Review of Secure Containers Based on System Call Isolation#br#

	#br#

Abstract

Abstract: This article elucidates the research progress in enhancing container security through the isolation of system calls. The article firstly outlines the development background of containerization technology and its major security challenges. Subsequently, an indepth analysis is conducted on the role of system call isolation in enhancing the security of containers, including the techniques of limiting the system calls of containerized applications to reduce the attack surface, and leveraging operating system middleware and hardware protection mechanisms to accomplish the isolation and protection of containers. By comparing the implementation principles, performance, and their effects on isolation, reduction of attack surfaces, and data protection, the article reveals the advantages and limitations of system call isolation technologies in enhancing container security.

Key words: secure container, system call, isolation, Seccomp BPF, operating system middleware, hardware protection mechanism

摘要： 阐述了基于系统调用隔离增强容器安全性的研究进展.首先概述了容器技术的发展背景及其面临的主要安全挑战，随后深入分析了系统调用隔离在提升容器安全性中的作用，包括限制容器应用程序的系统调用以减少攻击面、使用操作系统中间件和硬件保护机制等技术实现对容器的隔离和保护.通过比较这些技术的实现原理、性能以及它们在隔离性、减少攻击面和数据保护方面的效果，揭示了系统调用隔离技术在提升容器安全性方面的优势和局限.

关键词: 安全容器, 系统调用, 隔离, Seccomp BPF, 操作系统中间件, 硬件保护机制

CLC Number:

TP301

刘维杰, 章恬, 张杰, 刘西蒙, . 基于系统调用隔离的安全容器研究综述[J]. 信息安全研究, 2026, 12(1): 2-.

References

［1］Combe T, Martin A, Di Pietro R. To docker or not to docker: A security perspective［J］. IEEE Cloud Computing, 2016, 3(5): 5462［2］Li Yiwen, DolanGavitt B, Weber S, et al. LockinPop: Securing privileged operating system kernels by keeping on the beaten path［C］ Proc of the 2017 USENIX Annual Technical Conference (USENIX ATC’17). Berkeley, CA: USENIX Association, 2017: 113 ［3］Mishra S, Polychronaki M. Shredder: Breaking exploits through API specialization［C］ Proc of the 34th Annual Computer Security Applications Conference (ACSAC’18). New York: ACM, 2018: 116 ［4］Kim T, Zeldovich N. Practical and effective sandboxing for nonroot users［C］ Proc of the 2013 USENIX Annual Technical Conference. Berkeley, CA: USENIX Association, 2013: 139144 ［5］Corbet J. Seccomp and sandboxing［EBOL］. (20090513) ［20240122］. https:lwn.netArticles332974［6］McCanne S, Jacobson V. The BSD packet filter: A new architecture for userlevel packet capture［C］ Proc of the 1993 USENIX Winter Conference (USENIX’93). Berkeley, CA: USENIX Association, 1993: 259270［7］Jacobsen C, Khole M, Spall S, et al. Lightweight capability domains: Towards decomposing the Linux kernel［C］ Proc of the 8th Workshop on Programming Languages and Operating Systems (PLOS’15). New York: ACM, 2015: 814［8］Smalley S, Vance C, Salamon W. Implementing SELinux as aLinux security module［EBOL］. ［20251214］. https:www.cs.unibo.it~sacerdotdocsoslmselinuxmodule.pdf［9］Gruenbacher A, Arnold S. AppArmor technical documentation［EBOL］. (20070411) ［20240122］. https:lkml.iu.eduhypermaillinuxkernel0706.10805techdoc.pdf［10］Corbet J. eBPF seccomp() filters［EBOL］. (20210531)［20240122］. https:lwn.netArticles857228［11］Jia Jinghao, Zhu Yifei, Williams D, et al. Programmable system call security with eBPF［J］. arXiv preprint,arXiv:2302.10366, 2023［12］Zhong Yuhong, Li Haoyu, Wu Yujian, et al. XRP: Inkernel storage functions with eBPF［C］ Proc of the 16th USENIX Symp on Operating Systems Design and Implementation (OSDI 22).Berkeley, CA: USENIX Association, 2022: 375393［13］Xing Yunlong, Wang Xinda, Torabi S, et al. A hybrid system call profiling approach for container protection［J］. IEEE Trans on Dependable and Secure Computing, 2023, 21(3): 10681083［14］Cassagnes C, Trestioreanu L, Joly C, et al. The rise of eBPF for nonintrusive performance monitoring［C］ Proc of the 2020 IEEEIFIP Network Operations and Management Symposium. Piscataway, NJ: IEEE, 2020: 17［15］Engler D R, Kaashoek M F, O’Toole Jr J. Exokernel: An operating system architecture for applicationlevel resource management［J］. ACM SIGOPS Operating Systems Review, 1995, 29(5): 251266［16］Intel Corporation. Intel software guard extensions programming reference［EBOL］. 2018 ［20240122］. https:download.01.orgintelsgxsgxlinux2.7.1docsIntel_SGX_Developer_Reference_Linux_2.7.1_Open_Source.pdf［17］Baumann A, Peinado M, Hunt G. Shielding applications from an untrusted cloud with haven［J］. ACM Trans on Computer Systems (TOCS), 2015, 33(3): 126［18］Arnautov S, Trach B, Gregor F, et al. {SCONE}: Secure Linux containers with Intel {SGX}［C］ Proc of the 12th USENIX Symp on Operating Systems Design and Implementation (OSDI 16). Berkeley, CA: USENIX Association, 2016: 689703［19］Shinde S, Le Tien D, Tople S, et al. Panoply: LowTCB Linux applications with SGX enclaves［COL］ Proc of the Network and Distributed System Security Symposium(NDSS). Reston, VA, USA: Internet Society, 2017 ［20240301］. https:www.ndsssymposium.orgwpcontentuploads201709ndss2017_075_Shinde_paper.pdf［20］The Linux Kernel. Memory protection keys［EBOL］. 2023 ［20240122］. https:www.kernel.orgdochtmllatestcoreapiprotectionkeys.html［21］Ghavamnia S, Palit T, Mishra S, et al. Temporal system call specialization for attack surface reduction［C］ Proc of the 29th USENIX Security Symposium(USENIX Security 20). Berkeley, CA: USENIX Association, 2020: 17491766［22］DeMarinis N, WilliamsKing K, Jin D, et al. Sysfilter: Automated system call filtering for commodity software［C］ Proc of the 23rd Int Symp on Research in Attacks, Intrusions and Defenses (RAID 2020). Berkeley, CA: USENIX Association, 2020: 459474［23］Bulekov A, Jahanshahi R, Egele M. Saphire: Sandboxing PHP applications with tailored system call allowlists［C］ Proc of the 30th USENIX Security Symposium (USENIX Security 21). Berkeley, CA: USENIX Association, 2021: 28812898［24］Ghavamnia S, Palit T, Polychronakis M. C2C: Finegrained configurationdriven system call filtering［C］ Proc of the 2022 ACM SIGSAC Conf on Computer and Communications Security (CCS’22). New York: ACM, 2022: 12431257［25］Gaidis A J, Atlidakis V, Kemerlis V P. SysXCHG: Refiningprivilege with adaptive system call filters［C］ Proc of the 2023 ACM SIGSAC Conf on Computer and Communications Security (CCS’23). New York: ACM, 2023: 19641978［26］Wan Zhiyuan, Lo D, Xia Xin, et al. Mining sandboxes for Linux containers［C］ Proc of the 2017 IEEE Int Conf on Software Testing, Verification and Validation (ICST). Piscataway, NJ: IEEE, 2017: 92102［27］Borello G. Sysdig and Falco now powered by eBPF［EBOL］. (20190227) ［20240122］. https:sysdig.comblogsysdigandfalconowpoweredbyeBPF［28］Lopes N, Martins R, Correia M E, et al. Container hardening through automated Seccomp profiling［C］ Proc of the 6th Int Workshop on Container Technologies and Container Clouds (WOC’20). New York: ACM, 2020: 3136［29］Lei Lingguang, Sun Jianhua, Sun Kun, et al. SPEAKER: Splitphase execution of application containers［C］ Proc of the 14th Conf on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA). Berlin: Springer, 2017: 230251［30］Yang S, Kang B B, Nam J. Optimus:Associationbased dynamic system call filtering for container attack surface reduction［J］. Journal of Cloud Computing, 2024, 13(1): 7192［31］Ghavamnia S, Palit T, Benameur A, et al. Confine: Automated system call policy generation for container attack surface reduction［C］ Proc of the 23rd Int Symp on Research in Attacks, Intrusions and Defenses (RAID 2020). Berkeley, CA: USENIX Association,2020: 443458［32］Kim S, Kim B J, Lee D H. Profgen: Practical study on system call whitelist generation for container attack surface reduction［C］ Proc of the 14th Int Conf on Cloud Computing (CLOUD). Piscataway, NJ: IEEE, 2021: 278287［33］Canella C, Werner M, Gruss D, et al. Automating Seccomp filter generation for Linux applications［C］ Proc of the 2021 Cloud Computing Security Workshop (CCSW’21). New York: ACM, 2021: 139151［34］Connor R J, McDaniel T, Smith J M, et al. PKU pitfalls: Attacks on PKUbased memory isolation systems［C］ Proc of the 29th USENIX Security Symposium (USENIX Security 20). Berkeley, CA: USENIX Association, 2020: 14091426［35］Voulimeneas A, Vinck J, Mechelinck R, et al. You shall not (by) pass! Practical, secure, and fast PKUbased sandboxing［C］ Proc of the 17th European Conf on Computer Systems. New York: ACM, 2022: 266282［36］Schrammel D, Weiser S, Sadek R, et al. Jenny: Securing syscalls for PKUbased memory isolation systems［C］ Proc of the 31st USENIX Security Symposium (USENIX Security 22). Berkeley, CA: USENIX Association, 2022: 936952［37］Google. gVisor: Container runtime sandbox［EBOL］. ［20240122］. https:github.comgooglegVisor［38］Williams D, Lum B, Koller R, et al. Nablacontainers: A new approach to container isolation［EBOL］. ［20240122］. https:nablacontainers.github.io［39］Kuenzer S, Bdoiu V A, Lefeuvre H, et al. Unikraft:Fast, specialized unikernels the easy way［C］ Proc of the 16th European Conf on Computer Systems. New York: ACM, 2021: 376394［40］Kuo H C, Williams D, Koller R, et al. ALinux in unikernel clothing［C］ Proc of the 15th European Conf on Computer Systems. New York: ACM, 2020: 115［41］Manco F, Lupu C, Schmidt F, et al. My VM is lighter (and safer) than your container［C］ Proc of the 26th Symp on Operating Systems Principles (SOSP’17). New York: ACM, 2017: 218233［42］Archlinux.KVM［EBOL］. ［20240122］. https:wiki.archlinux.orgindex.phpKVM［43］Open Infrastructure Foundation. Kata Containers［EBOL］. ［20240122］. https:katacontainers.io［44］Agache A, Brooker M, Florescu A, et al. Firecracker: Lightweight virtualization for serverless applications［C］ Proc of the 17th USENIX Symp on Networked Systems Design and Implementation (NSDI 20). Berkeley, CA: USENIX Association, 2020: 419434［45］Shen Zhiming, Sun Zhen, Sela G, et al. XContainers: Breaking down barriers to improve performance and isolation of cloudnative containers［C］ Proc of the 24th Int Conf on Architectural Support for Programming Languages and Operating Systems (ASPLOS’19). New York: ACM, 2019: 121135［46］Tsai C C, Arora K S, Bandi N, et al. Cooperation and security isolation of library OSes for multiprocess applications［C］ Proc of the 9th European Conf on Computer Systems. New York: ACM, 2014: 114［47］Tsai C, Porter D E, Vij M. GrapheneSGX: A practical library OS for unmodified applications on SGX［C］ Proc of the 2017 USENIX Annual Technical Conference (USENIX ATC’17). Berkeley, CA: USENIX Association, 2017: 645658［48］Shen Youren, Tian Hongliang, Chen Yu, et al. Occlum: Secure and efficient multitasking inside a single enclave of Intel SGX［C］ Proc of the 25th Int Conf on Architectural Support for Programming Languages and Operating Systems. New York: ACM, 2020: 955970［49］Kerrisk M. posix_spawn(3)Linux manual page［EBOL］. ［20240122］.https:man7.orglinuxmanpagesman3posix_spawn.3.html［50］Baumann A, Appavoo J, Krieger O, et al. A fork () in the road［C］ Proc of the Workshop on Hot Topics in Operating Systems. New York: ACM, 2019: 1422［51］Priebe C, Muthukumaran D, Lind J, et al. SGXLKL: Securing the host OS interface for trusted execution［J］. arXiv preprint,arXiv:1908.11143, 2019［52］Li Guoqing, Takahashi K, Ichikawa K, et al. Comparative performance study of lightweight hypervisors used in container environment［C］ Proc of the 11th Int Conf on Cloud Computing and Services Science(CLOSER 2021). Berlin: Springer, 2021: 215223［53］Anjali, CarazaHarter T, Swift M M. Blending containers and virtual machines: A study of firecracker and gVisor［C］ Proc of the 16th ACM SIGPLANSIGOPS Int Conf on Virtual Execution Environments. New York: ACM, 2020: 101113［54］Espe L, Jindal A, Podolskiy V, et al. Performance evaluation of container runtimes［C］ Proc of the 10th Int Conf on Cloud Computing and Services Science. Berlin: Springer,2020: 273281［55］Bottomley J. Measuring the horizontal attack profile of Nabla containers［EBOL］. (20180714)［20240122］. https:blog.hansenpartnership.commeasuringthehorizontalattackprofileofnablacontainers［56］Wang Xingyu, Du Junzhao, Liu Hui. Performance and isolation analysis of RunC, gVisor and Kata containers runtimes［J］. Cluster Computing, 2022, 25(2): 14971513［57］Olivier P, Chiba D, Lankes S, et al. A binarycompatible unikernel［C］ Proc of the 15th ACM SIGPLANSIGOPS Int Conf on Virtual Execution Environments. New York: ACM, 2019: 5973［58］Weichbrodt N, Aublin P, Kapitza R. Sgxperf: A performance analysis tool for Intel SGX enclaves［C］ Proc of the 19th Int Middleware Conference. New York: ACM, 2018: 201213［59］Xiao Jietao, Yang Nanzi, Shen Wenbo, et al. Attacks are forwarded: Breaking the isolation of MicroVMbased containers through operation forwarding［C］ Proc of the 32nd USENIX Security Symposium (USENIX Security 23). Berkeley, CA: USENIX Association, 2023: 75177534［60］Jang S, Song S, Tak B, et al. Secquant: Quantifying container system call exposure［C］ Proc of the 27th European Symp on Research in Computer Security. Berlin: Springer, 2022: 145166［61］He Yi, Guo R, Xing Yunlong, et al. Cross container attacks: The bewildered eBPF on clouds［C］ Proc of the 32nd USENIX Security Symposium (USENIX Security 23). Berkeley, CA: USENIX Association, 2023: 59715988

[1]	. A DiForest Algorithm for Detecting Abnormal Docker Container [J]. Journal of Information Security Reserach, 2025, 11(12): 1156-.
[2]	. Container Anomaly Detection Based on Attention Mechanism and Multiscale Convolutional Neural Network [J]. Journal of Information Security Reserach, 2025, 11(1): 35-.
[3]	. Traffic Anomaly Detection Method by Secondorder Feature [J]. Journal of Information Security Reserach, 2024, 10(12): 1082-.
[4]	. Security Technologies in 5G Smart Grids [J]. Journal of Information Security Reserach, 2021, 7(9): 815-821.
[5]	. Research on Host Intrusion Fetection Method Based on System Call Behavior Similarity Clustering [J]. Journal of Information Security Reserach, 2021, 7(9): 828-835.
[6]	. Current Situation For 5G Transmission Network Security [J]. Journal of Information Security Reserach, 2021, 7(5): 450-456.
[7]	. Research and Implementation of Data Exchange Scheme Between Different Security Level Networks [J]. Journal of Information Security Research, 2020, 6(4): 338-344.
[8]	. Virtual Machine Introspection Technology Based on System-Call Interception [J]. Journal of Information Security Research, 2020, 6(4): 367-372.
[9]	. Application of Safe Independent DecisionMaking and Controllable Product in ICS [J]. Journal of Information Security Research, 2017, 3(4): 370-374.
[10]	. Research on Malware Detection Technology Based on System Call [J]. Journal of Information Security Research, 2016, 2(4): 367-371.
[11]	Zhang Meng, Huang Weiqing, Wang Siye, and Sun Degang. Summary of Physical Space Information Security Technology Development [J]. Journal of Information Security Research, 2016, 2(2): 107-116.
[12]	. Design and Implementation of Multi-interface Safe High-speed Optical Fiber One-way Transmission System [J]. Journal of Information Security Research, 2015, 1(3): 278-282.