Infotechcrowd

DEEP SECURITY COMPLIMENTS DEEP SECURITY SMART CHECK BY PROVIDING LEADING HOST PROTECTION OF THE OS Build Ship Trend Micro Capabilities CI/CD Run Image Registry Environments Platforms Orchestrators GitHub Azure Container Registry Data Center Docker Swarm AIX Jenkins Docker Trusted Registry Virtual Kubernetes Linux Ansible Elastic Container Registry Chef Google Container Registry Cloud providers: AWS, Azure, Google Cloud, IBM Cloud Solaris Containers Windows Puppet Vulnerability Scanning API Integration Integrity Monitoring API Integration Antimalware Log Inspection Malware and Machine Learning Scanning Exploit Attack Protection Compliance/Audit Logging and Reporting Intrusion Prevention Logging and Reporting SMART CHECK SECURITY ARCHITECTURE Deployment and Integration Deep Security Smart Check provides a valuable step in your continuous integration (CI) or continuous delivery (CD) pipeline. Deep Security Smart Check scans Docker images in any registry that implements the Docker Registry API. All Deep Security Smart Check operations are available through a documented collection of APIs to simplify integration into your CI/CD pipeline. Deep Security Smart Check APIs can be invoked automatically by your CI/CD system to start scans when an image is pushed to a Docker registry. Scan results are also available through the API. The Smart Check API includes a Webhook facility that allows CI/CD components to register in order to receive notifications of scan events, including ‘scan-completed’, allowing you to automate workflows. Deep Security Smart Check includes an administrator console that provides: • a dashboard (system-wide summary of scan information, including metrics) • view summary (including scan results and metrics for the view) Installation Deep Security Smart Check is supported on the Kubernetes platform within a Kubernetes cluster. • user management • Public: https://github.com/deep-security/smartcheck-helm • access to scan results Smart Check users are given access to a shell script and a suite of Kubernetes resources in the Deep Security GitHub repository. The images that comprise the application are available in Docker Hub. • scan history Role Based Access Control (RBAC) Various stakeholders need different levels of access to Smart Check based on their roles. Smart Check administrators can configure authorized users or groups of users and assign roles accordingly. Supported registries Smart Check supports the scanning of Docker images in any registry that supports the Docker Registry V2 API. Integration logic triggers a scan based on the event model of the registry. Support is available for Docker Trusted Registry, Amazon Elastic Container Registry, Azure Container Registry and Google Container Registry. Scanning services When Smart Check receives a scan request it pulls the specified image, unpacks each layer and performs malware and vulnerability scans on the content. The detection engines leverage Trend Micro’s strengths in malware pattern matching and vulnerability detection through their malware scanning engine. Smart Check also scans for vulnerabilities of the OS and continually scans for new CVEs. Page 3 of 4 • DATASHEET • DEEP SECURITY™ SMART CHECK • registry and view configuration SYSTEM REQUIREMENTS Deep Security Smart Check requires: Kubernetes 1.8.7 or higher Helm/Tiller 2.8.1 or higher Docker 17.06 or higher Supported registries Deep Security Smart Check supports the scanning of Docker images in any registry that supports the Docker Registry V2 API. Included Registries: • Docker Trusted Registry (DTR) • Amazon Elastic Container Registry (ECR) • Azure Container Registry • Google Container Registry (GCR) To integrate Deep Security Smart Check into your CI/CD pipeline, you can write integration logic to trigger scanning based on the event model of your registry. For example, Google Container Registry uses a pub/sub model to publish events about registry activity, and Docker Trusted Registry uses a Webhook model. KEY CERTIFICATIONS AND ALLIANCES • Amazon Advanced Technology Partner • HP Business Partnership • Microsoft Application Protection Program • Microsoft Certified Partnership • Oracle Partnership For more information visit trendmicro.com/smartcheck Page 4 of 4 • DATASHEET • DEEP SECURITY™ SMART CHECK ©2018 by Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, and OfficeScan are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/ or product names may be trademarks or registered trademarks of their owners. Information contained in this document is subject to change without notice. [DS01_DeepSecurity_Smartcheck_180605US] trendmicro.com

Deep Security Smart Check

Please complete the form to gain access to this content

Related Resources

6 Schritte Fur Umfassende Container-Sicherheit In AWS

Automated Security at the Speed of DevOps

Banking on Cloud Governance

Cloud-Architekturen bauen mit Sicherheit

Six étapes vers une sécurité optimale des conteneurs

Six Steps to Comprehensive Container Security in AWS

Undertaking Security Challenges in Hybrid Cloud Environments

Addressing Security Challenges in Hybrid Cloud Environments

The Critical Role of Endpoint Detection and Response

Ransomware on Servers: Detection and Prevention using Trend Micro Deep Security

Linux Servers: Why Native Security is Not Enough

Leveraging the Agility of DevOps Processes to Secure Hybrid Clouds

Top 3 challenges your team faces when building in the cloud

Gartner Newsletter: Prioritize and Remediate Active Vulnerabilities Impacting Your Network

NSS Labs Breach Detection Systems Report

The Top five Myths of Hybrid Cloud Security

AWS eBook

Filling the Gaps in Office 365

The Five Milestones to GDPR Success

Paradigm Shifts: Trend Micro Security Predictions for 2018