Kaspersky Container Security
2.0
English
About the Kaspersky Container Security platform  >  What's new

What's new

Kaspersky Container Security 2.0 offers the following new features and improvements:

  • Centralized investigation of vulnerabilities in CI/CD artifacts, image registries, and runtime.
  • Enhanced capabilities of logging container events associated with network traffic (inbound and outbound), file operations, launched processes and File Threat Protection.
  • Uninterrupted monitoring of infrastructures containing up to several thousand nodes.
  • Integration with HashiCorp Vault external secret storage:
    • Reading of secrets created in advance for the Kaspersky Container Security components
    • Use of Vault PKI to create TLS certificates for cross-service interaction
  • Integration with security information and event management (SIEM) software:
    • Configuration of integration with several products in UI
    • Specification of parameters for sending messages for various events (Administration, Alert, CI/CD, Policies, Resources, Scanners, Admission controller, API)
    • Specification of parameters for sending messages for container events associated with network traffic (inbound and outbound), file operations and launched processes
  • Generation of reports in the .JSON and .XML formats.
  • Scanning the infrastructure for compliance with cluster security benchmarks.
  • Generation of cluster benchmarks summary report.
  • Improved integration with LDAP (Bind DN scheme).
  • Container Runtime Profile generation based on container performance analysis (autoprofiling).
  • Improvement of OpenAPI:
    • Getting data on Core Health Check
    • Management of scanner policies, assurance policies, response policies and runtime policies
    • Runtime profiles management
    • Getting system event log
    • Getting container event log
    • Risk management
    • Autoprofiling tasks management
    • Getting information about integration with image signature validators
  • Support for integration with the following external image registries:
    • Amazon Elastic Container Registry
    • Red Hat Quay
  • Scanning of OCI directory in CI/CD processes.
Article ID: 290867, Last review: Dec 5, 2024
Page top