Features and capabilities
The following tables show the relevant features for both Container Security and Server & Workload Protection in Trend Vision One.
| Key Features | Container Security | Server & Workload Protection |
|---|---|---|
| Vulnerability scanning | Yes | No |
| Runtime Security | Yes | No |
| Admission controller | Yes | No |
| Continuous compliance | Yes | No |
| Malware scanning | Yes (containers only) | Yes (Real-Time Scan only) (Containers and host share policy) |
| Compliance scanning | Yes | No |
| Compliance scanning | Limited (Can log malware, or isolate or terminate container) | Yes (Real-Time Scan only) (Containers and host share policy) |
| Intrusion Prevention | No | Limited (Containers and host share policy) |
| Integrity monitoring | No | Limited (Container host OS only) |
| Log inspection | No | Limited (Container host OS only) |
| Application control | No | Limited (Container host OS only) |
| Firewall | No | Limited (Containers and host share policy) |
| Web Reputation | No | Limited (Container host OS only) |
| Support for serverless containers like GKE autopilot | Yes | No |
| Visibility to container inventory and cluster nodes | Yes | No |
| Protection actions | Provides isolate/terminate container actions | Provide immediate action like clean/quarantine for malware scan |
Supported platforms
| Platform | Container Security | Server & Workload Protection |
|---|---|---|
| Kubernetes | Yes | Yes (This applies when Server & Workload Protection sits outside the container at the host level protecting the Host Operating system. When Server & Workload Protection is installed on a virtual machine, it sits inside the virtual machine.) |
| OpenShift | Yes | Limited (4.9-4.13) |
| Docker Swarm | No | Yes |
| Standalone docker containers | No | Yes |
| Virtual Machines | No | Yes |
| Physical servers | No | Yes |
| Hybrid and multi-cloud environments | Limited | Yes (Host Only) |
Server & Workload Protection only supports real-time scan for anti-malware detection, which limits its capabilities to OpenShift environments. Server & Workload Protection is able to scan the OpenShift Host, which is not supported in Container Security. Additionally, Intrusion Prevention is not supported for OpenShift deployments in Server & Workload Protection.