Security Center monitors your cloud assets and diagnoses detected issues. This topic describes how to purchase Security Center and the value-added features that are provided by Security Center.

Background information

Security Center has the Basic, Anti-virus, Advanced, Enterprise, Ultimate, and Value-added Plan editions. For more information about the features that are supported by each edition, see Features. For more information about the billing of each edition, see Billing.

Procedure

  1. Go to the Security Center buy page by using your Alibaba Cloud account.
  2. Configure the parameters.

    The following table describes the parameters on the buy page.

    Parameter Description
    Edition The edition that you want to purchase. For more information about the features that are supported by each edition, see Features.
    Note Security Center provides the Value-added Plan edition. This edition allows you to separately enable anti-ransomware, container image scan, and web tamper proofing for the Basic edition.
    Protected Servers The number of servers that you want to protect by using Security Center. The default value is the total number of Elastic Compute Service (ECS) instances plus the servers that are not deployed on Alibaba Cloud but have the Security Center agent installed within your Alibaba Cloud account.
    Note
    • If you want to increase the number of protected servers during the subscription, we recommend that you specify a value that can cover the estimated total number of servers to protect.
    • If you want to purchase the Anti-virus, Ultimate (Container Security), or Value-added Plan edition, you do not need to configure this parameter.
    vCore The number of vCPUs of servers that you want to protect by using Security Center. The default value indicates the minimum number of vCPUs that you can specify.
    Note This parameter is required only when you set Edition to Anti-virus or Ultimate (Container Security).
    Log Analysis A value-added feature. You can specify this parameter to purchase log storage capacity. If you want to use this feature, set this parameter to a value greater than 0GB. The log analysis feature retrieves data from all logs, including host, network, and security logs. This allows you to trace and analyze security events.
    Note The Enterprise and Ultimate editions of Security Center support 14 subtypes of logs while the Advanced edition supports only 10 subtypes of logs. The 10 subtypes of logs are categorized into host and security logs. The Basic and Anti-virus editions do not support the log analysis feature.
    Anti-ransomware A value-added feature. If you want to use this feature, set this parameter to a value greater than 0GB. The general anti-ransomware solution provides the protection, alerting, and data backup features to prevent ransomware from intruding into your core servers. For more information, see Overview.
    Container Image Scan A value-added feature. If you want to use this feature, set this parameter to a value greater than 0. This parameter specifies the number of images to scan.

    We recommend that you set this parameter to the number of images for which you want to detect container vulnerabilities during the subscription. Security Center identifies an image based on a unique digest value. If the digest value of an image does not change, the quota specified by Container Image Scan is deducted by one only for the first scan. If the digest value of an image changes and the image is scanned again, the quota specified by Container Image Scan is deducted again. The quota is deducted by one each time the digest value changes. For example, if you want to scan 10 images and the total number of times the digest values of the images change is expected to be 20 within the subscription, set Container Image Scan to 30. This indicates that the value of Container Image Scan equals the number of images you want to scan plus the number of times the digest values change.

    You can purchase this feature only when you set Edition to Advanced, Enterprise, Ultimate (Container Security), or Value-added Plan.

    Web Tamper Protection A value-added feature. If you want to use this feature, select Yes and set Number to the number of servers for which you want to enable web tamper proofing. This feature monitors web directories in real time and can restore tampered files or directories based on the backup files. This prevents important website information from being tampered with.
    Duration The subscription period. You must determine whether to enable Auto-renewal.
    Note The auto-renewal cycle is based on the subscription period. If you purchase Security Center on a yearly basis, the auto-renewal cycle is one year. For example, if you select Auto-renewal and purchase a two-year subscription, the auto-renewal cycle is one year.
  3. Click Buy Now and complete the payment.