Exploring Large Scale Docker Image Vulnerability and Storage Performance Analysis Using High Performance Container-Based Docker Environment

Exploring Large Scale Docker Image Vulnerability and Storage Performance Analysis Using High Performance Container-Based Docker Environment

연구 분야: Software Development

학회: 2024 International Conference on System, Computation, Automation and Networking (ICSCAN)

In modern cloud environments, Docker containers have become a cornerstone for efficient application deployment, enabling microservices architectures and seamless scalability. However, large-scale Docker environments present significant challenges, particularly in terms of security vulnerabilities and storage performance. This paper explores vulnerability analysis and storage performance optimization in high-performance, container-based Docker environments. Docker swarm is a container orchestration platform which could be very useful for maintaining the docker containers at scale even at distributed environment, these tools also provide us a great features for managing the rolling updates and health check in the lifecycle of containers. We perform a comprehensive evaluation of Docker image vulnerabilities using automated scanning tools, assessing common vulnerabilities and exposures (CVEs) across large image repositories. Additionally, we investigate storage performance bottlenecks and analyse the impact of various storage drivers on container efficiency. Our findings offer critical insights into balancing performance and security in high-scale Docker deployments, proposing strategies for mitigating risks and enhancing resource management. The results guide container orchestration decisions for enterprises aiming to deploy secure, high-performance systems.