The Cloud Security Center is a server host security management system that identifies, analyzes and alerts security threats in real time. Through security capabilities such as anti blackmail, vulnerability scanning and repair, anti-virus, anti tampering, and compliance inspection, it helps users achieve automated security operation closed-loop for threat detection, response, and traceability, and protects the security of cloud hosts, local servers, and containers,And meet regulatory compliance requirements.Refer to 95187-1 for details
For the requirements of intrusion prevention, identity authentication, security audit and other aspects of server host security in Level II and Level III of Equal Protection 2.0, the Cloud Security Center can answer the requirements of 15+equal protection standards
Capable of providing
Intrusion prevention
The vulnerability scanning function of the Cloud Security Center supports the scanning and one click repair of system vulnerabilities and application vulnerabilities;Support real-time detection and defense of host intrusion and file samples, and support alarm of active outreach and malicious attacks on server hosts;Support malicious code detection and prevention - detection of mining, blackmail, worms, DDoS trojans, etc
Identification
Check the password complexity of login server host and application system for security configuration, and support anti brute force cracking;Support security check on the configuration of cloud products used by users
security audit
Support to record 14 types of server host logs of 3 types, and audit through logs;Logs can be saved for 6 months
Unified security management of hybrid virtual machine
The Cloud Security Center supports server hosts in various environments such as Alibaba Cloud, offline IDC, and other cloud manufacturers. Through the Cloud Security Center console, it can achieve unified protection, operation and maintenance of servers on and off the cloud, including virus detection, vulnerability scanning, anti blackmail and other security protection, and reduce security management costs
Capable of providing
Simple and rapid deployment
Under the condition that the network is accessible, you only need to install agents offline or on other ECS hosts to achieve unified management
Safe water level rise
Pull the security water level of non Alibaba Cloud server hosts through the cloud security center, and the cloud detection capability directly covers offline servers
Based on Alibaba Cloud container security ATT&CK attack and defense matrix, the Cloud Security Center focuses on the three life cycle stages of container construction, container deployment, and container operation. Through cloud native mode, container security capabilities are built in a multi-dimensional way to provide all-round security assurance for enterprise cloud containerization process
Capable of providing
Secure trusted image
In container construction, it supports continuous image vulnerability scanning, image supply chain security through trusted signature, and malicious use detection of Docker cp and Docker runcDirtycow to provide a secure computing environment for containers
Continuous configuration check
The cloud security center supports regular configuration checks covering Docker&Kube baselines to meet the security configuration requirements during container deployment
Run real-time detection
Based on the 200+security detection model, it implements container escape prevention and real-time threat detection, supports comprehensive vulnerability scanning and repair of containers, and comprehensively covers system vulnerabilities, application vulnerabilities, emergency 0Day vulnerabilities, etc
The installed capacity of millions of server hosts and CPU utilization rate are lower than 10%;The server is deployed in multiple machine rooms to effectively ensure the high availability of the system
Unified security management
Support threat management and control of server hosts, containers and cloud products throughout the network, and deploy offline IDC and other cloud platforms for unified management and control
Safety closed-loop capability
Actively intercept mainstream virus trojans, comprehensively scan vulnerabilities, and repair vulnerabilities/baseline unsatisfied items with one click to reduce user operation and maintenance costs
Comprehensive attack detection
Collect host logs of three types of 14 types of servers, and the 250+threat detection model provides full link threat detection capability
Product Functions
Safety precautions
Vulnerability scanning and repairMainstream system and software vulnerability scanning, and support one click vulnerability repair.
Cloud platform configuration checkBased on the cloud platform security practice, the ability to link cloud products forms a security closed-loop.
Baseline inspectionReduce the risk caused by improper configuration based on Alibaba Cloud's best configuration checklist.
Active defense
Anti blackmail and anti-virusReal time intercepts seven kinds of known blackmail viruses, mining, worms, DDoS and other viruses.
Tamper proofPrevent websites from being implanted with terrorism and politics, dark chains, backdoors, etc., and ensure normal web pages.
Application whitelistPrevent unauthorized applications from starting abnormally and affecting normal business operation.
Threat detection
250+threat detection modelIt provides you with a full link threat detection capability, so that hackers have nowhere to hide.
Alarm automatic analysis and correlationAutomatically correlate alarms, identify intrusions caused by low-risk exceptions, and improve operational efficiency.
Security situationThe security screen shows the network security situation in a multi-dimensional way, including friends, enemies and threats.
Survey&Response
Automated attack traceabilityAutomatically trace the source and cause of the attack to help users understand the intrusion threat and respond quickly.
Log analysis&auditProvide log audit and analysis capabilities, and provide a platform for attack traceability and compliance.
Container safety
Image vulnerability scanningIt supports deep vulnerability scanning of container images and provides vulnerability repair solutions.
Container threat detectionContainer runtime and K8S threat detection.
Container firewallIt provides integrated network firewall services of intelligent learning, alarm and interception of access control policies for the container environment.
Product Dynamics
New functions/specifications on January 21, 2019
New release of visual situation
View details
New functions/specifications on March 25, 2019
Comprehensive upgrade and release of vulnerability management
View details
New functions/specifications on March 25, 2019
New release of baseline inspection supports compliance inspection
View details
2019-03-25 Function optimization
The overview page is newly released to uniformly present the security threats on the cloud
View details
New functions/specifications on March 25, 2019
Web page anti tamper function newly released
View details
New functions/specifications on March 25, 2019
Situation awareness is comprehensively upgraded to a cloud security center
View details
New functions/specifications on March 25, 2019
Situation awareness is comprehensively upgraded to a cloud security center
View details
New functions/specifications on March 25, 2019
New release of anti ransomware and anti-virus capabilities based on kernel technology
View details
New functions/specifications on March 25, 2019
Custom alarm (Beta) release
View details
2019-05-07 New functions/specifications
Custom security screen, new release
View details
2019-05-14 Price adjustment
Helping small and medium-sized enterprises to develop their business security, the international version of Cloud Security Center reduced its price by nearly 50%
View details
2019-05-24 Function optimization
Web page tamper prevention supports one click startup to ensure that important content of the website is not maliciously tampered, hung up, and hidden
View details
2019-06-18 New functions/specifications
New release of application vulnerability scanning capability
View details
2019-06-27 Function optimization
New revision of emergency vulnerability
View details
2019-07-08 New functions/specifications
The safety report is newly released, which supports the generation of work reports and safety monitoring reports in different scenarios, helping to save energy in safe operation
View details
2019-08-01 Function optimization
Cloud Security Center cooperates with Github, and AccessKey leak detection capability is newly released
View details
2019-08-05 Function optimization
New Asset Center Release
View details
2019-08-13 New functions/specifications
New release of RDS SQL injection threat detection capability
View details
2019-08-15 Function optimization
The new asset center releases domain names and cloud product asset management capabilities to help enterprises manage cloud assets in a unified manner
View details
2019-08-22 Function optimization
Cloud's native security capability enables one click handling of security threats, supports access to malicious IP interception, binary virus detection, and persistent trojan in-depth detection
View details
2019-08-29 Function optimization
The new overview page of the asset center is released, which automatically provides you with the ability to count and analyze assets
View details
New functions/specifications on October 24, 2019
Customized anti brute force attack defense strategy newly released
View details
New functions/specifications on November 21, 2019
Asset fingerprint investigation supports the automatic counting function of planned tasks
View details
New functions/specifications on December 20, 2019
Release of Self inspection Tool for Graded Protection Compliance Enterprises
View details
2019-12-27 Function optimization
Generate a dedicated trial report for trial users, help enterprises fully understand the security status quo, and improve the security defense line
View details
New functions/specifications on December 31, 2019
New release of threat detection such as container runtime website backdoor, blackmail virus, active outreach, and abnormal process startup
View details
2020-01-02 Function optimization
Web page tamper prevention supports Windows process whitelist, and supports real-time business update while protecting
View details
2020-01-09 New Features/Specifications
The Task Center is newly released to support the security arrangement capability of bug batch repair and help enterprises achieve automated security operations
View details
2020-02-24 Function optimization
Windows server vulnerability supports pre patch one click repair
View details
2020-02-25 Function optimization
Windows sever vulnerability repair support 20162019 operating system
View details
2020-02-27 Function optimization
One command to easily install the cloud security center client
View details
2020-02-28 Function optimization
Web page tamper prevention realizes the security protection of dynamic websites, and solves the problem that news enterprises need to frequently modify website content and frequently switch functions
View details
2020-04-09 Function optimization
Automate the analysis of vulnerability repair urgency to help enterprises prioritize the repair of the most urgent vulnerability risks
View details
2020-06-02 New Features/Specifications
New Horus Eye on the safety screen
View details
2020-06-09 New Features/Specifications
Cloud Security Center Launches Antivirus Version
View details
2020-07-30 Function optimization
The Cloud Security Center supports the demonstration of the urgency of Windows software vulnerability repair according to Microsoft's official level
View details
2020-08-13 Function optimization
Security alerts add Web application threat detection and other detection capabilities
View details
2020-08-26 Function optimization
The container page of the asset center is newly upgraded to support the display of statistical data and risk information of container groups and containers
View details
2020-09-02 Function optimization
New operating system types supported by anti ransomware client
View details
2020-09-22 Function optimization
Cloud Security Center - Virus defense function supports configuring virus scanning cycle
View details
2020-10-22 Function optimization
Cloud security center - image security scanning supports access to private image warehouse
View details
2020-11-19 Function optimization
Support one click acquisition of the latest fingerprint of all assets
View details
2020-12-17 Function optimization
Cloud Security Center - supports batch processing of alarm events
View details
2020-12-24 New Features/Specifications
New flagship version of Cloud Security Center
View details
2021-01-12 Function optimization
Cloud Security Center - Image security scanning supports the image baseline check function
View details
2021-02-04 Function optimization
Support to display the source platform of AccessKey information disclosure
View details
2021-03-30 New Features/Specifications
The cloud security center supports the ISO 27001 compliance check function
View details
2021-04-01 Function optimization
Web page anti tamper support setting protection mode
View details
2021-07-22 Function optimization
Hybrid cloud scenario - support for access to assets outside Alibaba Cloud
View details
2021-08-19 New Features/Specifications
Cloud security center - database anti blackmail function release
View details
2021-09-06 New Features/Specifications
Cloud Security Center - Malicious Behavior Prevention Function Release
View details
2021-10-19 Function optimization
Multi account security control supports adding delegated administrators