Runtime defense for App-Embedded
App-Embedded Defenders monitor and protect your containers at runtime, ensuring they execute as designed, and securing them against suspicious activity.
App-Embedded Defender runtime rules let you control:
- Process activity.
- Network connections.
- File system activity.
App-Embedded Defenders also support custom runtime rules.
For front-end containers, deploy the WAAS application firewall for additional runtime protection.
App-Embedded runtime policy
App-Embedded Defenders have distinct process, network, and file system sensors to monitor a workload’s activity at runtime.
Each sensor is implemented individually, with its own set controls and configurations.
After deploying App-Embedded Defender, customize runtime protection for the workload by creating rules.
Rules let you control process, network, and file system activity.
App-Embedded Defenders dynamically retrieve policies from Console as they are update