检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Permissions: Statements in a policy that allow or deny certain operations Actions: Added to a custom policy to control permissions for specific operations Permission Action Querying the OBS asset list dsc:obsAsset:list Updating identification rules scanRule:update Adding big data
Data Security Operations Situational Awareness Dashboard Data Transfer Details Event Management Alarm Management OBS Usage Audit Watermarks
Watermarks Extracting Watermarks from Databases Extracting Watermarks from an OBS Bucket File Extracting Watermarks from a Local File Parent Topic: Data Security Operations
(Optional) OBS expansion package Billed based on the number of purchased packages. Required duration Billed on a yearly or monthly basis. Pay-Per-Use APIs (data masking and watermarking) APIs are included only in the professional edition.
With data identification engines, structured data (RDS and DWS) and unstructured data (OBS) is scanned and classified. It then automatically identifies sensitive data and analyzes the usage of such data for further ensuring security.
For details about how to enable OBS, see Enabling and Using OBS Buckets. The supported image formats are jpg, jpeg, png, bmp, tiff, tif, tga and gif. Constraints The maximum size of an image is 20 MB.
Asset Center Introduction to the Asset Center Adding an OBS Asset Adding a Self-Built Database Instance Adding a Cross-Account or Cross-VPC Instance Authorizing Access to a Database Asset Adding a Big Data Asset Authorizing Access to a Big Data Asset Adding a Log Stream Parent Topic
Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, LA-Sao Paulo 1, AF-Johannesburg, LA-Mexico City2, LA-Santiago,AP-Jakarta,Middle East-Riyadh,Türkiye-Istanbul Policy Baseline Policy Management Transfer Log Collection Data Security Operations OBS Usage Audit: DSC detects OBS buckets
DSC APIs do not support inserting or extracting watermarks for OBS data. To perform watermark-related operations on OBS bucket data, store the data to the local PC and then call DSC APIs. The watermarked document will be returned in the response body.
Billing items The billing items of Huawei Cloud DSC consist of the service fee, database expansion package fee, and OBS expansion package fee. For details about DSC billing items and calculation formulas, see Billing Items.
Billing Scenarios A user purchased a DSC professional edition instance at 15:50:00 on May 1, 2023, together with a database expansion package and an OBS expansion package. The subscription duration is one month.
To store operation records for longer than seven days, configure transfer to OBS or Log Tank Service (LTS) so that you can view them in OBS buckets or LTS log groups.
Event Management √ √ OBS Usage Audit DSC detects OBS buckets based on sensitive data identification rules and monitors identified sensitive data.
OBS: DSC is authorized to access your Huawei Cloud OBS assets and identify sensitive data in the assets. For details about how to add OBS assets, see Adding OBS Assets. Database: DSC identifies sensitive data of authorized database assets.
DSC provides the standard and professional editions, and the database and OBS expansion packages. Commercial use Buying DSC
Configuration Changes After purchasing DSC, you can upgrade it from a lower edition to a higher one or purchase additional database or OBS expansion packages to meet your business needs.
Billing Examples If you purchase a DSC professional edition instance at 2023/03/08 15:50:04 and purchase a database expansion package and an OBS expansion package.
DSC provides the standard and professional editions, and the database and OBS expansion packages. Buy a required DSC edition and additional expansion packages based on your site requirements.
Static data masking applies to the following scenarios: Development and test Data sharing Data Research Best Practices of OBS Data Security Protection This section describes how to use the Data Security Center (DSC) to identify, classify, and protect sensitive data stored in OBS.
Table 1 DSC operations supported by CTS Operation Resource Type Event Name Authorizing or deauthorizing DSC dscGrant grantOrRevokeTodsc Adding an OBS bucket dscObsAsset addBuckets Deleting an OBS bucket dscObsAsset deleteBucket Adding a database asset dscDatabaseAsset addDatabase
