DockerChannel: A framework for evaluating information leakages of Docker containers

DockerChannel is a software suite for investigating possible information leakages of Docker containers. Its main scope is to support developers to fully assess the impact of the “loose” isolation of statistics provided by the container engine. It can also help researchers to investigate new attacks...

Full description

Saved in:
Bibliographic Details
Published in:SoftwareX 2023-12, Vol.24, p.101576, Article 101576
Main Authors: Cambiaso, Enrico, Caviglione, Luca, Zuppelli, Marco
Format: Article
Language:English
Subjects:
Container security
Cybersecurity
Data leakage
Citations: Items that this one cites
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:DockerChannel is a software suite for investigating possible information leakages of Docker containers. Its main scope is to support developers to fully assess the impact of the “loose” isolation of statistics provided by the container engine. It can also help researchers to investigate new attacks leveraging the orchestration of malicious containers. DockerChannel is built around an extensible Python class abstracting the creation of the covert communication mechanism and it can be used both in a general-purpose manner or “bundled” within pre-existing containers, e.g., to check leakages in real cloud-native deployments.
ISSN:2352-7110
2352-7110
DOI:10.1016/j.softx.2023.101576