DC Field | Value | Language |
---|---|---|
dc.contributor.advisor | 신승원 | - |
dc.contributor.author | Choi, Dongmin | - |
dc.contributor.author | 최동민 | - |
dc.date.accessioned | 2024-07-25T19:31:27Z | - |
dc.date.available | 2024-07-25T19:31:27Z | - |
dc.date.issued | 2023 | - |
dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=1045974&flag=dissertation | en_US |
dc.identifier.uri | http://hdl.handle.net/10203/320740 | - |
dc.description | 학위논문(석사) - 한국과학기술원 : 정보보호대학원, 2023.8,[iii, 26 p. :] | - |
dc.description.abstract | The increasing popularity of cloud computing has led to a significant rise in the usage of container technology. Docker and Kubernetes have emerged as standard tools for managing container systems due to their reliability and flexibility. However, REST APIs on container systems have introduced additional attack vectors. In this paper, we investigate the security threats posed by misconfigured container components that are exposed to the Internet. Our study involves an Internet-scale measurement to assess their prevalence. For this end, we collect a total of 1,003,947 IP addresses and identify renowned institutes, governments, and enterprises which are operating exposed and misconfigured container components, indicating potential compromises. Additionally, we conduct a real-world experiment within multi-branch institutes to identify vulnerabilities in misconfigured container components. By conducting a comprehensive scan of all 150,235 IP addresses associated with an institute, we identify three vulnerable servers among the 57 misconfigured container components. This finding demonstrates the feasibility and profitability of exploiting these containers through targeted attacks. This comprehensive investigation provides insights into the prevalence of misconfigured container components to safeguard container systems from unauthorized access. By addressing these security concerns, organizations can protect the integrity and confidentiality of their containerized environments more effectively. | - |
dc.language | eng | - |
dc.publisher | 한국과학기술원 | - |
dc.subject | 정보 보안▼a컨테이너 보안▼a클라우드 보안▼a도커▼a쿠버네티스 | - |
dc.subject | Information security▼aContainer security▼aCloud security▼aDocker▼aKubernetes | - |
dc.title | Uncovering threats in container systems: a study on misconfigured container components | - |
dc.title.alternative | 컨테이너 시스템의 보안 위협 파악: 잘못 설정된 컨테이너 구성 요소에 대한 연구 | - |
dc.type | Thesis(Master) | - |
dc.identifier.CNRN | 325007 | - |
dc.description.department | 한국과학기술원 :정보보호대학원, | - |
dc.contributor.alternativeauthor | Shin, Seungwon | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.