How to purchase DSC - Data Security Center - Alibaba Cloud Documentation Center

Data Security Center (DSC) provides data-centric security risk management capabilities, including data sorting, data masking, data auditing, and alerting. This topic describes how to purchase DSC.

Supported regions and database types

Before you purchase DSC, make sure that the regions and database types are supported by DSC.

For more information about the regions supported by DSC, see Supported regions.
For more information about the database types supported by DSC, see Supported database types.
For more information about differences in features of different DSC editions, see Differences between the features of different editions.

Procedure

Go to the DSC buy page by using your Alibaba Cloud account.

Configure parameters based on your business requirements.

The following table describes the parameters.

Important

After you purchase an edition of DSC, you cannot purchase the same edition again. You can upgrade the specifications of only the current edition. By default, the edition of DSC is Enterprise after you upgrade the specifications. To upgrade the specifications, go to the DSC console. On the Overview page, click Upgrade and complete the upgrade.
If you have activated DSC Free Edition and want to purchase a paid edition to upgrade the specifications of DSC, take note of the following items:
- If you purchase Value-added Plan, the authorized assets and related data are retained.
- If the edition you purchase is not Value-added Plan, the authorized assets and related data are released when Free Edition is released.
When you purchase DSC Enterprise Edition, you must set the Database Management or Storage data management parameter to Enable and purchase the related capacity.

Parameter	Description
Edition	The edition of DSC that you want to purchase. Valid values: Enterprise Edition: This edition meets the requirements for data auditing and personal information protection in Multi-Level Protection Scheme (MLPS) 2.0. This edition supports comprehensive security auditing for cloud-native data types, such as ApsaraDB RDS, Object Storage Service (OSS), MaxCompute, AnalyticDB for PostgreSQL, AnalyticDB for MySQL, Tablestore, and ApsaraDB for OceanBase and helps you identify sensitive data and classify the data. This edition supports features such as data leak alerting, data masking, and data watermark-based tracing. You can activate and deploy DSC in the DSC console with a few clicks. This allows you to access core assets in an efficient manner. Value-added Plan: You can purchase the data detection and response feature and the log storage feature. If you purchase only the data detection and response feature, you can use the data insights and data auditing features free of charge for one month. If you want to use the data insights and data auditing features after the one-month free trial period ends, you must upgrade DSC to Enterprise Edition.
Database Management	A basic feature. Specifies whether to enable the database management feature. Only DSC Enterprise Edition supports the feature. Valid values: Enable: enables the database management feature. You can use DSC to manage and protect databases. Disable: disables the database management feature.
Instances	A basic feature. The maximum number of database instances that DSC can protect. Only DSC Enterprise Edition supports the feature. Valid values: 1 to 2000. Note You can configure the Instances parameter only if you select Enable for the Database Management parameter.
Storage Data Management	A basic feature. Specifies whether to enable the storage data management feature. Only DSC Enterprise Edition supports the feature. Valid values: Enable: enables the storage data management feature. You can use DSC to protect storage data. Disable: disables the storage data management feature. The storage data includes the data stored in OSS buckets and Simple Log Service projects.
Storage Protection Capacity	A basic feature. The size of the OSS data and the log data in Simple Log Service that you want DSC to protect. Only DSC Enterprise Edition supports the feature. Valid values: 1000 to 10000000. Unit: GB. You can increase the value in increments of 1,000 GB. You can enable only the data identification feature for the data in Simple Log Service that you authorize DSC to access. For DSC Enterprise Edition, the storage protection capacity is deducted based on 50% of the size of data in Simple Log Service for which DSC is authorized to access. For example, if the size of the data in Simple Log Service is 1,000 GB, you can set the Storage Protection Capacity parameter to 500 GB when you purchase DSC Enterprise Edition.
Data Detection and Response	A value-added feature. Specifies whether to enable the data detection and response feature for data in OSS, ApsaraDB RDS, and PolarDB. By default, the feature is enabled. If you enable the data detection and response feature, 1 TB of OSS protection capacity and one database instance is provided by DSC each month free of charge.
Data Detection and Response - OSS Protection Capacity	A value-added feature. After you enable Data Detection and Response, you must specify the size of OSS data that you want to protect. Valid values: 1 to 9999999999. Unit: TB.
Data Detection and Response - Number of Database Instances	A value-added feature. After you enable the data detection and response feature, you must specify the number of database instances that you want to protect. Value values: 1 to 999999999.
Column Encryption	A value-added feature. Specifies whether to enable the column encryption feature. By default, this parameter is set to Yes.
Columns	A value-added feature. The number of columns that you want to encrypt per month. The value must be in increments of 5 columns.
Log Storage	A value-added feature. Specifies whether to enable the log storage feature. By default, DSC provides 200 GB of log storage each month for each database instance included in your purchased database instance quota and 50 GB of log storage each month for each TB of OSS protection capacity. Enterprise: Number of database instances = Value of the Instances parameter that is specified in basic features + Value of the Data Detection and Response - Number of Database Instances parameter that is specified in the Value-added Module section OSS protection capacity = Value of the Storage Protection Capacity parameter that is specified in basic features + Value of Data Detection and Response - OSS Protection Capacity parameter that is specified in the Value-added Module section Value-added Plan Number of database instances= Value of the Data Detection and Response - Number of Database Instances parameter. OSS protection capacity= Value of the Data Detection and Response - OSS Protection Capacity parameter. If the default log storage capacity provided each month cannot meet your business requirements, you can enable Log Storage and specify a value for the Extended Log Storage Capacity parameter. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Extended Log Storage Capacity	A value-added feature. If you enable Log Storage, you must specify a value for the parameter. Valid values: 1 to 500. Unit: TB. Warning You must specify a value for Extended Log Storage Capacity based on your business requirements. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Subscription	The subscription duration.

Click Buy Now and complete the payment.