What Is Container Security Service?

Container Security Service (CGS) scans vulnerabilities and configuration information in images, helping enterprises detect container risks that cannot be found using conventional security software. CGS also provides functions such as container process whitelist, container file monitoring, container information collection, and container escape detection to reduce risks.

Deployment Architecture

Figure 1 shows the CGS deployment architecture and Table 1 describes its key components.

Figure 1 CGS deployment architecture

**Table 1** Key CGS components
Component	Description
CGS Container	Runs on each container node (host) to scan all container images on the node for image vulnerabilities, implement security policies, and collect exceptions.
Management Master	Manages and maintains CGS Containers.
Security intelligence	Provides a security information knowledge base containing vulnerability and malicious program libraries, as well as big data AI training models.
Management console	Provides a console for users to use CGS.

Parent topic: About HSS

About HSS FAQs

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with GUI

Incorrect steps

Lack of examples

Missing parameter descriptions

Unclear descriptions

Function issues

Other

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot

more