Container Security Overview

Qualys Container Security provides discovery, tracking, and continuously protecting container environments. This addresses vulnerability management for images and containers in their DevOps pipeline and deployments across cloud and on-premise environments.

cs_overview

With this version, Qualys Container Security supports:

  • Discovery, inventory, and near-real time tracking of container environments
  • Vulnerability analysis for images and containers
  • Vulnerability analysis for registries
  • Integration with CI/CD pipeline using APIs (DevOps flow)
  • Uses new ‘Container Sensor’ – providing native container support, distributed as container image

Upon installation, the sensor does automatic discovery of Images and Containers on the deployed host, provides a vulnerability analysis of them, and additionally it monitors and reports on the docker related events on the host. The sensor lists and scans registries for vulnerable images. The sensor container runs in non-privileged mode. It requires a persistent storage for storing and caching files.

Currently, the sensor only scans Images and Containers. For getting a vulnerability posture on the Host, you would require Qualys Cloud Agents or a scan through Qualys Virtual Scanner Appliance.