Affiliation:
1. Protocol Engineering Laboratory, Sejong University, Seoul 143-747, Republic of Korea
2. Department of Computer and Information Security & Convergence Engineering for Intelligent Drone, Sejong University, Seoul 143-747, Republic of Korea
Abstract
Docker has become widely used as an open-source platform for packaging and running applications as containers. It is in the limelight especially at companies and IT developers that provide cloud services thanks to its advantages such as the portability of applications and being lightweight. Docker provides communication between multiple containers through internal network configuration, which makes it easier to configure various services by logically connecting containers to each other, but cyberattacks exploiting the vulnerabilities of the Docker container network, e.g., distributed denial of service (DDoS) and cryptocurrency mining attacks, have recently occurred. In this paper, we experiment with cyberattacks such as ARP spoofing, DDoS, and elevation of privilege attacks to show how attackers can execute various attacks and analyze the results in terms of network traffic, CPU consumption, and malicious reverse shell execution. In addition, by examining the attacks from the network perspective of the Docker container environment, we lay the groundwork for detecting and preventing lateral movement attacks that may occur between the Docker containers.
Funder
Institute of Information & Communications Technology Planning & Evaluation
Subject
Electrical and Electronic Engineering,Computer Networks and Communications,Hardware and Architecture,Signal Processing,Control and Systems Engineering
Reference33 articles.
1. Impact of coronavirus pandemic crisis on technologies and cloud computing applications;Alashhab;J. Electron. Sci. Technol.,2021
2. Containers and cloud: From lxc to docker to kubernetes;Bernstein;IEEE Cloud Comput.,2014
3. (2022, October 24). 2022 Developer Survey. Available online: https://survey.stackoverflow.co/2022.
4. (2022, October 24). I Am Your Defense against Cloud Threats: The Latest Unit 42 Cloud Threat Research. Available online: https://unit42.paloaltonetworks.com/iam-cloud-threat-research.
5. Kim, B.S., Lee, S.H., Lee, Y.R., Park, Y.H., and Jeong, J. (2022). Design and implementation of cloud docker application architecture based on machine learning in container management for smart manufacturing. Appl. Sci., 12.
Cited by
6 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Anomaly Detection in Container Systems: Using Histograms of Normal Processes and an Autoencoder;2024 IEEE 25th International Conference of Young Professionals in Electron Devices and Materials (EDM);2024-06-28
2. Analyzing the container security threat on the 5G Core Network;2024 Silicon Valley Cybersecurity Conference (SVCC);2024-06-17
3. Containerization;Advances in Systems Analysis, Software Engineering, and High Performance Computing;2024-04-05
4. DoS Attack Detection with NIDS in Docker Environment;2023 6th International Conference on Advanced Communication Technologies and Networking (CommNet);2023-12-11
5. Threat Intelligence Sharing Component in the Service Mesh Architecture;2023 10th International Conference on Future Internet of Things and Cloud (FiCloud);2023-08-14