摘要
随着云原生技术的发展,容器应用越来越广泛。作为容器运行的载体,镜像对于容器安全起着至关重要的作用。为更好理解容器镜像安全扫描的原理,指导容器安全实践,详细分析镜像在本地和仓库中的存储原理,总结其存储规律。最后,以1个含有木马病毒的镜像为例,分析镜像非法篡改过程。
With the development of cloud-native technologies,containers are used more and more widely.As the carrier of container operation,image plays a crucial role in the security of container.In order to better understand the principle of image security scanning,and guide container security practices,it fully analyzes the storage principle of local images and registry images,and summarizes the storage rules.Finally,a Trojan image is taken as an example to analyze the process of image illegal tampering.
作者
丁攀
徐雷
刘安
苏俐竹
Ding Pan;Xu Lei;Liu An;Su Lizhu(China Unicom Research Institute,Beijing 100048,China)
出处
《邮电设计技术》
2022年第9期82-87,共6页
Designing Techniques of Posts and Telecommunications
关键词
容器镜像
镜像存储
镜像扫描
Docker image
Image storage
Image scanning
