Pre-to-post deployment vulnerability scanning for containers

The project is in the important domain of container security where containerization is an emerging technology
transforming the way a wide-range of applications are recently being deployed. This project will address unique
security threats mainly due to the vulnerabilities and misconfigurations that are commonly found in container
technologies. Particularly, the intern will build a comprehensive framework that will offer both pre- and postdeployment
vulnerability scanning methods on container images and container runtimes, respectively. The predeployment
scanning method will allow to proactively prevent security damages on a containerized environment
(including co-located tenants and cloud providers). The post-deployment method will enable a continuous security
guarantee in a containerized environment. As a result, the partner organization will build the unique capabilities
to provide a proactive to runtime security solution to container-based businesses. At the same time, the intern will
be trained with highly demanding research and technical skills in this emerging field.

Faculty Supervisor:

Suryadipta Majumdar

Student:

Partner:

Sunphinx innovation inc.

Discipline:

Computer science

Sector:

Professional, scientific and technical services

University:

Concordia University

Program: