Security analysis Docker containers implemented in Linux and Windows
Abstract
The use of containers has become popular in various scenarios for its alignment with recent development technologies and low resource usage. In this scenario, the container docker solution outperformed other, being essentially based operating systems using the Linux kernel. Microsoft recently tried to enter this market by offering ways to perform containers in their line of operating systems for servers. However, there were concerns about network operations and security in Linux containers, and the emergence of Windows Containers highlights this concern. In this sense, this paper presents the initial results of an analysis of some resource control features, image security containers and security in communication between containers.
Keywords:
Cloud Computing, grid, cluster (cluster) and peer-to-peer
References
Details, C. (2017). Cve-2015-6240. ”https://www.cvedetails.com/cve/CVE-2015-6240/”.
Docker (2020). Get started with Docker for Windows. https://docs.docker.com/docker-for-windows/.
Kabbe, J.-A. (2017). Security analysis of docker containers in a production environment. Master’s thesis, NTNU.
NIST (2017). Application container security guide.
NIST (2019). Cve-2019-3811 detail. ”https://nvd.nist.gov/vuln/detail/CVE-2019-3811”.
Panizzon, G., Battisti, J. H. F., Koslovski, G. P., Pillon, M. A., and Miers, C. C. (2019). A Taxonomy of container security on computational clouds: concerns and solutions. Revista de Informática Teórica e Aplicada, 26(1):47–59.
Pannizon, G. (2019). Uma análise de segurança no uso de contêineres docker em nuvens iaas openstack.
Sultan, S., Ahmad, I., and Dimitriou, T. (2019). Container security: Issues, challenges, and the road ahead. IEEE Access, 7:52976–52996.
Zhang, Q., Liu, L., Pu, C., Dou, Q., Wu, L., and Zhou, W. (2018). A comparative study of containers and virtual machines in big data environment. In 2018 IEEE 11th International Conference on Cloud Computing (CLOUD), pages 178–185.
Docker (2020). Get started with Docker for Windows. https://docs.docker.com/docker-for-windows/.
Kabbe, J.-A. (2017). Security analysis of docker containers in a production environment. Master’s thesis, NTNU.
NIST (2017). Application container security guide.
NIST (2019). Cve-2019-3811 detail. ”https://nvd.nist.gov/vuln/detail/CVE-2019-3811”.
Panizzon, G., Battisti, J. H. F., Koslovski, G. P., Pillon, M. A., and Miers, C. C. (2019). A Taxonomy of container security on computational clouds: concerns and solutions. Revista de Informática Teórica e Aplicada, 26(1):47–59.
Pannizon, G. (2019). Uma análise de segurança no uso de contêineres docker em nuvens iaas openstack.
Sultan, S., Ahmad, I., and Dimitriou, T. (2019). Container security: Issues, challenges, and the road ahead. IEEE Access, 7:52976–52996.
Zhang, Q., Liu, L., Pu, C., Dou, Q., Wu, L., and Zhou, W. (2018). A comparative study of containers and virtual machines in big data environment. In 2018 IEEE 11th International Conference on Cloud Computing (CLOUD), pages 178–185.
Published
2020-04-15
How to Cite
PENNACCHI, Raphael; MIERS, Charles.
Security analysis Docker containers implemented in Linux and Windows. In: REGIONAL SCHOOL OF HIGH PERFORMANCE COMPUTING FROM SOUTHERN BRAZIL (ERAD-RS), 20. , 2020, Santa Maria.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2020
.
p. 109-112.
ISSN 2595-4164.
DOI: https://doi.org/10.5753/eradrs.2020.10768.
