loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Quanqing Xu 1 ; Chao Jin 1 ; Mohamed Faruq Bin Mohamed Rasid 2 ; Bharadwaj Veeravalli 2 and Khin Mi Mi Aung 1

Affiliations: 1 A*STAR, Singapore ; 2 National University of Singapore, Singapore

Keyword(s): Trust, Docker, Blockchain, BitTorrent, Decentralized System.

Abstract: Default Docker installation does not verify an image authenticity. Authentication is vital for users to trust that the image is not malicious or tampered with. As Docker is currently a popular choice for developers, tightening its security is a priority for system administrators and DevOps engineers. Docker recently deployed Notary that is a solution to verify authenticity of their images. Notary is a viable solution, but it has some drawbacks. This paper specifically addresses its vulnerability towards Denial-of-Service (DoS) attacks, the repercussions, and discuss two potential solutions. The proposed solutions involve decentralising the trust via either a BitTorrent-like protocol or a modified blockchain. The solutions greatly reduce the risk of DoS and at the same time provide a trustless signature verification service for Docker. The solutions could also possibly be repackaged for similar use cases on other technologies. We demonstrate the proposed blockchain-based solution’s sc alability and efficiency by conducting performance evaluation. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.145.8.42

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Xu, Q.; Jin, C.; Rasid, M.; Veeravalli, B. and Aung, K. (2017). Decentralized Content Trust for Docker Images. In Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - IoTBDS; ISBN 978-989-758-245-5; ISSN 2184-4976, SciTePress, pages 431-437. DOI: 10.5220/0006379404310437

@conference{iotbds17,
author={Quanqing Xu. and Chao Jin. and Mohamed Faruq Bin Mohamed Rasid. and Bharadwaj Veeravalli. and Khin Mi Mi Aung.},
title={Decentralized Content Trust for Docker Images},
booktitle={Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - IoTBDS},
year={2017},
pages={431-437},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006379404310437},
isbn={978-989-758-245-5},
issn={2184-4976},
}

TY - CONF

JO - Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - IoTBDS
TI - Decentralized Content Trust for Docker Images
SN - 978-989-758-245-5
IS - 2184-4976
AU - Xu, Q.
AU - Jin, C.
AU - Rasid, M.
AU - Veeravalli, B.
AU - Aung, K.
PY - 2017
SP - 431
EP - 437
DO - 10.5220/0006379404310437
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic