Browse Prior Art Database

System method and apparatus to automatically whitelist container Image Layers in cloud

IP.com Disclosure Number: IPCOM000247862D
Publication Date: 2016-Oct-07
Document File: 4 page(s) / 148K

Publishing Venue

The IP.com Prior Art Database

Abstract

Disclosed is a system method and apparatus to automatically whitelist container Image Layers in cloud

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 4

System method and apparatus to automatically whitelist container Image Layers in cloud

Background

By now, the many benefits of cloud provisioning using docker containers are widely known. It's affordable and flexible, with a broad range of features that include on-demand, self-service,
One of the merits of docker clouds is that docker images have an amazing way of becoming building blocks of future docker images. Every Docker image consists of a set of layers which make up the final image. Once we build layers or intermediate images, Docker will reuse them for new builds. This makes the builds much faster. This is great for continuous integration, where we want to build an image at the end of each successful build (e.g. in Jenkins). But the build is not only faster, the images are also smaller, since intermediate images are shared between images. Another important aspect is rollback, since every image contains all of its building steps, we can easily go back to a previous step if we want so.

Choosing such a model sounds simple enough. However, the cloud's complexity lies beneath the covers, especially when it comes to the critical task of cloud provisioning.

Existing problems identified:

Suppose, one of the Layer (Intermediate Image) seems to be highly used and performing(pre and post provisioning(security, performance).) - but we are having many further images built on top of it in a cloud management system , there is no way to let end customers know(or recommend) about such highly useful image layers and images built on top of it. Currently there is no way to white list usage of any container image or any image which used the particular image as a Layer

There is proposed a method by which container image layers can be automatically whitelisted

There is also proposed a method by which whitelisting can be utilized during the creation of new containers in a cloud

Method by which container image layers can be automatically whitelisted

Automatic whitelisting of container image layers can be done in phases.

Step 1: Periodic checking and building a list of image layers that are qualified for whitelisting

1


Page 02 of 4

First step of this is to collect list o...