Optimizing 3rd Party Application Security on Telecom Edge Cloud

No Thumbnail Available

URL

Journal Title

Journal ISSN

Volume Title

Sähkötekniikan korkeakoulu | Master's thesis

Date

2023-08-21

Department

Major/Subject

Communications Engineering

Mcode

ELEC3029

Degree programme

CCIS - Master’s Programme in Computer, Communication and Information Sciences (TS2013)

Language

en

Pages

61+7

Series

Abstract

This thesis examines the performance overhead of confidential containers in comparison to native containers and virtual machines. Therefore, a micro benchmark analysis is conducted focusing on the startup time, CPU overhead and memory overhead. The analysis shows that the startup time of confidential containers is more than four times slower than native containers, but they are starting 5.6 times faster than kernel-based virtual machines. In addition, the CPU analysis results in negligible performance loss of confidential containers compared to native containers and virtual machines. Last, the memory read access latency was analysed, where a performance overhead of one to three percent for access sizes larger than eight megabytes of confidential containers compared to native containers was measured. With this analysis this thesis concludes that the performance overhead of confidential containers needs to be taken into account when performing memory operations and starting the container.

Description

Supervisor

Manner, Jukka

Thesis advisor

Kokkonen, Jani

Keywords

Confidential Container, Kata Container, Application Security, Telecom Edge Cloud, CPU Overhead, Memory Overhead

Other note

Citation