Runtime defense for App-Embedded

App-Embedded Defenders monitor and protect your containers at runtime, ensuring they execute as designed, and securing them against suspicious activity.
App-Embedded Defender runtime rules let you control:
  • Process activity.
  • Network connections.
  • File system activity.
App-Embedded Defenders also support custom runtime rules.
For front-end containers, deploy the WAAS application firewall for additional runtime protection.

App-Embedded runtime policy

App-Embedded Defenders have distinct process, network, and file system sensors to monitor a workload’s activity at runtime. Each sensor is implemented individually, with its own set controls and configurations. After deploying App-Embedded Defender, customize runtime protection for the workload by creating rules. Rules let you control process, network, and file system activity.
App-Embedded Defenders dynamically retrieve policies from Console as they are update