Docker container safety management method, system and equipment and storage medium

Abstract

The invention provides a Docker container safety management method. The Docker container safety management method comprises the following steps: an SSHD (Solid State Hybrid Drive) service is installedin a Docker mirror; a container publishing module transmits container information of a creating container to a server information module; the server information module transmits the container information to an operation-maintenance safety audit module through an API (Application Programmable Interface); an authorization management module acquires operation permission information of the containerset by a user, and transmits the operation permission information to the operation-maintenance safety audit module; and the operation-maintenance safety audit module acquires a container access request of the user, performs login verification according to the operation permission information, is connected with the container through an SSH (Secure Shell) protocol if the verification is passed, so that the user logs in the container through the operation-maintenance safety audit module, and the operation-maintenance safety audit module denies the container access request of the user if the verification fails. Container authorization, safety control of login and operation audit are all finished by the operation-maintenance safety audit module, so that the safety of the container in a using process is ensured fully.

Description

technical field [0001] The present invention relates to the field of computer technology, in particular to a Docker container security management method, system, equipment and storage medium. Background technique [0002] With the rapid development of Internet information technology, various information systems and network products emerge in an endless stream. Especially in large and medium-sized entities, the rapid construction of IT systems is expanding from traditional closed business systems to large-scale key business systems, and the types of applications involved are also increasing day by day, and the application of Docker containers by large enterprises is also becoming a growing trend. trend. Docker is an open source virtualization technology that aims to provide an automated deployment solution for applications, allowing developers to package their applications and dependencies into a portable container, which can be regarded as a lightweight The virtual machine...

AI Technical Summary

Problems solved by technology

[0003] At present, the access to the container adopts the way that the client directly connects to the container. However, because the container cannot save the log record of the execution operation, the operation and maintenance personnel's record of the container execution operation will be destroyed with the release of the container, resulting in the security management process. There are serious deficiencies in the system, which cannot meet the safety management standards of enterprise production servers, and cannot pass the qualification review of level protection, PCI, ISO27001 and other standards

Images