After you activate Sensitive Data Discovery and Protection (SDDP), it automatically scans your data in MaxCompute, Relational Database Service (RDS), or Object Storage Service (OSS) for sensitive data, and marks the sensitive data with risk levels. You can check the overview and details of the sensitive data in the SDDP console.

Background information

Before using SDDP, you must activate at least one of MaxCompute, RDS, and OSS and create data in the activated service to make sure that SDDP has data to scan.

Procedure

  1. Optional: Activate MaxCompute, RDS, or OSS. If you have activated one of the services, directly go to step 2.
  2. Optional: Create a project in MaxCompute and import data to the project, create a database in RDS, or create a bucket in OSS and upload objects to the bucket. If you have used one of the services, directly go to step 3.
    For more information about the operations, see the following topics:
  3. Activate SDDP. For more information, see Activate SDDP.
    Note Make sure that you have activated MaxCompute, RDS, or OSS before activating SDDP. If you have not activated MaxCompute, RDS, or OSS, click Enable Now when the dialog box shown in the following figure appears to activate the required service.activate the required service
    After you activate SDDP, it automatically scans your data in MaxCompute, RDS, or OSS, including existing data and any new data that is generated from now on.
  4. Authorize SDDP to access data in MaxCompute, RDS, or OSS. For more information, see Authorize SDDP to access your data.
    SDDP must be authorized to access data in MaxCompute, RDS, or OSS before it can identify sensitive data in the services.
  5. Optional. Configure sensitive data identification rules. For more information, see Configure sensitive data identification rules.
    SDDP identifies sensitive data in files or tables and generates alerts based on sensitive data identification rules. SDDP provides a bunch of built-in rules, which can be used immediately after SDDP is activated without any configuration. If the built-in rules cannot meet your requirements, you can customize rules based on your business needs.
  6. View the sensitive data identified by SDDP and relevant statistics. For more information, see Use the Overview page and View sensitive data.
  7. Process anomalous events that are detected or desensitize sensitive data. For more information about anomalous events, see Process anomalous events.
    For more information about how to desensitize sensitive data, see Manage desensitization tasks.