To Docker or Not to Docker: A Security Perspective

Theo Combe, Antony Martin, Roberto Di Pietro

Research output: Contribution to journalArticlepeer-review

199 Scopus citations

Abstract

The need for ever-shorter development cycles, continuous delivery, and cost savings in cloud-based infrastructures led to the rise of containers, which are more flexible than virtual machines and provide near-native performance. Among all container solutions, Docker, a complete packaging and software delivery tool, currently leads the market. This article gives an overview of the container ecosystem and discusses the Docker environment's security implications through realistic use cases. The authors define an adversary model, point out several vulnerabilities affecting current Docker usage, and discuss further research directions.
Original languageEnglish (US)
Pages (from-to)54-62
Number of pages9
JournalIEEE Cloud Computing
Volume3
Issue number5
DOIs
StatePublished - Jan 1 2016
Externally publishedYes

ASJC Scopus subject areas

  • Computer Science (miscellaneous)
  • Software
  • Computer Science Applications
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'To Docker or Not to Docker: A Security Perspective'. Together they form a unique fingerprint.

Cite this