Hide menu

Examensarbeten och uppsatser / Final Theses

Framläggningar på IDA / Presentations at IDA


Se även framläggningar annonserade hos ISY och ITN i Norrköping / See also presentations announced at ISY and ITN in Norrköping (in Swedish)

If nothing is stated about the presentation language then the presentation is in Swedish.


WExUpp - kommande framläggningar
2022-10-07 - SaS
Security in Rootless Containers – Measuring the Attack Surface of Containers
Matilda Engström Ericsson
Avancerad (30hp)
kl 10:15, IDA Charles Babbage (ADIT) (In English)
[Abstract]
Rootless containers are commonly perceived as more secure, as they run without added
privileges. To the best of my knowledge, this hypothesis has never been proven.
This thesis aims to contribute to addressing knowledge gaps in research by measuring
the attack surface of Rootless Podman, Rootless Docker, as well as Rootful Docker for com-
parison. Furthermore, different Rootless Container Engines are analysed in a prestudy to
summarise what current options exist on the market today.
The study concludes that attack surface is significantly reduced when a local container
image is used, instead of downloading one. In addition, the design choice of the container
engine influences the attack surface more than whether the container is rootless or rootful.


Page responsible: Ola Leifler
Last updated: 2022-06-03