Secure code execution on cloud-based infrastructure with application containers
This project aims to enforce the security of a host system which executes the untrusted code submitted by users online. There are three approaches being implemented, AppArmor, Docker and SELinux. Both AppArmor and SELinux are Linux kernel security modules. The former restricts programs’ capabilit...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2017
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/72838 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| Summary: | This project aims to enforce the security of a host system which executes the untrusted code
submitted by users online. There are three approaches being implemented, AppArmor, Docker
and SELinux. Both AppArmor and SELinux are Linux kernel security modules. The former
restricts programs’ capabilities and the latter enforces mandatory access control policy. Docker
isolates applications from each other by its container technology, which is a virtual machine in
a much smaller scale and lesser resource needed as compared to the traditional ones. In this
project, performance and security tests are conducted on these approaches to measure their
performance and effectiveness. |
|---|