LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools
Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster depl...
Gespeichert in:
| Veröffentlicht in: | arXiv.org 2024-05 |
|---|---|
| Hauptverfasser: | , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | arXiv.org |
| container_volume | |
| creator | Md Sadun Haq Ali Saman Tosun Korkmaz, Turgay |
| description | Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster deployment and near-native performance with isolation and security drawbacks compared to Virtual Machines. To address the security issues, scanning tools that scan containers for preexisting vulnerabilities have been developed, but they suffer from false positives. Moreover, using different scanning tools to scan the same container provides different results, which leads to inconsistencies and confusion. Limited work has been done to address these issues. This paper provides a fully functional and extensible framework named LUCID that can reduce false positives and inconsistencies provided by multiple scanning tools. We use a database-centric approach and perform query-based analysis, to pinpoint the causes for inconsistencies. Our results show that our framework can reduce inconsistencies by 70%. The framework has been tested on both Intel64/AMD64 and ARM architecture. We also create a Dynamic Classification component that can successfully classify and predict the different severity levels with an accuracy of 84%. We believe this paper will raise awareness regarding security in container technologies and enable container scanning companies to improve their tool to provide better and more consistent results. |
| format | Article |
| fullrecord | <record><control><sourceid>proquest</sourceid><recordid>TN_cdi_proquest_journals_3054657863</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>3054657863</sourcerecordid><originalsourceid>FETCH-proquest_journals_30546578633</originalsourceid><addsrcrecordid>eNqNjM0KgkAUhYcgKMp3uNA6sJnUaCeWJLSIftYy6RRjdW_N1Xr9FHqAVge-853TE0Op1Gy6mEs5EB5z5fu-DCMZBGoozttTkq2WEEPq9MN8yN3gQg72pmwKi1dI9Z0N7Ihtbd-GQWMJGRaEbLk2WNiWxQ9qzYSw1haNg0OhEbvxkejOY9G_dCfeL0dikq6PyWb6dPRqDNd5RY3DtsqVH8zDIFqESv1nfQHO_UTD</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>3054657863</pqid></control><display><type>article</type><title>LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools</title><source>Free E- Journals</source><creator>Md Sadun Haq ; Ali Saman Tosun ; Korkmaz, Turgay</creator><creatorcontrib>Md Sadun Haq ; Ali Saman Tosun ; Korkmaz, Turgay</creatorcontrib><description>Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster deployment and near-native performance with isolation and security drawbacks compared to Virtual Machines. To address the security issues, scanning tools that scan containers for preexisting vulnerabilities have been developed, but they suffer from false positives. Moreover, using different scanning tools to scan the same container provides different results, which leads to inconsistencies and confusion. Limited work has been done to address these issues. This paper provides a fully functional and extensible framework named LUCID that can reduce false positives and inconsistencies provided by multiple scanning tools. We use a database-centric approach and perform query-based analysis, to pinpoint the causes for inconsistencies. Our results show that our framework can reduce inconsistencies by 70%. The framework has been tested on both Intel64/AMD64 and ARM architecture. We also create a Dynamic Classification component that can successfully classify and predict the different severity levels with an accuracy of 84%. We believe this paper will raise awareness regarding security in container technologies and enable container scanning companies to improve their tool to provide better and more consistent results.</description><identifier>EISSN: 2331-8422</identifier><language>eng</language><publisher>Ithaca: Cornell University Library, arXiv.org</publisher><subject>Containers ; Industrial development ; Security ; Software development ; Virtual environments</subject><ispartof>arXiv.org, 2024-05</ispartof><rights>2024. This work is published under http://creativecommons.org/licenses/by-nc-sa/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>776,780</link.rule.ids></links><search><creatorcontrib>Md Sadun Haq</creatorcontrib><creatorcontrib>Ali Saman Tosun</creatorcontrib><creatorcontrib>Korkmaz, Turgay</creatorcontrib><title>LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools</title><title>arXiv.org</title><description>Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster deployment and near-native performance with isolation and security drawbacks compared to Virtual Machines. To address the security issues, scanning tools that scan containers for preexisting vulnerabilities have been developed, but they suffer from false positives. Moreover, using different scanning tools to scan the same container provides different results, which leads to inconsistencies and confusion. Limited work has been done to address these issues. This paper provides a fully functional and extensible framework named LUCID that can reduce false positives and inconsistencies provided by multiple scanning tools. We use a database-centric approach and perform query-based analysis, to pinpoint the causes for inconsistencies. Our results show that our framework can reduce inconsistencies by 70%. The framework has been tested on both Intel64/AMD64 and ARM architecture. We also create a Dynamic Classification component that can successfully classify and predict the different severity levels with an accuracy of 84%. We believe this paper will raise awareness regarding security in container technologies and enable container scanning companies to improve their tool to provide better and more consistent results.</description><subject>Containers</subject><subject>Industrial development</subject><subject>Security</subject><subject>Software development</subject><subject>Virtual environments</subject><issn>2331-8422</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2024</creationdate><recordtype>article</recordtype><sourceid>BENPR</sourceid><recordid>eNqNjM0KgkAUhYcgKMp3uNA6sJnUaCeWJLSIftYy6RRjdW_N1Xr9FHqAVge-853TE0Op1Gy6mEs5EB5z5fu-DCMZBGoozttTkq2WEEPq9MN8yN3gQg72pmwKi1dI9Z0N7Ihtbd-GQWMJGRaEbLk2WNiWxQ9qzYSw1haNg0OhEbvxkejOY9G_dCfeL0dikq6PyWb6dPRqDNd5RY3DtsqVH8zDIFqESv1nfQHO_UTD</recordid><startdate>20240511</startdate><enddate>20240511</enddate><creator>Md Sadun Haq</creator><creator>Ali Saman Tosun</creator><creator>Korkmaz, Turgay</creator><general>Cornell University Library, arXiv.org</general><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>L6V</scope><scope>M7S</scope><scope>PIMPY</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20240511</creationdate><title>LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools</title><author>Md Sadun Haq ; Ali Saman Tosun ; Korkmaz, Turgay</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-proquest_journals_30546578633</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Containers</topic><topic>Industrial development</topic><topic>Security</topic><topic>Software development</topic><topic>Virtual environments</topic><toplevel>online_resources</toplevel><creatorcontrib>Md Sadun Haq</creatorcontrib><creatorcontrib>Ali Saman Tosun</creatorcontrib><creatorcontrib>Korkmaz, Turgay</creatorcontrib><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central Essentials</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Engineering Collection</collection><collection>Engineering Database</collection><collection>Publicly Available Content Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Md Sadun Haq</au><au>Ali Saman Tosun</au><au>Korkmaz, Turgay</au><format>book</format><genre>document</genre><ristype>GEN</ristype><atitle>LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools</atitle><jtitle>arXiv.org</jtitle><date>2024-05-11</date><risdate>2024</risdate><eissn>2331-8422</eissn><abstract>Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster deployment and near-native performance with isolation and security drawbacks compared to Virtual Machines. To address the security issues, scanning tools that scan containers for preexisting vulnerabilities have been developed, but they suffer from false positives. Moreover, using different scanning tools to scan the same container provides different results, which leads to inconsistencies and confusion. Limited work has been done to address these issues. This paper provides a fully functional and extensible framework named LUCID that can reduce false positives and inconsistencies provided by multiple scanning tools. We use a database-centric approach and perform query-based analysis, to pinpoint the causes for inconsistencies. Our results show that our framework can reduce inconsistencies by 70%. The framework has been tested on both Intel64/AMD64 and ARM architecture. We also create a Dynamic Classification component that can successfully classify and predict the different severity levels with an accuracy of 84%. We believe this paper will raise awareness regarding security in container technologies and enable container scanning companies to improve their tool to provide better and more consistent results.</abstract><cop>Ithaca</cop><pub>Cornell University Library, arXiv.org</pub><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | EISSN: 2331-8422 |
| ispartof | arXiv.org, 2024-05 |
| issn | 2331-8422 |
| language | eng |
| recordid | cdi_proquest_journals_3054657863 |
| source | Free E- Journals |
| subjects | Containers Industrial development Security Software development Virtual environments |
| title | LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-13T04%3A42%3A53IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=document&rft.atitle=LUCID:%20A%20Framework%20for%20Reducing%20False%20Positives%20and%20Inconsistencies%20Among%20Container%20Scanning%20Tools&rft.jtitle=arXiv.org&rft.au=Md%20Sadun%20Haq&rft.date=2024-05-11&rft.eissn=2331-8422&rft_id=info:doi/&rft_dat=%3Cproquest%3E3054657863%3C/proquest%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=3054657863&rft_id=info:pmid/&rfr_iscdi=true |