DIVDS: Docker Image Vulnerability Diagnostic System

DIVDS: Docker Image Vulnerability Diagnostic System

Since the development of Docker in 2013, container utilization projects have emerged in various fields. Docker has the advantage of being able to quickly share application build environments among developers through container technology, but it does not provide security guarantees for known security...

Full description

Bibliographic Details
Main Authors: Soonhong Kwon, Jong-Hyouk Lee
Format: Article
Language:English
Published: IEEE 2020-01-01
Series:IEEE Access
Subjects:
Container
Docker image security
Docker image vulnerability evaluation
Online Access:https://ieeexplore.ieee.org/document/9016185/
id doaj-749ed5449e724253b2217b4aec5ba0b4
record_format Article
spelling doaj-749ed5449e724253b2217b4aec5ba0b42021-03-30T02:04:20ZengIEEEIEEE Access2169-35362020-01-018426664267310.1109/ACCESS.2020.29768749016185DIVDS: Docker Image Vulnerability Diagnostic SystemSoonhong Kwon0Jong-Hyouk Lee1https://orcid.org/0000-0002-1753-1284Department of Software, Protocol Engineering Laboratory, Sangmyung University, Cheonan, South KoreaDepartment of Software, Protocol Engineering Laboratory, Sangmyung University, Cheonan, South KoreaSince the development of Docker in 2013, container utilization projects have emerged in various fields. Docker has the advantage of being able to quickly share application build environments among developers through container technology, but it does not provide security guarantees for known security vulnerabilities inside Docker images. Since the Docker images are shared without a means of security vulnerability diagnostic, polluted Docker images can be distributed so that the Docker-based application build environments can be easily collapsed. In this paper, we introduce a Docker Image Vulnerability Diagnostic System (DIVDS) for a reliable Docker environment. The proposed DIVDS diagnoses Docker images when uploading or downloading the Docker images from a Docker image repository.https://ieeexplore.ieee.org/document/9016185/ContainerDocker image securityDocker image vulnerability evaluation
collection DOAJ
language English
format Article
sources DOAJ
author Soonhong Kwon
Jong-Hyouk Lee
spellingShingle Soonhong Kwon
Jong-Hyouk Lee
DIVDS: Docker Image Vulnerability Diagnostic System
IEEE Access
Container
Docker image security
Docker image vulnerability evaluation
author_facet Soonhong Kwon
Jong-Hyouk Lee
author_sort Soonhong Kwon
title DIVDS: Docker Image Vulnerability Diagnostic System
title_short DIVDS: Docker Image Vulnerability Diagnostic System
title_full DIVDS: Docker Image Vulnerability Diagnostic System
title_fullStr DIVDS: Docker Image Vulnerability Diagnostic System
title_full_unstemmed DIVDS: Docker Image Vulnerability Diagnostic System
title_sort divds: docker image vulnerability diagnostic system
publisher IEEE
series IEEE Access
issn 2169-3536
publishDate 2020-01-01
description Since the development of Docker in 2013, container utilization projects have emerged in various fields. Docker has the advantage of being able to quickly share application build environments among developers through container technology, but it does not provide security guarantees for known security vulnerabilities inside Docker images. Since the Docker images are shared without a means of security vulnerability diagnostic, polluted Docker images can be distributed so that the Docker-based application build environments can be easily collapsed. In this paper, we introduce a Docker Image Vulnerability Diagnostic System (DIVDS) for a reliable Docker environment. The proposed DIVDS diagnoses Docker images when uploading or downloading the Docker images from a Docker image repository.
topic Container
Docker image security
Docker image vulnerability evaluation
url https://ieeexplore.ieee.org/document/9016185/
work_keys_str_mv AT soonhongkwon divdsdockerimagevulnerabilitydiagnosticsystem
AT jonghyouklee divdsdockerimagevulnerabilitydiagnosticsystem
_version_ 1724185854268669952

Similar Items