NCI WEBSITE
NORMA eResearch @NCI Library

Eliminating Misconfiguration and Privilege Escalation in Docker Images

Tools

Sharma, Adarsh (2021) Eliminating Misconfiguration and Privilege Escalation in Docker Images. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration manual]
Preview
 PDF (Configuration manual)
Download (929kB) | Preview

Abstract

Containerization is indeed a type of virtualization of the operating system in which programs operate although sharing the equivalent operating system in separated user zones classified as containers. Docker as a technology is very efficient and effective in the field of information technology security. In this research project we have analysed that This study gives proof of the same, as well as the significance of few more benchmarks that must be implemented. Furthermore, two tests are carried out to offer insight into the reliance on certified images which gets imported or pulled using Dockerhub.This project recommends an architecture that adds an explicit level of protection before image distribution. Anchore Engine is the recommended architecture’s instead of Clair and other tools to analyse the Docker images. Alongside proof, a comprehensive examination of the Docker images on the Dockerhub is presented. On the suggested methodology, hundred images collected randomly are tested, half of which are legitimate image through Dockerhub whereas the remaining fifty are unverified. For the privilege escalation attack part we carried out in which local host which contains an Ubuntu operating system was attacked due to misconfigurations. Using the grounds of the trials, the security effectiveness of docker as a technologies is delivered approaching the end of the research project.

Item Type: Thesis (Masters)
Subjects: T Technology > T Technology (General) > Information Technology > Cloud computing
Q Science > QA Mathematics > Electronic computers. Computer science > Computer Systems > Information Storage and Retrieval Systems
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science > Computer Systems > Information Storage and Retrieval Systems
Divisions: School of Computing > Master of Science in Cloud Computing
Depositing User: Tamara Malone
Date Deposited: 29 Nov 2022 16:18
Last Modified: 08 Mar 2023 15:18
URI: https://norma.ncirl.ie/id/eprint/5940

Actions (login required)

View Item View Item