{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,19]],"date-time":"2026-02-19T05:24:22Z","timestamp":1771478662474,"version":"3.50.1"},"reference-count":75,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/100016735","name":"Asia Pacific University of Technology and Innovation","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100016735","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2024]]},"DOI":"10.1109\/access.2024.3507215","type":"journal-article","created":{"date-parts":[[2024,11,27]],"date-time":"2024-11-27T19:41:56Z","timestamp":1732736516000},"page":"179281-179317","source":"Crossref","is-referenced-by-count":9,"title":["Securing the Shared Kernel: Exploring Kernel Isolation and Emerging Challenges in Modern Cloud Computing"],"prefix":"10.1109","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0009-0007-7595-1221","authenticated-orcid":false,"given":"Sehar","family":"Zehra","sequence":"first","affiliation":[{"name":"Department of Computer Science, National University of Computer and Emerging Sciences (FAST), Karachi, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1834-1810","authenticated-orcid":false,"given":"Hassan Jamil","family":"Syed","sequence":"additional","affiliation":[{"name":"Asia Pacific University of Technology and Innovation (APU), Kuala Lumpur, Malaysia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3833-2644","authenticated-orcid":false,"given":"Fahad","family":"Samad","sequence":"additional","affiliation":[{"name":"Department of Cyber Security, National University of Computer and Emerging Sciences (FAST), Karachi, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-5276-1504","authenticated-orcid":false,"given":"Ummay","family":"Faseeha","sequence":"additional","affiliation":[{"name":"Department of Computer Science, National University of Computer and Emerging Sciences (FAST), Karachi, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hamza","family":"Ahmed","sequence":"additional","affiliation":[{"name":"Department of Computer Science, National University of Computer and Emerging Sciences (FAST), Karachi, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6636-0533","authenticated-orcid":false,"given":"Muhammad","family":"Khurram Khan","sequence":"additional","affiliation":[{"name":"Center of Excellence in Information Assurance (CoEIA), King Saud University, Riyadh, Saudi Arabia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","volume-title":"Cloudifying desktop applications: Your laptop is your data center","author":"Camiciola","year":"2021"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1002\/cpe.5668"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3491418.3530769"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/3378447"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/ISCON47742.2019.9036238"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-33-4543-0_59"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2017.08.021"},{"key":"ref8","volume-title":"Designing a container management solution to improve flexibility and portability, and reducing cost for ipaas solutions","author":"Woudstra","year":"2022"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1007\/s11227-021-03914-1"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2024.103946"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2945930"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/3339252.3340502"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3194913"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2018.12.035"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/s13369-021-05553-3"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/3472883.3486976"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/ICNGCIS.2017.10"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103490"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2022.3222074"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2022.103515"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-020-00514-7"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484744"},{"key":"ref23","article-title":"Threat modeling and security analysis of containers: A survey","author":"Yi Wong","year":"2021","journal-title":"arXiv:2111.11475"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1504\/IJSN.2021.117867"},{"key":"ref25","first-page":"1","article-title":"Container security in cloud environments","author":"Oluyede","year":"2024","journal-title":"ScienceOpen Preprints"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2024.103839"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2911732"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103119"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103140"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2023.3246497"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1007\/s42979-023-02186-1"},{"key":"ref32","article-title":"Understanding the quality of container security vulnerability detection tools","author":"Javed","year":"2021","journal-title":"arXiv:2101.03844"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101905"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.3233\/WEB-210474"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2024.3361452"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD60044.2023.00043"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/sp46215.2023.10179284"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103325"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2022.3173791"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/CCGridW59191.2023.00057"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/3609021.3609301"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/3579856.3582835"},{"key":"ref43","article-title":"Programmable system call security with eBPF","author":"Jia","year":"2023","journal-title":"arXiv:2302.10366"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2022.3194266"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2022.3206781"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/CyberC55534.2022.00049"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/IC2E55432.2022.00035"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/SRMC57347.2022.00005"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/ICICS55353.2022.9811204"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2020.3047416"},{"key":"ref51","first-page":"683","article-title":"BlackBox: A container security monitor for protecting containers on untrusted operating systems","volume-title":"Proc. 16th USENIX Symp. Operating Syst. Design Implement. (OSDI 22)","author":"Van\u2019t Hof"},{"key":"ref52","article-title":"Trusted container extensions for container-based confidential computing","author":"Brasser","year":"2022","journal-title":"arXiv:2205.05747"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2023.3268124"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/3510547.3517917"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1109\/CyberC55534.2022.00051"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1109\/CSCI54926.2021.00182"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD53861.2021.00041"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2021.102924"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1007\/s11432-019-2707-6"},{"key":"ref60","article-title":"BPFContain: Fixing the soft underbelly of container security","author":"Findlay","year":"2021","journal-title":"arXiv:2102. 06972"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1145\/3411495.3421358"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1109\/PDP50117.2020.00069"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.3390\/s23041755"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.3390\/app13169301"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2023.3310281"},{"key":"ref66","article-title":"Virtuoso: High resource utilization and \u03bc s-scale performance isolation in a shared virtual machine TCP network stack","author":"Stolet","year":"2023","journal-title":"arXiv:2309.14016"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.1109\/saner56733.2023.00084"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1145\/3538969.3543810"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1145\/3529320.3529325"},{"key":"ref70","article-title":"Escape the fake: Introducing simulated container-escapes for honeypots","author":"Reti","year":"2021","journal-title":"arXiv:2104.03651"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1109\/SecDev51306.2021.00022"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.1109\/CSP51677.2021.9357594"},{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.1145\/3411495.3421357"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1145\/3380786.3391395"},{"key":"ref75","doi-asserted-by":"publisher","DOI":"10.1145\/3274694.3274720"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/6287639\/10380310\/10769445.pdf?arnumber=10769445","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,12,19]],"date-time":"2024-12-19T19:35:20Z","timestamp":1734636920000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10769445\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"references-count":75,"URL":"https:\/\/doi.org\/10.1109\/access.2024.3507215","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]}}}