Agents

Kaspersky Container Security Agents (hereinafter also referred to as "agents") are a solution component that runs as a containerized application and provides security on nodes in accordance with configured security policies, in particular:

• Runtime security of containers running on the nodes.
• Network interaction between pods and applications inside containers.
• Integration with the orchestration platform and flow of data necessary for analysis of the orchestrator configuration and its components.
• Startup of containers from trusted images to prevent unverified images from running.

Agents are installed on all nodes of clusters and all clusters that need protection. Kaspersky Container Security works with two types of agents: cluster protection agents (csp-kube-agent) and node protection agents (csp-node-agent). Together they form groups of agents. A separate group of agents is created for each cluster. Multiple groups of agents can be created for one installation of the solution.

If the cluster contains no agents, some of the solution functionality is unavailable (for example, runtime policies, resource monitoring).

Page top