Skip to content

ECO-OPS-SEC-001

Name: Repeated token introspection on hot path

Category: Operations

Family: Identity & Security Efficiency

Primary layer: network

System layers: network

Description

Every request performs remote token introspection or identity lookup without safe caching or local validation.

Impact

  • type: network
  • confidence: 0.75
  • notes: Added as part of the 0.3.0 expansion to capture cross-system sustainability and operational waste.

Detection

  • method: static-or-runtime
  • confidence: 0.55
  • runtime_validation_required: Yes

Remediation

  • guidance: Use bounded token caching, local verification for signed tokens, and risk-based refresh policies.
  • tradeoffs: May require architecture, product, or operations review rather than a local code change.

Cost Dimensions

  • compute: medium
  • memory: low
  • network: high
  • storage: low
  • human_time: medium
  • carbon: medium
  • water: low

Amplification

  • scales_with_users: Yes
  • scales_with_data_volume: No
  • scales_non_linearly: No

Temporal Behavior

  • startup_only: No
  • steady_state: Yes
  • burst_sensitive: Yes
  • time_degradation: No

Runtime Evidence

  • auth service metrics
  • request traces
  • latency profiles

Pattern examples

No pattern examples provided.

Remediation examples

No remediation examples provided.

Metadata

  • catalog_version: 0.4.0
  • status: draft
  • source: catalog expansion recommendations applied 2026-05-21