Bitdefender GravityZone Security for Containers
Comprehensive Linux and Container Security

Key capabilities:

• Endpoint Risk Analytics (ERA) helps identify, assess, and remediate misconfigurations on the container host
• Extended Detection and Response (XDR) provides automated detection and triages alerts based on correlation and detection algorithms delivered both locally to the sensor and at the cloud platform level
• Patch Management for Linux automatically schedules scanning and maintains container host up to date
• Tunable Machine Learning on access (hyperdetect) discovers highprobability and high-impact attacks, and minimizes false positives on lowerrisk threats
• Advanced Anti-Exploit proactively stops zero-day exploits and manages most Linux based exploits

Platform Support

Container Infrastructures: Amazon ECS, Amazon EKS, Google GKE, Docker, Podman, Kubernetes, Azure AKS

Enterprise Linux Distributions: Ubuntu 16.04 LTS or higher, Red Hat Enterprise Linux 7 or higher, Oracle Linux 7 or higher, CentOS 7 or higher, SUSE Linux Enterprise Server 12 SP4 or higher.

Deploy as a Guest Agent in your IaaS environment or as a DaemonSet in a PaaS, cloud-native environment

GravityZone Security for Containers protects container workloads against modern Linux and container attacks using AI-powered threat prevention, Linux-specific anti-exploit technologies, and contextaware endpoint detection and response with (EDR) and with XDR to cross-endpoint event correlation component, capable of detecting advanced attacks across multiple endpoints in hybrid infrastructures.

Capabilities & Benefits

What container infrastructures are supported?

GravityZone Security for Containers supports containers running on:

• Docker
• Podman
• Kubernetes
• Amazon Elastic Container Service (ECS)
• Amazon Elastic Kubernetes Service (EKS)
• Azure Kubernetes Service (AKS)
• Google Kubernetes Engine (GKE)

Support for new container platforms is being added regularly, please check with your sales or partner representative for the latest list.

What Linux distributions are supported?

GravityZone supports the following Linux Distribution:

• Ubuntu 16.04 LTS or higher
• Red Hat Enterprise Linux 7 or higher
• Oracle Linux 7 or higher
• CentOS 7 or higher
• SUSE Linux Enterprise Server 12 SP4 or higher
• openSUSE Leap 15.2
• Debian 9 or higher
• Amazon Linux 2
• Google COS

Support for new platforms is being added regularly, please check with your sales or partner representative for the latest list.

How is this different from other Linux and Container security solutions?

Bitdefender has developed a modern attack detection and response security stack for Linux servers and containers that is highly differentiated from existing solutions through its security efficacy, incident fidelity, and multi-distribution workload compatibility.

Our design is platform-independent with no reliance on Linux Kernel modules, allowing a single agent to support multiple Linux and container distributions. DevSecOps teams can confidently upgrade Linux workloads without breaking security.

How is the GravityZone Security for Containers solution architected?

Bitdefender has designed a specialized Bitdefender Endpoint Security Tools for Linux and Containers that runs within the operating system on bare metal and virtual machines – either cloud-based or on-premises. The universal agent sits above the Linux Kernel or within the container run-time and continuously watches both Linux native and container workloads for suspicious and malicious activity

Is Linux Server Security integrated with GravityZone today?

Yes, the Linux server and container security functionality is integrated within the GravityZone platform. All the familiar configuration, policy settings, asset management, search, reporting, and SIEM integration for Linux server EDR is available for GravityZone Security for Containers.