Best Papers
 Revisiting Security Landscape of Docker Hub Container Images 


Vol. 47,  No. 8, pp. 1231-1243, Aug.  2022
10.7840/kics.2022.47.8.1231


PDF Full-Text
  Abstract

Containerization has recently become a de facto standard of virtualization technology in modern cloud environments. Its popularity has led to the development of various container engines and remote registry services. Docker Hub, the largest container registry, distributes numerous official and community container images. It provides agile ways to develop services using containers but at the same time poses new security threats by sharing vulnerable images. In this paper, we investigate the current state of vulnerabilities in container images shared on Docker Hub. We design an automated security assessment framework that discovers and examines container images on Docker Hub. We obtain the following insights by analyzing all the official images and the 10,000 most downloaded community images through our framework. (1) Both the official and community images have an average of 117 or more vulnerabilities. (2) Vulnerabilities in images are patched on average three days after the vulnerabilities are disclosed. (3) Propagation of vulnerability between images is prevalent, but countermeasures against the propagation are costly. We believe that this paper will be utilized as a good foundation in future work on container security.

  Statistics
Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.


  Related Articles
  Cite this article

[IEEE Style]

M. You, J. Kim, S. Shin, "Revisiting Security Landscape of Docker Hub Container Images," The Journal of Korean Institute of Communications and Information Sciences, vol. 47, no. 8, pp. 1231-1243, 2022. DOI: 10.7840/kics.2022.47.8.1231.

[ACM Style]

Myoungsung You, Jaehan Kim, and Seungwon Shin. 2022. Revisiting Security Landscape of Docker Hub Container Images. The Journal of Korean Institute of Communications and Information Sciences, 47, 8, (2022), 1231-1243. DOI: 10.7840/kics.2022.47.8.1231.

[KICS Style]

Myoungsung You, Jaehan Kim, Seungwon Shin, "Revisiting Security Landscape of Docker Hub Container Images," The Journal of Korean Institute of Communications and Information Sciences, vol. 47, no. 8, pp. 1231-1243, 8. 2022. (https://doi.org/10.7840/kics.2022.47.8.1231)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)






pISSN : 1226 - 4717
eISSN : 2287 - 3880