This topic describes the release notes for Security Center and provides links to the relevant references.

October 2022

Feature Category Description Involved edition Release date References
Container management Feature iteration The details page of a cluster is re-designed. You can view the risks in a cluster by cluster, node, and application. Ultimate 2022-10-14 View security information about containers
Alert management Feature iteration Alerts can be viewed and handled by container and host. Ultimate 2022-10-14 View and handle alert events

September 2022

Feature Category Description Involved edition Release date References
Container image scan Feature iteration The risk statistics section on the Image Security page is optimized. Ultimate 2022-09-23 View image scan results
Proxy access New feature Elastic Compute Service (ECS) instances that reside in a virtual private cloud (VPC) and are inaccessible over the Internet can be added to Security Center by using the proxy access feature. You can also use the feature to manage uplink traffic of the ECS instances. All editions 2022-09-22 Use the proxy access feature
Container image scan Feature iteration Container runtime image scans are supported. Ultimate 2022-09-17 Scan images

August 2022

Feature Category Description Involved edition Release date References
Vulnerability management Feature iteration The vulnerability scan progress can be viewed in the list of vulnerability scan tasks. All editions 2022-08-22 Scan for vulnerabilities
Billing Feature iteration Specification changes and renewal can be performed at the same time. When you renew Security Center, you can change the specifications of Security Center. The existing specifications of Security Center are retained during the current subscription period. When the renewal order takes effect, the new specifications are automatically applied. All editions 2022-08-16 Renew the subscription to Security Center
Billing Feature iteration The entry points to Security Center upgrade and specification downgrade are separately provided. All editions 2022-08-16 Upgrade and downgrade Security Center
Server management Feature iteration A server group can be created when you change the server group for a server. All editions 2022-08-10 Manage servers
Cloud honeypot Feature iteration A honeypot can be deployed in a server in a data center by using a proxy server. When you create a probe in the Security Center console, you must configure a proxy IP address for the server. This way, you can deploy the honeypot in the server in proxy mode. All editions 2022-08-05 Configure a honeypot

July 2022

Feature Category Description Involved edition Release date References
Architecture Feature iteration The menu in the left-side navigation pane of the Security Center console is adjusted. All editions 2022-07-21 None
Baseline check Feature iteration The Risk Details tab is added to the Baseline Check page. You can click Details in the Actions column of a check item on this tab to view the servers that are affected. Advanced, Enterprise, and Ultimate 2022-07-21 View baseline check results and handle baseline risks
Billing Feature iteration The basic fee of Security Center Ultimate on the Alibaba Cloud International site is adjusted. Ultimate 2022-07-21 Billing
Container management Feature iteration The method used to connect self-managed Kubernetes clusters to Security Center is modified. Ultimate 2022-07-19 Connect a self-managed Kubernetes cluster to Security Center
Alert management Feature iteration
  • The numbers of alert events in each ATT&CK phase are displayed.
  • The whitelist rules of alerts are optimized. You can apply a whitelist rule to the current asset or all assets.
  • A time range can be specified as a search condition to search for alerts.
  • Ignored alerts can be removed from the ignored alert list.
  • An alert export task can export the remarks of the alerts.
Anti-virus, Advanced, Enterprise, and Ultimate 2022-07-16 View and handle alert events
Server management Feature iteration The details page of a server is optimized. The O&M and Monitoring tab is added to the page. The tab displays information that is originally displayed on the Cloud Assistant and CloudMonitor tabs. All editions 2022-07-04 Manage servers

June 2022

Feature Category Description Involved edition Release date References
Application security New feature The application security feature is released. You can use the feature without the need to change application code. You need to only install the application security agent on the processes related to the applications that you want to protect. The feature can protect your applications against attacks that are launched by exploiting most unknown vulnerabilities. Advanced, Enterprise, and Ultimate 2022-06-14 Application protection
Baseline check Feature iteration The supported baselines are updated. Advanced, Enterprise, and Ultimate 2022-06-14 Baselines
Web tamper proofing Feature iteration The list of operating systems and kernels that web tamper proofing supports is updated. Advanced, Enterprise, and Ultimate 2022-06-16 Limits on versions of operating systems and kernels
Billing Feature iteration Ultimate 2022-06-24 Billing
Container image scan Feature iteration The value of the Speed Limit parameter that specifies the speed for image scans is configurable. You can specify a custom value for the parameter when you scan images in a Harbor image repository. This helps improve the efficiency of image scans. Advanced, Enterprise, and Ultimate 2022-06-28 Manage image repositories

May 2022

Feature Category Description Involved edition Release date References
Global log filtering New feature The global log filtering feature is released. The feature helps ensure security, improve the utilization of log storage, and ensure the quality of collected logs. The feature also improves operational efficiency. All editions 2022-05-19 Enable global log filtering
Malicious behavior defense Feature iteration The malicious behavior defense feature is available for the Advanced edition. Advanced, Enterprise, and Ultimate 2022-05-19 Use the malicious behavior defense feature
Multi-cloud configuration management Feature iteration The feature of multi-cloud configuration management is released. The feature allows you to add servers of third-party cloud service providers, such as Tencent Cloud and Amazon Web Service (AWS), to Security Center. All editions 2022-05-19 Use multi-cloud configuration management
Baseline check Feature iteration The baseline check items are updated. After the update, the baseline check items are classified based on the following baseline types:
  • Weak password
  • Unauthorized access
  • Container security
  • Best security practice
  • CIS compliance
  • Classified protection compliance
  • Custom baseline
Advanced, Enterprise, and Ultimate 2022-05-19 Baseline checks
Assets Feature iteration The Container page is re-designed. The information about containers is displayed on the Image and Cluster tabs from different dimensions. All editions 2022-05-19 View security information about containers
Security report Feature iteration The security report feature is released. The feature allows you to specify a custom time range in which you want security reports to be sent. Advanced, Enterprise, and Ultimate 2022-05-19 Create a security report
Baseline check Feature iteration Snapshot creation is supported before you handle baseline risks. Advanced, Enterprise, and Ultimate 2022-05-05 View baseline check results and handle baseline risks

April 2022

Feature Category Description Involved edition Release date References
Cloud honeypot Feature iteration The cloud honeypot feature is released. You can purchase and use the feature in the Security Center console. The cloud honeypot feature provides capabilities such as attack discovery and attack source tracing within and outside the cloud. You can create honeypots in VPCs and on the servers that are protected by Security Center. This protects the servers from attacks that are launched within and outside the cloud and provides proactive defense capabilities. All editions 2022-04-26 Overview, Purchase the cloud honeypot feature, Configure a honeypot, and View and handle alerts
Proactive defense for containers New feature The feature of proactive defense for containers is released. The feature detects risks on an image when you use the image to create resources in a cluster. The feature allows you to create a container defense policy for a cluster. If an image hits the container defense policy, Security Center handles the image that is started in the cluster based on the action of the policy. The action can be Block, Alert, or Allow. This ensures that the image does not affect your business. Ultimate 2022-04-19 Use the feature of proactive defense for containers
Container image scan Feature iteration The list of image scan results can be exported. Advanced, Enterprise, and Ultimate 2022-04-12 View image scan results
Log analysis Feature iteration Some log fields are added to the process logs and network connection logs. Anti-virus, Advanced, Enterprise, and Ultimate 2022-04-08 Log fields
Basic task Feature iteration The page on which you can complete basic tasks is re-designed. Anti-virus, Advanced, Enterprise, and Ultimate 2022-04-08 Complete basic tasks
Assets Feature iteration The feature of asset information collection is released. You can use the feature to synchronize the information about your assets. You can also use the feature to collect information about your servers. The information includes the MAC addresses and kernel versions of your servers. All editions 2022-04-08 Manage servers
Attack analysis Feature iteration The attack analysis feature is improved to block webshells and provide instructions on how to disable defense rules. Enterprise and Ultimate 2022-04-01 Attack awareness

March 2022

Feature Category Description Involved edition Release date References
Baseline check Feature iteration The Baseline Check page is re-designed. All editions 2022-03-11 View baseline check results and handle baseline risks
Agent troubleshooting Feature iteration The agent troubleshooting feature is optimized. All editions 2022-03-18 Use the agent troubleshooting feature
Anti-ransomware Feature iteration The maximum number of protected directories that you can specify when you create an anti-ransomware policy for servers is increased from 8 to 20. Anti-virus, Advanced, Enterprise, and Ultimate 2022-03-25 Create an anti-ransomware policy

February 2022

Feature Category Description Involved edition Release date References
Assets Feature iteration The entry point to the asset fingerprints feature is migrated to the Server(s) tab on the Assets page. The asset fingerprints such as the fingerprints of databases and web services can be collected. Enterprise and Ultimate 2022-02-22 Manage servers and Use the asset fingerprints feature
Overview Feature iteration The Overview page is re-designed, and the statistics that you must take note of are conspicuously displayed. All editions 2022-02-22 Overview
CI/CD New feature The feature of CI/CD-based container image scan is released. After you install the CI/CD plug-in for a Jenkins Freestyle or Pipeline project or GitHub Actions, Security Center scans images in the project or GitHub for risks when you build the images. The risks include high-risk system vulnerabilities, application vulnerabilities, viruses, webshells, malicious execution scripts, configuration risks, and sensitive data. If Security Center detects vulnerabilities, Security Center provides solutions to help you fix the vulnerabilities. Ultimate 2022-02-22 Overview, Obtain a token of the CI/CD plug-in, Install the CI/CD plug-in for a Jenkins Freestyle project, Install the CI/CD plug-in for a Jenkins Pipeline project, Install the CI/CD plug-in for GitHub Actions, and View image scan results
Malicious behavior defense Feature iteration The ATT&CK Phase section is added to the Host defense rules tab of the Malicious behavior Defense page. You can select an attack phase in the section to query system defense rules. Enterprise and Ultimate 2022-02-26 Use the malicious behavior defense feature
Threat intelligence from ThreatBook Feature removed The feature of threat intelligence from ThreatBook is unpublished. Anti-virus, Advanced, Enterprise, and Ultimate 2022-02-26 None

January 2022

Feature Category Description Involved edition Release date References
Vulnerability fixing Feature iteration In the upper-right corner of the vulnerability list on the Vulnerabilities page, the Show only real risk vulnerabilities switch is added. After you turn on the switch, Security Center displays only the vulnerabilities whose urgency score is high in the vulnerability list. After you turn off the switch, Security Center displays all vulnerabilities in the vulnerability list. All editions 2022-01-11 Overview
Container image scan Feature iteration The Image Security page is modified. The Docker Hub Scan tab is migrated to the upper-right corner of the Image Security page. The Image security scan tab is removed from the Image Security page. You can view the details of image scan results on the Image Security page. Ultimate and Enterprise 2022-01-07 Add image repositories to Security Center, Scan images, and View image scan results

Security Center release notes

For more information about the release notes for Security Center earlier than 2022, see Release notes (earlier than 2021).