Security Center is a unified security management system that provides real-time identification, analysis, and notifications about security threats on your system. It provides security capabilities such as ransomware prevention, anti-virus protection, web tamper prevention, and compliance assessments. These capabilities help you automate threat detection and responses, trace secure cloud and on-premises servers, and meet regulatory compliance requirements. By default, the features of Security Center Basic Edition are enabled to protect Elastic Compute Service (ECS) instances.

Security Center of the Basic Anti-virus Edition or higher automatically quarantines viruses. It prevents and quarantines common ransomware (such as WannaCry and Globelmposter) and DDoS Trojans (such as XOR DDoS and BillGates). We recommend that you use Security Center to improve the security of your assets. For information about how to enable automatic quarantine, see Use proactive defense.

For more information about the features of each edition, see Features.

Prerequisites

Security Enhancement is selected in the Image section when you purchase ECS instances.

Security enhancement

View overall security information of ECS instances

Log on to the ECS console. On the Overview tab, click Handle. The Overview page of Security Center appears. You can view the security information of ECS instances.Overall security information of ECS instances
You can log on to the Security Center console and click Overview in the left-side navigation pane to check the threat overview and security score of assets, such as the number of unfixed alerts, alert priorities, and the total number of detected alerts. For more information, see Overview.Overview

You can click Fix in the Unhandled Alerts, Unfixed Vul, Baseline Risks, or Attacks section to check the details of asset threats and fix them.

View security information of an ECS instance

To view security information of an ECS instance, log on to the ECS console, and click Instances in the left-side navigation pane. On the Instances page, find an ECS instance, and click the Alibaba Cloud Security icon for the instance. The Assets page of Security Center appears. You can view the security information of the ECS instance.Instances
For information about how to view the security information of an ECS instance on the Assets page of Security Center, see View the details of an asset.Instances
Note If the client status of an asset is Offline, the Security Center agent is offline. Security Center cannot protect servers whose agent is offline. In this case, you must log on to the Security Center console, and click Settings > Agent. On the Agent tab, find the server, and click Install the client in the Actions column for the server. For more information, see Install and uninstall the Security Center agent.