Feature Module | Feature | Problem Solved | Operation Guide | |
Statistics Dashboard | | Quickly understand the status of COS assets, and locate abnormal COS buckets that require attention, pending alarms, pending risks, and so on. | Locate high-priority issues, understand how many COS buckets require attention, how many problems are pending, and what the recent security operations trend is. | |
Asset list | COS Assets | View basic information, security recommendations, associated alarms and risks, call records, and related assets from the COS asset perspective. (Both permanent and temporary keys are supported.) | Sort out the number of AKs, understand whether each AK is being called, which interfaces this AK is accessed by how many IPs, whether there are any exceptions in the calls, and what the related policies are. | |
| Call Source IP | View IP address region, type, AK invocation status, associated alarms, and call records from the calling source IP address perspective. | Sort out the number of IP addresses that have requested permanent AKs, determine whether an IP address is an internal asset, identify the location of the IP address, analyze how many AKs have been called, check whether there are any alarms, and support customers in adding remarks about the business to which the IP address belongs. | |
| Associated AK | View details of COS assets and asset alarms associated with the AK from the perspective of COS-associated AK. | Clarify the scope of COS assets corresponding to each AK, quickly locate security alarms for assets associated with that AK, and assess the impact scope and risk level of the AK. | |
Alarm List | Abnormal Access | View alarm content (leakage, abnormal invocation), associate the AK with abnormal call records, and provide permission policy configuration suggestions from the alarm rule perspective. | The system alarms on leakage events in real time and comprehensively analyzes and traces abnormal calls. Identify the leaked address, analyze the abnormal call chain (including the calling IP address, accessed services and APIs, and relevant policies), provide remediation recommendations, and guide the response process. | |
| Malicious Files | Monitors malicious files in incremental files in real time. If a bucket contains malicious files, a malicious file alarm will be generated. | Detect malicious file upload threats in a timely manner through malicious file identification, reducing the risks of data leakage and virus infection. | |
Risk List | Risk Item Perspective | View risk details, affected buckets and risk levels, and handling suggestions from the risk item perspective. | Sort out the types and quantities of existing risk items, clarify the trigger cause, impact scope, and severity level of each risk, assist in assessing risk priorities, and promote remediation. | |
| By assets | View all risk items associated with the asset, risk evidence & description, risk API status, and risk handling status from the asset perspective. | Locate risks associated with specific assets, clarify the impact of risks on asset security, track the entire process of risk discovery and remediation, and ensure asset security. | |
Policy Management | Alarm Policy | Manage system alarm policies. | Manage alarm policies that require attention and customize allowlists based on business needs. | |
| Allowlist Policy | Manages alarm allowlists, supports CRUD operations on allowlists, and allows adding entries to the allowlist based on IP address, invocation method, AK, API, and so on. | | |
| IP Hiding Policy | By configuring a calling source IP allowlist policy for a specified AK, all subsequent access IPs for that AK will be automatically hidden and not displayed in the calling source IP list. | | |
| Data identification Policy | Sensitive Data Identification Policy Configuration for COS | Helps you understand the distribution of data in storage through sensitive data identification, avoiding compliance risks arising from improper storage or leakage of sensitive data. | |
フィードバック