Updated on 2022-09-22 GMT+08:00

DBSS

Database Security Service (DBSS) is an intelligent database security service. Based on the machine learning mechanism and big data analytics technologies, it can audit your databases, detect SQL injection attacks, and identify high-risk operations.

Supported Databases

Database audit provides the audit function in out-of-path disposition pattern for the following databases on HUAWEI CLOUD:

  • RDS instances
  • Self-built databases on ECS
  • Self-built databases on BMS

Database audit supports the following database types and versions.

Table 1 Database types and versions supported by database audit

Database Type

Version

MySQL

  • 5.0, 5.1, 5.5, 5.6, 5.7
  • 8.0 (8.0.11 and earlier)
  • 8.0.23
  • 8.0.25

Oracle

  • 11g

    11.1.0.6.0, 11.2.0.1.0, 11.2.0.2.0, 11.2.0.3.0, and 11.2.0.4.0

  • 12c

    12.1.0.2.0, 12.2.0.1.0

  • 19c

PostgreSQL

7.4 or later

SQL Server

  • 2008, 2008R2
  • 2012
  • 2014
  • 2016
  • 2017

DWS

  • 1.5
  • v8

SHENTONG

V7.0

GBase 8a

V8.5

GBase 8s

V8.8

Gbase XDM Cluster

V8.0

Greenplum

V6.0

HighGo

V6.0

GaussDB(for MYSQL)

MySQL 8.0

GaussDB(for openGauss)

1.4 Enterprise Edition

DAMENG

DM8

KINGBASE

V8

MongoDB

V5.0

Service Features

  • Help you meet security compliance requirements.
    • Comply with DJCP (graded protection) standards for database audit.
    • Comply with security laws and regulations, and provide compliance reports that meet data security standards (such as Sarbanes-Oxley).
  • Back up and restore database audit logs and meet the audit data retention requirements.
  • Monitor risks, sessions, session distribution, and SQL distribution in real time.
  • Report alarms for risky behaviors and attacks and responds to database attacks in real time.
  • Locate internal violations and improper operations and keep data assets secure.
Deployed in out-of-path pattern, database audit can perform flexible audit on the database without affecting user services.
  • Monitors database login, operation type (data definition, operation, and control), and operation object based on risky operations to effectively audit the database.
  • Analyzes risks, sessions, and SQL injection to help you master the database situation in a timely manner.
  • Provides a report template library to generate daily, weekly, or monthly audit reports according to your configurations. Sends real-time alarm notifications to help you obtain audit reports in a timely manner.