Security Center provides the Basic edition for all Alibaba Cloud users. The Basic edition provides basic security protection features to strengthen the security of your assets. You can use the features to detect risks on your assets. The risks include unusual logons, DDoS trojans, and common vulnerabilities. You can use Security Center Basic free of charge. You need to only install the Security Center agent on your servers to use the security protection features of the Basic edition.
Enterprise and individual users who need to manage servers in a centralized manner
Security Center Basic supports Alibaba Cloud Elastic Compute Service (ECS) instances and servers that are not deployed on Alibaba Cloud, including servers in data centers. Security Center Basic provides the following features: vulnerability detection, urgent vulnerability detection, unusual logon detection, AccessKey pair leak detection, and compliance check.
Security Center Basic can detect risks such as vulnerabilities and generate alerts. However, Security Center Basic cannot handle the risks.
This feature detects Linux software vulnerabilities, Windows system vulnerabilities, and Web-CMS vulnerabilities. Security Center automatically scans your servers every two days. You can view the vulnerabilities that are detected on your servers on the Vulnerabilities page.
Urgent vulnerability detection (warning for major security events)
This feature detects high-risk vulnerabilities that are recently exposed on the Internet. This helps you identify critical vulnerabilities on your servers at the earliest opportunity and reduces the risk of intrusions into your servers.
To detect urgent vulnerabilities, you must manually perform a quick scan on the Vulnerabilities page.
Unusual logon detection
The alerting feature detects logons from unapproved locations and brute-force attacks, and generates alerts. This helps you identify unusual logons at the earliest opportunity and reduces the risk of system attacks.
Cloud threat detection
This feature detects unusual use of cloud services based on user behavior analysis. For example, an attacker uses your AccessKey pair to purchase a large number of ECS instances for data mining.
Detection of AccessKey pair leaks or unusual calls of AccessKey pairs
This feature checks the usernames and passwords in source code that is stored on platforms such as GitHub. This helps you detect leaks of the usernames and passwords for your assets. If leaks are detected, Security Center generates alerts. You can identify and handle potential AccessKey pair leaks at the earliest opportunity.
Security Center provides the classified protection compliance check and ISO 27001 compliance check features. The features help you build systems that meet the requirements of classified protection and attain the ISO 27001 certification.
How to obtain Security Center Basic
By default, all Alibaba Cloud users can use Security Center Basic. You can view the identifier of the Basic edition on the Overview page of the Security Center console.
How to use Security Center Basic to protect servers
After you install the Security Center agent on ECS instances or servers that are not deployed on Alibaba Cloud, you can use the features of Security Center Basic to protect the instances or servers.
The following list describes how to install the agent:
Alibaba Cloud ECS instances
Servers that are not deployed on Alibaba Cloud
How to apply for a 7-day free trial
If you have purchased an ECS instance and require additional protection features, you can apply for a 7-day free trial of Security Center Enterprise or Ultimate. For more information, see Apply for a 7-day free trial of Security Center.