Zhejiang dianli (May 2022)

A Security Isolation System Based on Docker Container Behavior Analysis

  • WANG Jie,
  • JU Hanji,
  • DU Yue,
  • WANG Yufan,
  • CUI Wenwu

DOI
https://doi.org/10.19585/j.zjdl.202205014
Journal volume & issue
Vol. 41, no. 5
pp. 96 – 102

Abstract

Read online

The smart grid information platforms now mostly use containers to realize the miniaturization of power services, but the containers interact frequently with the outside, and their performance is fragile, and is prone to be paralyzed and becomes the object of attack and hostage, which impinges on the safe operation of the information platform. Therefore, the paper proposes a security isolation system based on Docker container behavior analysis, designs the system architecture and sub-modules, and focuses on the container behavior information collection and a key technology for container behavior anomaly detection. The security isolation system can record Docker container behavior, analyze the recorded data in real time based on artificial intelligence, discover abnormalities and identify attacks in advance, and deal with security threats according to pre-defined rules and strategies, providing an all-round guarantee for the safe operation of smart grid information platform.

Keywords