[](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Cortex Cloud logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/cortexcloud-logo-dark.svg)](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * 用例 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 用例 用例 * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) 由统一数据、AI 和自动化提供助力的实时云安全 * [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) 从源头阻止风险 * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) 快速确定任何云中的风险优先级并进行补救 * [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) 实时预防云攻击 * [安全运营](https://www.paloaltonetworks.cn/cortex?ts=markdown) 检测、调查和应对整个企业和云中的威胁 * 解决方案 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 解决方案 [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [应用安全态势管理 (ASPM)](https://www.paloaltonetworks.cn/cortex/cloud/application-security-posture-management?ts=markdown) * [软件供应链安全](https://www.paloaltonetworks.cn/cortex/cloud/software-supply-chain-security?ts=markdown) * [IaC 安全](https://www.paloaltonetworks.cn/cortex/cloud/infrastructure-as-code-security?ts=markdown) * [软件构成分析](https://www.paloaltonetworks.cn/cortex/cloud/software-composition-analysis?ts=markdown) * [机密安全](https://www.paloaltonetworks.cn/cortex/cloud/secrets-security?ts=markdown) * [开放合作伙伴生态系统](https://www.paloaltonetworks.cn/cortex/cloud/appsec-partner-ecosystem?ts=markdown) [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [云安全态势管理 (CSPM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown) * [云基础架构权限管理 (CIEM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [数据安全态势管理 (DSPM)](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown) * [AI 安全态势管理 (AI-SPM)](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown) * [漏洞管理](https://www.paloaltonetworks.cn/cortex/cloud/vulnerability-management?ts=markdown) * [云攻击面管理 (ASM)](https://www.paloaltonetworks.cn/cortex/cloud/attack-surface-management?ts=markdown) [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [云检测与响应 (CDR)](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [容器和 Kubernetes 安全](https://www.paloaltonetworks.cn/cortex/cloud/container-security?ts=markdown) * [云工作负载保护 (CWP)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-workload-protection?ts=markdown) * [API 安全](https://www.paloaltonetworks.cn/cortex/cloud/api-security?ts=markdown) * [Web 应用安全](https://www.paloaltonetworks.cn/cortex/cloud/web-application-security?ts=markdown) [安全运营](https://www.paloaltonetworks.cn/cortex/?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [产品之旅](https://www.paloaltonetworks.com/cortex/cloud/product-tours?ts=markdown) * 资源 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 资源 学习 * [博客](https://www.paloaltonetworks.com/blog/cloud-security/?lang=zh-hans) * [云研究](https://www.paloaltonetworks.com/cortex/cloud/research) * [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) * [Live Community](https://live.paloaltonetworks.com/) * [互动研讨会](https://www.paloaltonetworks.com/cortex/cloud/interactive-workshops) 产品信息 * [技术文档](https://docs.paloaltonetworks.com/) * [开源项目](https://www.paloaltonetworks.com/cortex/cloud/open-source-projects) * [支持](https://support.paloaltonetworks.com/Support/Index) 资源 * [技术合作伙伴](https://www.paloaltonetworks.com/partners/technology-partners) * [客户成功案例](https://www.paloaltonetworks.cn/customers?ts=markdown) * [资源中心](https://www.paloaltonetworks.cn/resources?ts=markdown) * [事件](https://events.paloaltonetworks.com) * * [申请演示](https://www.paloaltonetworks.cn/cortex/cloud/trial?ts=markdown) ![palo alto networks logo icon](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-default.svg) ![white arrow icon pointing left to return to main Palo Alto Networks site](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-white.svg) [](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) 搜索 Close search modal CORTEX CLOUD # 容器和 Kubernetes 安全 ## 无风险地构建、部署和运行容器化应用程序--从代码到云。 * [申请演示](https://www.paloaltonetworks.cn/cortex/cloud/trial?ts=markdown) ![Container and Kubernetes Security](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/hero-banner-version3.jpg) ## 建议 \[![从节点向上:Kubernetes Security 全面指南](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/recommended-asset-1-kubernetes-guide.jpg) ### 从节点向上:Kubernetes Security 全面指南 获取电子书\](https://www.paloaltonetworks.com/resources/ebooks/cortex-cloud-complete-guide-kubernetes) \[![容器安全 101](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/recommended-asset-2-container-security.jpg) ### 容器安全 101 获取电子书\](https://www.paloaltonetworks.com/resources/ebooks/container-security-101) \[![什么是容器安全?](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/recommended-asset-3-container-security-article.jpg) ### 什么是容器安全? 阅读文章\](https://www.paloaltonetworks.cn/cyberpedia/what-is-container-security?ts=markdown) \[![Cortex Cloud 运行时安全:实时防御云攻击](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/recommended-asset-4-runtime-security.jpg) ### Cortex Cloud 运行时安全:实时防御云攻击 了解更多\](https://www.paloaltonetworks.cn/resources/datasheets/runtime-security-product-brief?ts=markdown) SOC 解决方案响应用例的过程演示资源 [SOC 解决方案](#solution) [响应用例的过程](#use-cases) [演示](#demo) [资源](#resources) {#solution} SOC 解决方案 ## 锁定从 代码到云的容器 ![visibility and control](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/complete-visbility.svg) ### 获得全面的可见性和控制力 从代码和构建到部署和运行时,在应用程序生命周期的每个阶段获得对容器风险的端到端可视性。 ![关注最重要的风险](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/incident-response.svg) ### 关注最重要的风险 通过连接跨容器、集群和云环境的风险,识别最关键的攻击路径。 ![内置安全功能,发货速度更快](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/software-automation.svg) ### 内置安全功能,发货速度更快 直接在 CI/CD 流水线中嵌入安全护栏,让开发人员能够快速移动,不会出现瓶颈或延误。 {#capabilities} {#use-cases} 响应用例的过程 ### 利用 Cortex Cloud确保容器和 Kubernetes 应用程序的安全 [![Identify and remediate vulnerabilities](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/vulnerability-management.png)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/vulnerability-management.png?ts=markdown) 漏洞管理 ### 识别和修复漏洞 利用外部暴露、过多权限、错误配置、敏感数据、机密和恶意软件等相关风险因素,浮现关键漏洞,从而确定风险优先级,减少警报疲劳。 [![Enforce compliance throughout the lifecycle](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/compliance-management.png)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/compliance-management.png?ts=markdown) 合规性管理 ### 在整个生命周期执行合规性 维护从构建到运行的完整合规性审计历史。对主要框架进行合规性和报告检查,并实施定制检查政策。 [![Protect Kubernetes environments](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/kspm.png)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/kspm.png?ts=markdown) KUBERNETES 安全态势管理 (KSPM) ### 保护 Kubernetes 环境 利用指导修复功能查找并修复 Kubernetes 配置错误和安全风险。针对 EKS、AKS 和 GKE Kubernetes 集群,加强 Kubernetes 态势并符合 CIS 基准。 [![Take the load off development and security teams](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/ci-cd.png)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/ci-cd.png?ts=markdown) CI/CD 集成 ### 减轻开发和安全团队的负担 通过在镜像构建及其部署中添加防护栏,将安全检查从代码整合到云中。自动扫描资源库和注册表,查找漏洞和错误配置。 [![Protect containers from active threats](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/runtime-protection.png)](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/runtime-protection.png?ts=markdown) 运行时保护 ### 保护容器免受主动威胁 使用轻量级代理在多云环境中阻止已知和未知威胁,如恶意软件、加密、权限升级和容器逃逸。 电子书 ![电子书](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/demand-gen-banner.jpg) The Forrester Wave^™^:2024 年第一季度云工作负载安全报告中将 Palo Alto Networks 评为领导者。 [阅读报告](https://start.paloaltonetworks.cn/forrester-wave-cws-leader.html) ## 亲身体验 ### 了解 Cortex^®^ Cloud^™^ 如何帮助您无风险地构建、部署和运行容器化应用程序。 {#demo} ### 亲身体验 了解 Cortex® Cloud™ 如何帮助您阻止云攻击。 ## 值得信赖的专家资源 {#resources} [查看全部](https://www.paloaltonetworks.cn/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fcortex-cloud&ts=markdown) \[文章 #### 确保 Kubernetes 集群的安全:Kubernetes 最佳实践与策略 ![Securing Your Kubernetes Cluster](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/resource-1.png)\](https://www.paloaltonetworks.com/cyberpedia/kubernetes-cluster-security) \[网络百科 #### 什么是 DevSecOps? ![什么是 DevSecOps?](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/resource-2.png)\](https://www.paloaltonetworks.cn/cyberpedia/what-is-devsecops?ts=markdown) \[文章 #### 无需权衡的云运行时安全 ![Cloud Runtime Security Without Tradeoffs](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/resource-3.png)\](https://www.paloaltonetworks.com/blog/cloud-security/runtime-security-without-tradeoffs/) \[数据表 #### 确保容器工作负载的安全 ![确保容器工作负载的安全](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortex/container-security/resource-4.png)\](https://www.paloaltonetworks.com/resources/datasheets/tip-sheet-secure-container-workloads) PrevNext {#footer} ## 产品和服务 * [实时人工智能驱动的网络安全](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-iot-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [主动评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [事故响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [安全策略转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [发现威胁情报](https://www.paloaltonetworks.cn/unit42/threat-intelligence-partners?ts=markdown) ## 公司 * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [人才招聘](https://jobs.paloaltonetworks.com/en/) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [客户](https://www.paloaltonetworks.cn/customers?ts=markdown) * [投资者关系](https://investors.paloaltonetworks.com/) * [位置](https://www.paloaltonetworks.com/about-us/locations) * [新闻资讯](https://www.paloaltonetworks.cn/company/newsroom?ts=markdown) ## 热门链接 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [网络百科](https://www.paloaltonetworks.com/cyberpedia) * [事件中心](https://events.paloaltonetworks.com/) * [管理电子邮件首选项](https://start.paloaltonetworks.com/preference-center) * [产品清单](https://www.paloaltonetworks.cn/products/products-a-z?ts=markdown) * [产品认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [报告漏洞](https://www.paloaltonetworks.com/security-disclosure) * [网站地图](https://www.paloaltonetworks.cn/sitemap?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [请勿出售或分享我的个人信息](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [隐私](https://www.paloaltonetworks.com/legal-notices/privacy) * [信任中心](https://www.paloaltonetworks.com/legal-notices/trust-center) * [使用条款](https://www.paloaltonetworks.com/legal-notices/terms-of-use) * [文档](https://www.paloaltonetworks.com/legal) 版权所有 © 2025 Palo Alto Networks。保留所有权利 * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * CN Select your language