Tablestore:Security compliance overview

Feature

Description

Compliance certifications

Tablestore has obtained multiple compliance certifications such as ISO, BS10012, and CSA STAR that can meet various compliance requirements.

Access control

You can use access control capabilities such as network access control lists (ACLs) and instance policies to control and manage access to your Tablestore resources.

Data security

The following content describes the capabilities provided by Tablestore to ensure data security:

• Tablestore provides server-side encryption and client-side encryption to protect data from potential security risks in the cloud.

• Tablestore provides the zone-redundant storage (ZRS) feature for disaster recovery across multiple zones. This ensures high data availability and disaster recovery.

• Tablestore provides the cloud backup feature for you to prevent data from being accidentally deleted or tampered with.

• Tablestore supports the V4 signature algorithm. You can use the key generated by using the V4 signature algorithm for authentication. This prevents your actual key from being leaked.

Network security

Tablestore supports network isolation based on virtual private clouds (VPCs). This improves the security of network communication across VPCs.

Monitoring and logs

Tablestore supports data monitoring for resources such as Tablestore instances, tables, search indexes, and secondary indexes. You can also use monitoring and log auditing services provided by Alibaba Cloud, such as CloudMonitor and ActionTrail in Tablestore. The services can monitor resource usage and service performance in real time, and generate alerts to help you handle exceptions at the earliest opportunity.

You can use Simple Log Service to collect and analyze log data such as the operation information of cloud services. This way, you can monitor and audit logs in real time.