What's new

Kaspersky Container Security 2.0 offers the following new features and improvements:

Centralized investigation of vulnerabilities in CI/CD artifacts, image registries, and runtime.
Enhanced capabilities of logging container events associated with network traffic (inbound and outbound), file operations, launched processes and File Threat Protection.
Uninterrupted monitoring of infrastructures containing up to several thousand nodes.
Integration with HashiCorp Vault external secret storage:
- Reading of secrets created in advance for the Kaspersky Container Security components
- Use of Vault PKI to create TLS certificates for cross-service interaction
Integration with security information and event management (SIEM) software:
- Configuration of integration with several products in UI
- Specification of parameters for sending messages for various events (Administration, Alert, CI/CD, Policies, Resources, Scanners, Admission controller, API)
- Specification of parameters for sending messages for container events associated with network traffic (inbound and outbound), file operations and launched processes
Generation of reports in the .JSON and .XML formats.
Scanning the infrastructure for compliance with cluster security benchmarks.
Generation of cluster benchmarks summary report.
Improved integration with LDAP (Bind DN scheme).
Container Runtime Profile generation based on container performance analysis (autoprofiling).
Improvement of OpenAPI:
- Getting data on Core Health Check
- Management of scanner policies, assurance policies, response policies and runtime policies
- Runtime profiles management
- Getting system event log
- Getting container event log
- Risk management
- Autoprofiling tasks management
- Getting information about integration with image signature validators
Support for integration with the following external image registries:
- Amazon Elastic Container Registry
- Red Hat Quay
Scanning of OCI directory in CI/CD processes.

Page top