Hardware and software requirements

To install and operate Kaspersky Container Security, the following hardware and software requirements must be met:

• One of the following orchestration platforms:
  • Kubernetes 1.22 or later
  • OpenShift 4.11 or later
  • DeckHouse, versions 1.52, 1.53.
• CI system – GitLab CI.
• Pre-installed Helm package manager.

Kaspersky Container Security supports integration with the following image registries:

• GitLab 14.2 or later.
• Docker Hub V2 API or later.
• JFrog Artifactory 7.55 or later.
• Sonatype Nexus Repository OSS 3.43 or later.
• Harbor 2.х.

Image requirements (OS, version, scanned packages):

• Alpine Linux, versions 2.2—2.7, 3.0—3.18, Edge. Packages installed via apk are scanned.
• Red Hat Universal Base Image, versions 7, 8, 9. Packages installed via yum/rpm are scanned.
• Red Hat Enterprise Linux, versions 6, 7, 8. Packages installed via yum/rpm are scanned.
• CentOS, versions 6, 7, 8. Packages installed via yum/rpm are scanned.
• AlmaLinux, versions 8, 9. Packages installed via yum/rpm are scanned.
• Rocky Linux, versions 8, 9. Packages installed via yum/rpm are scanned.
• Oracle Linux, versions 5, 6, 7, 8. Packages installed via yum/rpm are scanned.
• CBL-Mariner, versions 1.0, 2.0. Packages installed via yum/rpm are scanned.
• Amazon Linux, versions 1, 2, 2023. Packages installed via yum/rpm are scanned.
• openSUSE Leap, versions 42, 15. Packages installed via zypper/rpm are scanned.
• SUSE Enterprise Linux, versions 11, 12, 15. Packages installed via zypper/rpm are scanned.
• Photon OS, versions 1.0, 2.0, 3.0, 4.0. Packages installed via tdnf/yum/rpm are scanned.
• Debian GNU/Linux, versions 7, 8, 9, 10, 11, 12. Packages installed via apt/apt-get/dpkg are scanned.
• Ubuntu, all versions supported by Canonical. Packages installed via apt/apt-get/dpkg are scanned.
• Distroless, all versions. Packages installed via apt/apt-get/dpkg are scanned.
• RedOS, versions 7.1, 7.2, 7.3.x. Packages installed via yum/rpm are scanned.
• Astra, versions ce 2.12.x., se 1.7.x. Packages installed via apt/apt-get/dpkg are scanned.

When configuring Kaspersky Container Security with three scanner pods (kcs-ih service) and the maximum size of images to be scanned up to 10 GB, the cluster must meet the following requirements:

• At least 7 node processors
• 15 GB of RAM node capacity
• 40 GB of free disk space on a node hard drive
• At least 1 Gbps of communication channel bandwidth between cluster components

The above requirements apply to Kaspersky Container Security deployment only; they do not take into account other loads on the client's resources.

Kaspersky Container Security user workstation requirements:

• Permanent Internet connection when deployed in a public corporate network.
• Access to the Kaspersky Container Security Management Console page (address within customer's corporate network, specified during Kaspersky Container Security Server installation).
• Communication channels with at least 10 Mbit/s bandwidth.
• One of the following browsers:
  • Google Chrome version 73 or later.
  • Microsoft Edge version 79 or later
  • Mozilla Firefox version 63 or later
  • Apple Safari version 12.1 or later
  • Opera version 60 or later.