but current literature does no...

Microservice-based systems (MBS) are distributed systems consistent of smaller components (possibly developed by separate teams using different technologies) that use lightweight mechanisms to communicate with each other. One of the main quality attributes that motivate MBS is scalability, and there are several available frameworks to face scalabil...

Telehealth systems (TS's) provide remote health-based services to improve the quality of service of patient treatment. Most healthcare professionals have access to standard telecommunications technology (such as Wireless Body Area Network (WBAN), biosensors, remote medical robots, and others) to offer remote care of elderly and physically less able...

Microservices are becoming a leading architectural choice in the service-oriented software industry. This approach proposes to develop applications as a suite of small services, each running on its own process and intercommunicating with lightweight mechanisms. Currently, there is still no clear perspective of emerging recurrent solutions (architec...

Microservice-based systems instantiate an architectural style that conceives of systems as sets of modular, customer-centric, independent, and scalable services. These systems express a similar essential structural organization and seems appropriate to design them using architectural patterns because these combine an understanding of the system dom...

Microservices are an emerging distributed architectural style to build highly scalable Web systems. Many design patterns have been proposed for microservices, and some of them for scalability, but this growing corpus has not yet been organized as a coherent, easy-to-use pattern language. This article builds on previous work that identified existing...

Building secure software architectures requires taking several design decisions to achieve security requirements; these decisions must be revised carefully before agreement given their impact on system vulnerability and mission-readiness. Architects customarily take these resolutions, drawing upon specialized knowledge like architectural tactics fo...

Microservices are an emerging trend for development of service-oriented software. This approach proposes to build each application as a collection of small services running on separate process and inter-communicating with lightweight mechanisms. Systematic development of microservices is hampered by the lack of a catalog of emerging recurrent archi...

Microservices are quickly becoming an outstanding architectural choice in the service-oriented software industry. This approach proposes to develop each application as a collection of small services, each running on its own process and intercommunicating with lightweight mechanisms. Currently, there is still no clear perspective of emerging recurre...

Smart Cities (SC) are a growing trend, and ICT is a fundamental element for their development. Elaborating national policies about SC requires measuring cities' success in ICT adoption. This article describes the Smart City ICT Adoption Maturity Model (SCIAMM), which defines five maturity levels, and consists of five domains (e-government strategy,...

Los sistemas inteligentes de transporte (ITS, Intelligent Transportation Systems) son claves en industria 4.0 como infraestructura transversal que apoya otros servicios, como transporte público, transporte de carga y logística. Para alcanzar un alto nivel de automatización en ITS, se requiere el intercambio de datos con sistemas cada vez más inteli...

Service-based systems (SBSs) need to be reconfigured when there is evidence that the selected Web services configurations no further satisfy the specifications models and, thus the decision-related models will need to be updated accordingly. However, such updates need to be performed at the right pace. On the one hand, if the updates are not quickl...