Bridging the Security Gap in Container Adoption
In the rapidly expanding landscape of container technology, Kubernetes has become
synonymous with container orchestration. While Kubernetes is by far the most widely
used orchestration platform, a significant portion of the industry still leverages
alternative platforms or bespoke solutions like Docker Enterprise or Amazon ECS. As
these diverse environments grow, so does the challenge of maintaining a consistent and
rigorous security posture across them. Recognizing this, we’ve engineered a solution
designed to bring our trusted Carbon Black Container Security to the entirety of your
container infrastructure, whether you’re using Kubernetes or not.
Our latest offering transcends the Kubernetes boundary, providing a dedicated
containerized agent that ensures your containers are protected with the same rigor and
sophistication. This agent extends the familiar and powerful protection capabilities of
our Kubernetes solutions to a variety of other environments, such as Amazon ECS, TAS,
and standalone container nodes.
Effortless Installation with Advanced Customization
Deploying this new agent is designed to be intuitive and user-friendly. We empower you
to customize key configuration parameters via environment variables and define and
utilize labels to filter through API calls or UI interfaces effortlessly. This streamlined
setup ensures that you can quickly adapt the agent to the specific needs of your
environment.
We recognize that containerized applications often depend on an external orchestration
system for scheduling and consistency. Therefore, we’ve adapted our installation
process to cater to both known and diverse environments. Whether you’re using ECS,
Docker Compose, or a custom setup, our process guides you through the optimal
configuration to ensure your agent is performing to its full potential.
Continuous and Comprehensive Image Scanning and runtime
protection
The containerized agent is relentless in its pursuit of security, continuously scanning all
images deployed on your servers. By automatically reporting on vulnerabilities, malware,
and exposed secrets, the agent ensures that your security teams are always equipped
with up-to-date information, empowering them to act swiftly and decisively.
The agent doesn’t just scan; it protects in real-time. By deploying the CBC Linux sensor
in conjunction with the scanning capabilities, your containers gain the same robust EDR
(Endpoint Detection and Response) capabilities that you’ve come to expect from our
solutions. This allows you to detect, investigate, and alert on events with precision and
clarity.
Your Security, Our Commitment
At Carbon Black, we are continuously evolving our products to meet the dynamic needs
of our customers. As you navigate the complexities of non-Kubernetes environments,
rest assured that our new agent is your ally, designed with the flexibility to adapt and the
strength to protect.
Stay with us as we roll out detailed platform-focused deployment instructions and
further enhancements. Your trust in our solutions inspires our innovation, and together,
we’ll continue to redefine container security. Check out a demo of these new features to
learn more.