A security perspective on Unikernels

Joshua Talbot, Przemek Pikula, Craig Sweetmore, Samuel Rowe, Hanan Hindy, Christos Tachtatzis, Robert Atkinson, Xavier Bellekens

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)
348 Downloads (Pure)


Cloud-based infrastructures have grown in popularity over the last decade leveraging virtualisation, server, storage, compute power and network components to develop flexible applications. The requirements for instantaneous deployment and reduced costs have led the shift from virtual machine deployment to containerisation, increasing the overall flexibility of applications and increasing performances. However, containers require a fully fleshed operating system to execute, increasing the attack surface of an application. Unikernels, on the other hand, provide a lightweight memory footprint, ease of application packaging and reduced start-up times. Moreover, Unikernels reduce the attack surface due to the self-contained environment only enabling low-level features. In this work, we provide an exhaustive description of the unikernel ecosystem; we demonstrate unikernel vulnerabilities and further discuss the security implications of Unikernel-enabled environments through different use-cases.
Original languageEnglish
Title of host publicationInternational Conference on Cyber Security and Protection of Digital Services (Cyber Security 2020)
Number of pages7
ISBN (Electronic)9781728164281
ISBN (Print)9781728164298
Publication statusPublished - 13 Jul 2020
EventCyber Security 2020: Advancing a multidisciplinary approach to Cyber Security - held online (virtual), Dublin, Ireland
Duration: 15 Jun 202019 Jun 2020


ConferenceCyber Security 2020
Internet address


  • Unikernel
  • Docker
  • Container
  • Security


Dive into the research topics of 'A security perspective on Unikernels'. Together they form a unique fingerprint.

Cite this