Kaspersky Container Security

What's new

Kaspersky Container Security 1.2 offers the following new features and improvements:

• Built-in tools to check components' state (the Health Check mechanism), and specifically:
  • Visualization of the state of cluster resources
  • Viewing information about the state of solution components
  • Heartbeat monitoring
• Automation of maintenance processes, ensuring the safety and reliability of components by means of Auto Care tools, including automatic cleaning of the following:
  • Security event log
  • Scan history
• Visualization of monitored clusters, network communications, and cluster resource security issues.
• Search and analysis of potential file threats to protect containerized files from malware.
• Support for integration with the following CI systems:
  • TeamCity 2022.04 or later
  • Jenkins 2.385 or later
• Generation of reports on the results of checking cluster nodes for compliance with the Kubernetes benchmarks:
  • Summary report
  • Detailed report
• Integration of Kaspersky Container Security with the Harbor registry to serve as an additional scanner. This functionality allows to start image scanning from the Harbor Registry interface. Scan results are saved in the solution and are available for further use.
• Documenting API requests by using Swagger.
• Ensuring continuous monitoring of infrastructures containing up to 1000 network nodes.
• Support for simplified Chinese.
• Solution functioning in the following cloud environments:
  • AWS EKS.
  • Microsoft Azure

Kaspersky Security for Containers 1.2.1 has the following updates:

• LDAP-based authentication method was improved.
• Operations for working in Telegram (sending messages, chat searching) were improved.
• Application of filters for results of checking for compliance with the Kubernetes standard was corrected.
• The Vendor Fix field in the Risk acceptance report was amended.
• Capability to work with vulnerabilities in Java dependencies for the CI agent was added.
• Performance of the following controls in runtime policies was improved: Block non-compliant images and Block unregistered images.
• Logic of deleting scopes with policies assigned to them was improved.
• Work with image signature validators was optimized.
• Procedure for authentication of Kaspersky Container Security users was improved.
• API token reissue functionality was corrected.
• Display of a large number of tags when adding images for analysis was corrected.
• Adding a new registry using API was improved (the logic of saving information about tags was fixed).
• Image report templates were amended (links to vulnerabilities in images are displayed).
• Work with email servers when using CRAM-MD5 authentication was ijmproved.
• Capability to configure the frequency of accessing an image registry was added.
• Web interface was improved.

Kaspersky Security for Containers 1.2.2 has the following updates:

• Yandex Registry support was implemented.
• General way to support image registries using the Docker V2 API was added.
• Work with the JFrog Artifactory image registry to support accounts with reduced privileges was improved.
• Mechanism for saving artifacts in CI/CD was improved.
• Agent operation errors in older versions of Kubernetes (version 4.18) were fixed.
• Scheduled scanning of image registries in case of errors with codes 4XX and 5XX was corrected.
• Logic of operation during an integration with a subdomain (using names other than standard names) in the JFrog Artifactory was improved.