Security Center is the foundational security edition of Security Center, available to all Alibaba Cloud users. It offers core security capabilities, including unusual logon detection, DDoS trojan detection, and vulnerability detection for common server types. To use these security services for free, install the Security Center agent on your servers.
Intended users
Enterprise and individual users who need to centrally manage the security of their servers.
Features
Security Center protects both Alibaba Cloud ECS instances and servers hosted outside of Alibaba Cloud, including those in on-premises data centers. It offers features such as vulnerability detection, urgent vulnerability detection, unusual logon detection, AccessKey pair leak detection, and compliance check.
Security Center only detects risks, such as vulnerabilities, and generates alerts. It does not support risk remediation.
Feature | Description | References |
Vulnerability detection | This feature detects Linux software vulnerabilities, Windows system vulnerabilities, and Web-CMS vulnerabilities. Security Center automatically scans your servers every other day. You can view detected vulnerabilities on the Vulnerabilities page. | |
Urgent vulnerability | Detects recently disclosed, high-risk vulnerabilities on your servers. This helps you promptly identify critical vulnerabilities and reduce the risk of system intrusion. Note To detect urgent vulnerabilities, you must manually run a scan from the Vulnerabilities page. | |
Unusual logon | This feature provides basic detection of unusual logons and brute-force attacks. This helps you identify suspicious login activity early and reduce the risk of system compromise. | Overview of Cloud Workload Protection Platform (CWPP) security alerts |
Cloud threat detection | Detects anomalous use of cloud products based on user behavior analysis. For example, it can identify when an attacker uses a compromised AccessKey to purchase a large number of ECS instances for crypto-mining. | |
AccessKey pair leak | This feature scans public source code on platforms like GitHub in real time for exposed user credentials. It identifies whether your AccessKey pair has been leaked and generates an alert, helping you promptly discover and handle a potential AccessKey pair leak. | |
Compliance check | Provides compliance checks for standards such as MLPS 2.0 and ISO 27001. This helps you meet compliance assessment requirements and achieve certifications. |
Get Security Center Basic
All Alibaba Cloud users have access to Security Center Basic by default. You can see the Security Center Basic identifier on the Overview page of the Security Center console.
Enable server protection
After you install the Security Center agent on an ECS instance or a server hosted outside of Alibaba Cloud, Security Center begins protecting the server.
You can install the agent in the following ways:
Alibaba Cloud ECS instance
When you purchase an ECS instance, select Security AI Assistant. This automatically installs the agent on the ECS instance.
Manually install the agent for your ECS instance in the Security Center console. For detailed instructions, see Install the agent.
Servers hosted outside of Alibaba Cloud
You must manually install the agent from the Security Center console. For more information, see Install the agent.
Apply for a 7-day free trial
If you have an Alibaba Cloud ECS instance and require more advanced security features, you can apply for a 7-day free trial of Security Center or . For instructions, see Start a 7-day free trial.