Data Security Center (DSC) provides data-centric security risk management capabilities, including data sorting, data masking, data auditing, and alerting. This topic describes how to purchase DSC.
Supported regions and database types
Before you purchase DSC, make sure that the regions and database types are supported by DSC.
For more information about the regions supported by DSC, see Supported regions.
For more information about the database types supported by DSC, see Supported database types.
For more information about differences in features of different DSC editions, see Differences between the features of different editions.
Procedure
Go to the DSC buy page by using your Alibaba Cloud account.
Configure parameters based on your business requirements.
The following table describes the parameters.
Parameter
Description
Edition
The edition of DSC that you want to purchase. Valid values:
Enterprise Edition: This edition meets the requirements for data auditing and personal information protection in Multi-Level Protection Scheme (MLPS) 2.0. This edition supports comprehensive security auditing for cloud-native data types, such as ApsaraDB RDS, Object Storage Service (OSS), MaxCompute, AnalyticDB for PostgreSQL, AnalyticDB for MySQL, Tablestore, and ApsaraDB for OceanBase and helps you identify sensitive data and classify the data. This edition supports features such as data leak alerting, data masking, and data watermark-based tracing. You can activate and deploy DSC in the DSC console with a few clicks. This allows you to access core assets in an efficient manner.
Value-added Plan: You can purchase the data detection and response feature and the log storage feature.
If you purchase only the data detection and response feature, you can use the data insights feature and the data auditing feature free of charge for one month. If you want to use the data insights and data auditing features after the one-month free trial period ends, you must upgrade DSC to Enterprise Edition.
Database Management
Specifies whether to enable the database management feature. Only DSC Enterprise Edition supports the feature. Valid values:
Enable: enables the database management feature. You can use DSC to manage and protect databases.
Disable: disables the database management feature.
Instances
Specifies the maximum number of database instances that DSC can protect. Only DSC Enterprise Edition supports the feature. Valid values: 1 to 2000.
NoteYou can configure the Instances parameter only if you select Enable for the Database Management parameter.
OSS Data Management
Specifies whether to enable the OSS data management feature. Only DSC Enterprise Edition supports the feature. Valid values:
Enable: enables the OSS data management feature. You can use DSC to protect OSS data.
Disable: disables the OSS data management feature.
OSS Authorization Quota
Specifies the size of the OSS data that you want DSC to protect. Only DSC Enterprise Edition supports the feature. Valid values: 1000 to 10000000. Unit: GB. You can increase the value in increments of 1,000 GB.
Data Detection and Response
A value-added feature. Specifies whether to enable the data detection and response feature for OSS data. By default, the feature is enabled.
If you enable the data detection and response feature, 1 TB of OSS protection capacity is provided by DSC each month free of charge.
Data Detection and Response - OSS Protection Capacity
A value-added feature. After you enable Data Detection and Response, you must specify the size of OSS data that you want to protect. Valid values: 1 to 9999999999. Unit: TB.
Log Storage
A value-added feature. Specifies whether to enable the log storage feature.
By default, DSC provides 200 GB of log storage each month for each database instance included in your purchased database instance quota and 50 GB of log storage each month for each TB of OSS protection capacity.
Enterprise:
Database instance quota = the value that is specified by Instances in basic features
OSS protection capacity = Value of OSS Authorization Quota provided in basic features + Value of Data Detection and Response - OSS Protection Capacity in Value-added Module
Value-added Plan
Database instance quota = 0
OSS protection capacity= Value of Data Detection and Response - OSS Protection Capacity in Value-added Module
If the default log storage capacity provided each month cannot meet your business requirements, you can enable Log Storage and specify a value for the Extended Log Storage Capacity parameter. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Extended Log Storage Capacity
A value-added feature. If you enable Log Storage, you must specify a value for the parameter. Valid values: 1 to 500. Unit: TB.
WarningYou must specify a value for Extended Log Storage Capacity based on your business requirements. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Subscription
The subscription duration.
Click Buy Now and complete the payment.