Runtime security
PRIVATE PREVIEW
This feature is available as a private preview. If you want to participate, register via the form at the button of the cast.ai portal container security page.
Kubernetes runtime security provides:
- Anomalies detection based on machine learning and a fast automated rules engine.
- Network policies suggestions and automation.
- Security context suggestion and automation. Includes advanced seccomp profiles for each individual container group.
The public demo is available at https://demo.kvisor.io
Flows
The flows page displays the services network map.
![This is some image... Alt text](https://files.readme.io/e8ea93c-flows.png)
Workload profiles
The Workloads profile shows many details about workload.
- Learned Events show learned event patterns for anomaly detection and real-time container drift blocking.
- Live Events show samples of real-time events.
- Resource Usage displays CPU/Memory/Network usage.
- Syscalls show syscalls counts in time series.
- Security Context shows suggestions for most security contexts that are recommendation-based.
- If container drift security automation is enabled, the workload admission controller will apply seccomp profiles and patch pods to apply the securityContext field on pod containers.
![This is some image... Alt text](https://files.readme.io/37d29f8-profiles.png)
Anomalies
Anomalies pages show detected anomalies. Anomaly contains network graph unexpected events details.
![This is some image... Alt text](https://files.readme.io/770a94d-anomalies.png)
Network policies
Network policies pages show suggested network policies. Details also include network graph and Kubernetes network policy YAML.
Network policy automation is applied for selected namespace when enabled.
![This is some image... Alt text](https://files.readme.io/4122866-network.png)
Updated 9 days ago