Application graph

To view the application graph for the selected cluster:

1. Go to Resources → Assets → Clusters.
2. Do one of the following:
   • On the Table view tab, open the table with the list of namespaces and click View.
   • On the Graph view tab, open the namespace graph and do one of the following:
     • Double-click to expand the namespace to applications.
     • Click the namespace icon () to open a menu and select Expand on graph.

   Kaspersky Container Security displays all applications in the selected namespace.

Each application can be expanded down to the pod level. You can view detailed information about the following objects on the application graph of the selected cluster:

• About applications.
• About objects within the selected application.
• About pods on the graph.

Page top

Viewing information about application

To open information about an application in the application graph,

Click the application icon () to open a menu and select Details.

Kaspersky Container Security opens a side panel with detailed information about the application.

The solution displays the following information about the application:

• The object type and application type (for example, Application: Deployment).
• Application name.
• Maximum risk rating. The solution assigns a risk rating to the application according to the highest severity level of all the objects within that application.
• The security policy compliance status is Compliant or Not Compliant.
• The Containers tab contains the following information about the containers in the selected pod:
  • Name of the container.
  • Name of the image the container was deployed from.
  • The security policy compliance status is Compliant or Not Compliant.
  • Maximum risk rating assigned to containers in the pod.
  • Number of security issues across all risk types. For vulnerabilities, the number of security issues is specified, broken down by risk severity.
  • Date and time of the last scan of the image from which the container was deployed.
• The Policies tab displays information about assurance policies and runtime policies that are applied to the application.

  The following information is provided in the Assurance policies section:

  • Policy application status (Passed/Failed).
  • Policy name.
  • Indication of existing security threats. In terms of the applied policy, the scan results can be displayed as follows:
    • Scan was performed, security threats were identified ().
    • Scan was performed, no security threats were detected ().
    • No scan was performed for this type of security threat ().

  The Runtime policies section contains the following information:

  • Policy name.
  • Policy application mode (Audit/Enforce).

  By clicking the link on the name of a policy in the Policies tab, you can view its detailed description. The sidebar displays the following information:

  • Policy type and name.
  • Description of the policy (if any).
  • Author of the policy.
  • Mode (for runtime policy).
  • List of predefined scopes.
  • Actions that are performed when the policy is applied (for an assurance policy).
  • Set benchmarks and their parameters.

  You can edit the settings of an assurance policy by clicking the Edit policy button.

  To view the detailed description of policies, you must have rights to view them. Policy management rights are required to make changes to policy settings.

Page top

Viewing information about objects in the application

To open information about objects on the applications graph:

1. On the applications graph, select the application about whose objects you want to obtain information and do one of the following:
   • Double-click the application to expand it to its constituent objects.
   • Click the application icon () to open a menu and select Expand on graph.
2. Select the object of interest and double-click to expand its information in the side panel.

   Kaspersky Container Security opens a side panel with detailed information about the selected object.

Depending on the type of the object, additional information about the selected entity is displayed. The table below describes the set of information that the solution displays for various objects in the application.

Information about objects in the application

You can generate and download a file with the description of the object current state in the .YAML format for all objects by using the Download .yaml button.

Viewing information about pod

To open the pod information,

on the graph, select the pod about which you want to receive information, and double-click to expand its information in the side panel.

Kaspersky Container Security displays pods on all types of graphs: namespace graphs and application graphs.

The solution opens a side panel with detailed information about the pod.

Kaspersky Container Security displays the following information about the pod:

• Object type.
• Maximum risk score among pod images.
• The security policy compliance status is Compliant or Not Compliant.
• Pod name.
• The General tab contains the following information about the object:
  • Date and time of creation.
  • Labels.
  • Pod running status.
  • Pod lifetime—the period between the date and time of viewing the pod information and the date and time of its creation.
  • List of ports used by pod containers in the following format: <"port name" port protocol>. For example, "dns" UDP 53.
  • Available system functions of the pod.
  • The name of the PV used by the pod.
  • The name of the PVC used.
  • The name of the application, namespace and cluster within which the pod is located.

  Also in this tab, you can click Download *.yaml to generate and download a file with a description of the pod.

• The Containers tab contains the following information on containers within the pod:
  • Name of the container.
  • Name of the image the container was deployed from.
  • Compliance status of the deployed image: Compliant or Non-compliant.
  • Maximum risk rating of the deployed image.
  • Number of security issues across all risk types. For vulnerabilities, the number of security issues is specified, broken down by risk severity.
  • Date and time of the last scan of the image from which the container was deployed.
  • List of ports used by pod containers in the following format: <"port name" port protocol>.
  • Additional properties of the container—it is an
    init container

    A special container that is started when the pod is initialized before the main containers are started. Init containers prepare the environment for operation (for example, they access secrets or redirect network traffic) and may contain utilities that are not necessary or desirable in the main container.

    .
• The Policies tab displays information about assurance policies and runtime policies applied to the pod. Information about policies applied to the pod is presented in two sections (Assurance policies and Runtime policies), similarly to the information displayed about the applicable policies when viewing information about the application on the graph.

  To view the detailed description of policies, you must have rights to view them. Policy management rights are required to make changes to policy settings.

Page top

Viewing details about application graph objects in the table

To view information about the objects on the application graph as a table:

1. Do one of the following:
   • Click the namespace icon () that indicates the number of applications within the namespace on the graph.
   • Click the icon of the application group within the namespace ().
2. In the menu that opens, select Open in table.

   The solution opens a table with information about applications in the lower part of the workspace below the graph. Kaspersky Container Security displays the following information:

   • The list of applications in this namespace and their types (types of parent objects).
   • Number of pods and containers in each application.
   • Maximum risk rating assigned to the objects in the namespace.
   • The security policy compliance status is Compliant or Not Compliant.

Page top