CONSERVE: A framework for the selection of techniques for monitoring containers security
Journal article, 2022

Context: Container-based virtualization is gaining popularity in different domains, as it supports continuous development and improves the efficiency and reliability of run-time environments. Problem: Different techniques are proposed for monitoring the security of containers. However, there are no guidelines supporting the selection of suitable techniques for the tasks at hand. Objective: We aim to support the selection and design of techniques for monitoring container-based virtualization environments. Approach: First, we review the literature and identify techniques for monitoring containerized environments. Second, we classify these techniques according to a set of categories, such as technical characteristic, applicability, effectiveness, and evaluation. We further detail the pros and cons that are associated with each of the identified techniques. Result: As a result, we present CONSERVE, a multi-dimensional decision support framework for an informed and optimal selection of a suitable set of container monitoring techniques to be implemented in different application domains. Evaluation: A mix of eighteen researchers and practitioners evaluated the ease of use, understandability, usefulness, efficiency, applicability, and completeness of the framework. The evaluation shows a high level of interest, and points out to potential benefits.

virtualization

Software and systems engineering

intrusion detection

security

container monitoring

attack analysis

Author

Rodi Jolak

University of Gothenburg

Volvo Cars

Thomas Rosenstatter

RISE Research Institutes of Sweden

Network and Systems

Mazen Mohamad

University of Gothenburg

Kim Strandberg

Network and Systems

Volvo Cars

Behrooz Sangchoolie

RISE Research Institutes of Sweden

Nasser Nowdehi

Volvo Cars

Riccardo Scandariato

Technical University of Hamburg (TUHH)

Journal of Systems and Software

0164-1212 (ISSN)

Vol. 186 111158

Cyber Resilience for Vehicles - Cybersecurity for automotive systems in a changing environment - phase1 (CyReV)

VINNOVA (2018-05013), 2019-04-01 -- 2021-03-31.

Cyber Resilience for Vehicles - Cybersecurity for automotive systems in a changing environment (CyReV phase 2)

VINNOVA (2019-03071), 2019-01-10 -- 2022-03-31.

Areas of Advance

Information and Communication Technology

Transport

Subject Categories

Embedded Systems

Computer Science

Computer Systems

DOI

10.1016/j.jss.2021.111158

More information

Latest update

4/12/2022