DockerChannel is a software suite for investigating possible information leakages of Docker containers. Its main scope is to support developers to fully assess the impact of the "loose" isolation of statistics provided by the container engine. It can also help researchers to investigate new attacks leveraging the orchestration of malicious containers. DockerChannel is built around an extensible Python class abstracting the creation of the covert communication mechanism and it can be used both in a general-purpose manner or "bundled" within pre-existing containers, e.g., to check leakages in real cloud-native deployments.
DockerChannel: A Framework for Evaluating Information Leakages of Docker Containers
Enrico CambiasoPrimo
;Luca Caviglione
;Marco ZuppelliUltimo
2023
Abstract
DockerChannel is a software suite for investigating possible information leakages of Docker containers. Its main scope is to support developers to fully assess the impact of the "loose" isolation of statistics provided by the container engine. It can also help researchers to investigate new attacks leveraging the orchestration of malicious containers. DockerChannel is built around an extensible Python class abstracting the creation of the covert communication mechanism and it can be used both in a general-purpose manner or "bundled" within pre-existing containers, e.g., to check leakages in real cloud-native deployments.File in questo prodotto:
| File | Dimensione | Formato | |
|---|---|---|---|
|
prod_488408-doc_203336.pdf
accesso aperto
Descrizione: DockerChannel: A framework for evaluating information leakages of Docker containers
Tipologia:
Versione Editoriale (PDF)
Licenza:
Creative commons
Dimensione
723.61 kB
Formato
Adobe PDF
|
723.61 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
