Alan Mills
OGMA: Visualisation for software container security analysis and automated remediation
Mills, Alan; White, Jonathan; Legg, Phil
Authors
Jonathan White Jonathan6.White@uwe.ac.uk
Senior Lecturer in Cyber Security
Professor Phil Legg Phil.Legg@uwe.ac.uk
Professor in Cyber Security
Abstract
The use of software containerisation has rapidly increased in academia and industry which has lead to the production of several container security scanning tools for assessing the security posture and threat of a container image. The variability between tools often differ on the coverage of vulnerabilities, their assessed severity and their output formats. It is also common to find duplicate Common Vulnerabilities and Exposures (CVEs) in their reporting which can often skew the risk assessment of a container. These issues along with the lack of automated solutions for maintaining up-to-date patching of container images are currently open issues identified by the research community that we address in this paper. We present OGMA, a visualisation tool for improved analysis and assessment of container security issues across multiple, often conflicting, scanning tools. In addition to severity, our approach helps to examine attack vector and exploit availability, while also removing duplicated CVEs, therefore providing a clearer picture for risk analysts to understand the threat posed by container deployment. Furthermore, we couple this with a novel remediation scheme for updating vulnerable containers whilst ensuring that functionality is preserved, and show how our visualisation system can highlight the improved security posture of the fixed container. Our results highlight the existing security issues in pre-built container images and the inconsistencies between scanning tools, whilst our proposed approach helps to identify and mitigate such threats to improve container security as part of the wider challenges of software supply chain security.
Presentation Conference Type | Conference Paper (published) |
---|---|
Conference Name | IEEE Cyber Security and Resilience |
Start Date | Jul 27, 2022 |
End Date | Jul 29, 2022 |
Acceptance Date | May 19, 2022 |
Online Publication Date | Aug 16, 2022 |
Publication Date | Aug 16, 2022 |
Deposit Date | May 30, 2022 |
Publicly Available Date | Jun 10, 2022 |
Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
Pages | 76-81 |
Book Title | 2022 IEEE International Conference on Cyber Security and Resilience (CSR) |
ISBN | 9781665499521 |
DOI | https://doi.org/10.1109/CSR54599.2022.9850335 |
Keywords | Index Terms-Containerisation; Virtualisation; Software Vulnerabilities |
Public URL | https://uwe-repository.worktribe.com/output/9577053 |
Publisher URL | https://ieeexplore.ieee.org/document/9850335 |
Related Public URLs | https://ieeexplore.ieee.org/xpl/conhome/9850275/proceeding https://www.ieee-csr.org/ |
Files
OGMA: Visualisation for software container security analysis and automated remediation
(1.2 Mb)
PDF
Licence
http://www.rioxx.net/licenses/all-rights-reserved
Publisher Licence URL
http://www.rioxx.net/licenses/all-rights-reserved
Copyright Statement
© 2022 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
You might also like
Longitudinal risk-based security assessment of docker software container images
(2023)
Journal Article
Teaching offensive and defensive cyber security in schools using a Raspberry Pi Cyber Range
(2023)
Journal Article
GoibhniUWE: A lightweight and modular container-based cyber range
(2024)
Journal Article
Interactive cyber-physical system hacking: Engaging students early using Scalextric
(2022)
Presentation / Conference Contribution
Downloadable Citations
About UWE Bristol Research Repository
Administrator e-mail: repository@uwe.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search