LUCID: A Framework for Reducing False Positives and Inconsistencies Among Container Scanning Tools

arXiv:2405.07054v1 Announce Type: new
Abstract: Containerization has emerged as a revolutionary technology in the software development and deployment industry. Containers offer a portable and lightweight solution that allows for packaging applications and their dependencies systematically and efficiently. In addition, containers offer faster deployment and near-native performance with isolation and security drawbacks compared to Virtual Machines. To address the security issues, scanning tools that scan containers for preexisting vulnerabilities have been developed, but they suffer from false positives. Moreover, using different …

addition applications arxiv container containerization containers cs.cr dependencies deployment development false positives framework industry near offer packaging performance portable scanning software software development solution technology tools