Function Overview_Database Security Service

Help Center/ Database Security Service/ Function Overview

Function Overview

DBSS
- Database Security Service (DBSS) is an intelligent database security service. Based on the machine learning mechanism and big data analytics technologies, it can audit your databases, detect SQL injection attacks, and identify high-risk operations.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  DBSS
  
  Getting Started with Database Audit
  
  Purchasing Database Audit
  
  Functions
Database Configuration
- Database audit supports RDS databases and self-built databases on ECS/BMS on HUAWEI CLOUD. After purchasing a database audit instance, you need to add the database to be audited to the instance. After adding a database, you can view, disable or delete the database.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Add a Database
  
  Managing Databases and Agents
Agent Configuration
- Add a new agent or choose an existing agent for the database to be audited, depending on your database type. The agent will obtain database access traffic, upload traffic statistics to the audit system, receive audit system configuration commands, and report database monitoring data.
  You can enable database audit only after the agent is installed. The agent can be installed in Linux and Windows.
  After adding an agent to the database, you can view, disable or delete the agent.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Add an Agent
  
  Installing an Agent (Linux OS)
  
  Installing an Agent (Windows OS)
  
  Managing Databases and Agents
  
  What Should I Do If the Communication Between the Agent and Database Audit Instance Is Abnormal?
Security Group Rule Configuration
- Configure TCP (port 8000) and UDP (ports 7000 to 7100) in the security group inbound rule of the database audit instance to allow the agent to communicate with the audit instance.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Add a Security Group Rule
Audit Scope Configuration
- By default, database audit complies with a full audit rule, which is used to audit all databases that are successfully connected to the database audit instance. You can also add audit scope and specify the databases to be audited.
  After adding an audit scope, you can view, enable, edit, disable, or delete the audit scope.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Adding Audit Scope
  
  Management an Audit Scope
SQL Injection Detection
- SQL injection detection is enabled by default. You can enable or disable the detection rules. One piece of audited data can match only one SQL injection detection rule.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Enabling or Disabling SQL Injection Detection
Privacy Protection
- To mask sensitive information in entered SQL statements, you can enable the function of masking privacy data and configure masking rules to prevent sensitive information leakage.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Configuring Privacy Data Protection Rules
Alarm Notifications
- After configuring alarm notifications, you can receive DBSS alarms on database risks. If this function is not enabled, you have to log in to the management console to view alarms.
  Alarm notifications may be mistakenly blocked. If you have enabled notifications but not received any, check whether they have been blocked as spasms.
  The system collects alarm statistics every 5 minutes and sends alarm notifications (if any).
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Configuring Alarm Notifications
Log Audit
- Database audit logs can be backed up to OBS buckets to achieve high availability for disaster recovery. You can back up or restore database audit logs as required. After backing up audit logs, you can view or delete backup audit logs.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Backing Up and Restoring Database Audit Logs
  
  Managing Backup Audit Logs
Instance Management
- After purchasing a database audit instance, you can view, enable, restart, and disable the instance.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Managing Database Audit Instances
Risky Operations Management
- After adding a risky operation, you can view the risk, enable, edit, disable, or delete the risky operation, or set its priority.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Adding Risky Operations
  
  Managing Risky Operations
Report Management
- By default, database audit complies with a full audit rule, which is used to audit all databases that are successfully connected to the database audit instance. After connecting the database to the database audit instance, you can view report templates and report results.
  
  Available in CN-Hong Kong, AP-Bangkok, AP-Singapore, AP-Jakarta, AF-Johannesburg, AF-Cairo, TR-Istanbul, ME-Riyadh, LA-Santiago, LA-Mexico City2, EU-Paris, AP-Kuala Lumpur-OP6, LA-Sao Paulo1, UAE-Abu Dhabia, CN North-Beijing4, CN East-Shanghai1, CN Southwest-Guiyang1, CN East-Qingdao, CN East2, EU-Dublin
  
  Managing Audit Reports

Feedback

Was this page helpful?

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot

Function Overview

DBSS

Database Configuration

Agent Configuration

Security Group Rule Configuration

Audit Scope Configuration

SQL Injection Detection

Privacy Protection

Alarm Notifications

Log Audit

Instance Management

Risky Operations Management

Report Management

Feedback

Was this page helpful?