Thien-Phuc Doan, Souhwan Jung*
CMC-Computers, Materials & Continua, Vol.72, No.1, pp. 1699-1711, 2022, DOI:10.32604/cmc.2022.025096
Abstract Container technology plays an essential role in many Information and Communications Technology (ICT) systems. However, containers face a diversity of threats caused by vulnerable packages within container images. Previous vulnerability scanning solutions for container images are inadequate. These solutions entirely depend on the information extracted from package managers. As a result, packages installed directly from the source code compilation, or packages downloaded from the repository, etc., are ignored. We introduce DAVS–A Dockerfile analysis-based vulnerability scanning framework for OCI-based container images to deal with the limitations of existing solutions. DAVS performs static analysis using file extraction based on Dockerfile information to… More >
Login
Register
