Security Risk Monitoring

• FunctionGraph uses Cloud Eye to help you monitor your functions and receive alarms and notifications in real time. The following metrics can be monitored: invocations, errors, duration (maximum, average, and minimum), throttles, and instance statistics.
• Cloud Trace Service (CTS) collects, stores, and queries cloud resource operation records. You can use these records to perform security analysis, track resource changes, audit compliance, and locate faults. CTS can track the entire lifecycle of function resource operations, report alarms for important configuration changes in real time, and quickly detect and track function resource changes.
• Cloud Firewall (CFW) provides threat prevention at the network layer. It integrates the IPS/IDS feature and supports DDoS attack defense based on traffic analysis, automatic blocking of malicious IP addresses, and automatic optimization suggestions for access control policies. When you configure a VPC and access the public network, you can use CFW to enhance public access security.

For details about FunctionGraph metrics, see Monitoring. To learn how to create alarm rules, see Creating an Alarm Rule.