This is an outdated version published on 2024-07-30. Read the most recent version.

Strategies for Malware Defense in Containerized Environments

Authors

  • usra sami bahria university

Keywords:

: Container, Docker, Trivy, vulnerabilities, Mal- ware.

Abstract

With the rising problems of portability, compati- bility, and scalability in deployment on different environments, containers were introduced. Containers are isolated, portable, and efficient ways of running modern applications. Their use- fulness as tools though, has also led to increased cases of insecurity. The conventional ways of container protection were Ubuntu, Clair, Grape, STRIDE, and DREAD frameworks that relied mostly on vulnerability assessment and threat modelling. However, these measures did not include changes in the evolving features of container attacks aimed at protecting image interfaces and APIs. This paper provides an in-depth analysis of malware attacks and restricting privileges to non-root users upon mali- cious identification. This is done to minimize the attack vectors including the preference of non-root users and only using up- to-date lightweight base images, and multiple build formations. In this paper, the implementation of the Trivy tool is done in the protection of malware attacks. Scanner Trivy is an Open- Source vulnerability scanner that can identify threats and eval- uate risks, to avoid misconfigurations and vulnerabilities. This prevents probable attacks by providing a secure and reliable host environment. Therefore, it helps future generations in mitigating the risks associated with working with contained environments and in overcoming any possible future threats.

Downloads

Published

2024-07-30

Versions

How to Cite

sami, usra. (2024). Strategies for Malware Defense in Containerized Environments. University of Sindh Journal of Information and Communication Technology, 8(1), 39–47. Retrieved from https://sujo.usindh.edu.pk/index.php/USJICT/article/view/7421

Issue

Vol. 8 No. 1 (2024): University of Sindh Journal of Information and Communication Technology (USJICT)

Section

Information Technology

License

Copyright (c) 2025 University of Sindh Journal of Information and Communication Technology

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

University of Sindh Journal of Information and Communication Technology (USJICT) follows an Open Access Policy under Attribution-NonCommercial CC-BY-NC license. Researchers can copy and redistribute the material in any medium or format, for any purpose. Authors can self-archive publisher's version of the accepted article in digital repositories and archives. 

Upon acceptance, the author must  transfer the copyright of this manuscript to the Journal for publication on paper, on data storage media and online with distribution rights to USJICT, University of sindh, Jamshoro, Pakistan. Kindly download the copyright for below and attach as a supplimentry file during article submission

Download copyright form here

Most read articles by the same author(s)

Obs.: This plugin requires at least one statistics/report plugin to be enabled. If your statistics plugins provide more than one metric then please also select a main metric on the admin's site settings page and/or on the journal manager's settings pages.