Help Center/ Data Security Center/ Getting Started/ Procedure for Using DSC
Updated on 2024-10-09 GMT+08:00

Procedure for Using DSC

Obtain permissions for DSC to access and protect the data stored in either OBS or RDS.

Assigning Permissions for DSC

Figure 1 shows the process for assigning permissions for DSC.

Figure 1 Assigning permissions for DSC

After permissions are granted, DSC will automatically identify sensitive data in the authorized data assets and evaluates data asset risk levels. You can go to the DSC console to view the asset security details on the Overview page.

  1. (Optional) Enable OBS or RDS to protect data in your OBS self-built buckets.

    • If OBS or RDS was enabled, skip to 2.
    • If OBS or RDS was not enabled, enable it and then go to 2.

      For details about how to enable OBS, see OBS User Guide. For details about how to enable RDS, see RDS User Guide.

  2. (Optional) Create an OBS bucket and upload the files to be stored in the bucket or create a database in an RDS DB instance.

  3. (Optional) Set the type of other OBS buckets to Public to protect other OBS buckets.
  4. (Optional) Obtain the information about the engine, version, and host of a self-built database to protect it.
  5. (Optional) Obtain the information about the engine, version, and host of other self-built data sources to protect them.
  6. Authorize DSC to access cloud assets.

  7. Configure sensitive data identification rules.

    For details, see Creating a Task.

  8. View the identified sensitive data or files and their statistics.

    For details about how to view the identification result, see Identification Results.

  9. Handle exceptions or mask sensitive data based on the identification result.

    For details, see Handling an Abnormal Event.

    For details about how to mask sensitive data, see Data Masking Introduction.

  10. Set alarm notifications for exceptions.

    For details about how to configure alarm notifications, see Alarm Notifications.