You can configure rules to identify risks in users' daily access to your data. You can also enable or disable AI-based identification rules.

The Data Risks page lists the data activities where risks are identified. You can check these data activities and mark them as secure or risky. On the Data Activities page, you can click an activity to view the risk rule that is hit.

  1. Log on to the DataWorks console, find the target workspace, and then click Data Analytics.
  2. On the DataStudio page that appears, click the icon in the upper-left corner and choose All Products > Data Security Guard.
  3. On the Data Security Guard page that appears, click Try now. The Data Definition page appears.
  4. In the left-side navigation pane, choose Management > Risk Rules. On the Custom Identification Rules page that appears, you can create, copy, configure, and delete rules.

The Custom Identification Rules page contains the Rule Settings and AI-based Identification Rules tabs.

Rule Settings tab

  • Create a rule

    Click Create Rule in the upper-right corner. In the Create Rule dialog box that appears, set the Rule Name, Owner, and Description parameters, and then click OK.

  • Copy a rule

    Find the target rule and then click the Copy icon in the Actions column. A new rule with the same settings as the target rule is created.

    The status of the new rule is Inactive by default. You can modify the rule and enable it as needed.

  • Modify a rule
    To modify an existing rule, follow these steps:
    1. Set the status of the rule to Inactive.
    2. Click the Change icon in the Actions column.
    3. In the Change dialog box that appears on the right side, modify settings in the Basic Settings and Rule Settings sections.
    4. Verify that the settings are correct and click Save.
    5. Set the status of the rule to Active.
  • Delete a rule

    To delete a rule, click the Delete icon in the Actions column. In the dialog box that appears, click Delete.

AI-based Identification Rules tab

On the AI-based Identification Rules tab, you can enable or disable AI-based identification rules. Currently, only the Similar SQL Statement Query rule is provided.

To enable an AI-based identification rule, set the status of the rule to Active.

  • After the Similar SQL Statement Query rule is enabled, SQL queries that hit the rule will appear on the Data Risks page on the next day.
  • You can disable the rule by changing its status to Inactive. Disabling the rule will not delete the SQL queries that have been identified based on the rule.