An Empirical Study on Security Vulnerabilities in Online Docker Images

Date

2020

Authors

Zou, Xiaochen

Journal Title

Journal ISSN

Volume Title

Publisher

Abstract

This paper presents an empirical study on the security vulnerabilities in docker images that are public available at Docker Hub repository. To perform the study, I developed an automatic tool ImageCheck to collect installed libraries in a docker image and check the library versions against the CVE database to detect potential vulnerabilities in docker images. The study uses 1,487 most downloaded free docker images as subjects and considers all CVE vulnerabilities published from Jan. 2018 to Feb. 2020. ImageCheck detects 507 vulnerabilities from 250 docker images, and the study results show that these vulnerabilities cover a large number of docker image categories and vulnerability categories.

Description

This item is available only to currently enrolled UTSA students, faculty or staff. To download, navigate to Log In in the top right-hand corner of this screen, then select Log in with my UTSA ID.

Keywords

Docker, security, software

Citation

Department

Computer Science