NORMA eResearch @NCI Library

Mitigation of Dockers security vulnerabilities hosted on a physical server using automation

Hande, Pooja (2020) Mitigation of Dockers security vulnerabilities hosted on a physical server using automation. Masters thesis, Dublin, National College of Ireland.

[img]
Preview
PDF (Master of Science)
Download (2MB) | Preview

Abstract

Linux container has evolved from the virtual machine and became famous because of its lightweight property. This enabled the large scale deployment of themicroservice based applications on the cloud environment. Docker container has become more popular in the last two years and has 450 million times downloads. Although containers are playing a vital role in cloud computing fields and contributing to the micro-service deployment, container security is a major concern and barrier for their adoption in the production environment of the IT industries. In this paper initially, we discovered the existing exploits in the containers and the solutions provided to them as a part of the literature survey. This paper focuses on the security issues on the running container and the way to fix them in order to make the container more resilient. With this objective to fix the container issues created an automated script written in Python, which will scan the vulnerabilities in the docker. Upon a successful scan, it will generate a report with the list of the security issues present in the docker container. Further, with user consent, it will change the container configuration to fix the detected container security issues. To achieve this goal we have modified Linux security module like App Armor profile, Cgroup, Privileged and so on. With this research, we hope the user will get a clear vision of the possible vulnerabilities and help to avoid in an early stage.

Item Type: Thesis (Masters)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science

T Technology > T Technology (General) > Information Technology > Cloud computing
Divisions: School of Computing > Master of Science in Cloud Computing
Depositing User: CAOIMHE NI MHAICIN
Date Deposited: 19 Mar 2020 12:34
Last Modified: 19 Mar 2020 12:34
URI: http://trap.ncirl.ie/id/eprint/4134

Actions (login required)

View Item View Item