It has been reported that researchers from the Norwegian University of Science and Technology (NTNU) put 2,500 Docker images from Docker Hub to the test. In a research paper, the computer security researchers describe how they used the open-source Anchore Engine security scanner and their own scripts to analyse a sample set of 2,500 Docker images. They found about 17.8 per cent (430) of the Docker images contained no known vulnerabilities, or 21.6 per cent (533) if you ignore negligible vulnerabilities.
Experts Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Tim Mackey, Principal Security Strategist, Synopsys CyRC (Cybersecurity Research Center), provides expert commentary at @Information Security Buzz.
"Docker images present on Docker Hub should be treated no differently than the source code used to create them...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/vulnerability-analysis-of-2500-docker-hub-images-expert-on-report
Facebook Message
@Tim Mackey, Principal Security Strategist, Synopsys CyRC (Cybersecurity Research Center), provides expert commentary at @Information Security Buzz.
"Docker images present on Docker Hub should be treated no differently than the source code used to create them...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/vulnerability-analysis-of-2500-docker-hub-images-expert-on-report