Title:
PROTECTING CONTAINER IMAGES AND RUNTIME DATA
Document Type and Number:
WIPO Patent Application WO/2024/007733
Kind Code:
A1
Abstract:
An approach for protecting container image and runtime data from host access may be presented. Container systems have allowed for more efficient utilization of computing resources, removing the requirement of a hypervisor, and packaging all necessary dependencies within an application. Preventing host access to container image and runtime data can be advantageous for a multitude of reasons. The approach herein may include, flattening a plurality of root file system of a one or more container images into a single layer. The approach may also include generating a container base image for each of the one or more flattened root file system. The approach may include encrypting each of the generated container base images with the flattened root file system.
Inventors:
GAO WENYI (CN)
HUO QIFENG (CN)
NIU SIBO (CN)
WANG SEN (CN)
LI DAN (CN)
HUO QIFENG (CN)
NIU SIBO (CN)
WANG SEN (CN)
LI DAN (CN)
Application Number:
PCT/CN2023/093783
Publication Date:
January 11, 2024
Filing Date:
May 12, 2023
Export Citation:
Assignee:
IBM (US)
IBM CHINA CO LTD (CN)
IBM CHINA CO LTD (CN)
International Classes:
G06F21/62
Foreign References:
| CN114600082A | 2022-06-07 | |||
| CN113383330A | 2021-09-10 | |||
| US20180129803A1 | 2018-05-10 | |||
| US20220075760A1 | 2022-03-10 |
Attorney, Agent or Firm:
KING & WOOD MALLESONS (CN)
Download PDF: