Title: Investigating Security Threats in Linux Containers（Linux容器中的安全隐患）
Container technology provides a lightweight operating system level virtual hosting environment. It has been broadly adopted in various computation scenarios, including edge computing, microservice architecture, serverless computing, and commercial cloud vendors. However, security and privacy concerns still widely exist regarding whether the container features in the Linux kernel can provide the same level of security and isolation guarantees as VMs. In this talk, I will introduce security problems in two basic building blocks, namespace and control groups, that enable containerization on Linux; and discuss potential exploitations and consequences.
Xing Gao received his Ph.D. in Computer Science from the College of William and Mary at Williamsburg in 2018. He is an Assistant Professor of Computer Science at the University of Memphis, Memphis, TN. His research interests lie in the areas of security, cloud computing, and mobile computing. He has published in a series of top‐tier CS venues and journals such as NDSS, DSN, ICDCS, SRDS, TDSC, TIFS, etc.
高幸博士在2018年于美国威廉玛丽学院计算机系获博士学位，现为美国孟菲斯大学计算 机科学系助理教授。迄今为止，在NDSS, DSN, ICDCS, IEEE Transactions on Dependable and Secure Computing, IEEE Transactions on Information Forensics and Security等计算机 会议与期刊发表论文。其主要研究方向包括:计算机系统与网络安全，云计算与安全 ，移动计算与安全。