Applicable Scenarios

Data Mid-end API Data Access Control

After the data middle-end is put into operation and cybersecurity measures have been systematically implemented, there are still some data leakage risks in the application system. The API data security protection system is deployed between application clients, internal application services, and the big data center platform. It provides features like fine-grained data access control, sensitive data identification, data masking, and digital watermarking at the API level, ensuring the security of sensitive data accessed via APIs.

Data Protection for Highly Sensitive Services

Industries like finance, government, healthcare, and education handle significant amounts of sensitive data, including personally identifiable information (PII), financial data, and medical records. This data must be strictly protected for compliance with laws and regulations such as GDPR, HIPAA, and DJCP. The system's functions of sensitive identification, dynamic masking, and watermark source tracing can effectively meet these requirements.

Enterprise Intranet Security Monitoring and Audit

In an enterprise intranet environment, the system automatically identifies and discovers all running APIs and accounts on the network, including unrecorded or forgotten shadow assets, to create a comprehensive and accurate asset list. This lays a foundation for subsequent security policy formulation, risk assessment, and compliance audit.

• The API Data Security Protection feature identifies sensitive data in application requests, labels application request logs containing sensitive data, and identifies security risks.
• The application access control capability performs multi-factor authentication on data access by visitors and implements different security response measures based on security policies.
• The application audit function records and audits various information about application requests, helping customers improve the accuracy of the audited contents.