How to purchase DSC - Data Security Center - Alibaba Cloud Documentation Center

Data Security Center (DSC) provides data-centric security risk management capabilities, including data sorting, data masking, data auditing, and alerting. This topic describes how to purchase DSC.

Supported regions and database types

Before you purchase DSC, make sure that the regions and database types are supported by DSC.

For more information about the regions supported by DSC, see Supported regions.
For more information about the database types supported by DSC, see Supported database types.
For more information about differences in features of different DSC editions, see Differences between the features of different editions.

Procedure

Go to the DSC buy page by using your Alibaba Cloud account.

Configure parameters based on your business requirements.

The following table describes the parameters.

Important

After you purchase an edition of DSC, you cannot purchase the same edition again. You can upgrade the specifications of only the current edition. By default, the edition of DSC is Enterprise after you upgrade the specifications. To upgrade the specifications, go to the DSC console. On the Overview page, click Upgrade and complete the upgrade.
When you purchase DSC Enterprise Edition, you must set the Database Management or Storage data management parameter to Enable and purchase the related capacity.

Parameter	Description
Edition	The edition of DSC that you want to purchase. Valid values: Enterprise Edition: This edition meets the requirements for data auditing and personal information protection in Multi-Level Protection Scheme (MLPS) 2.0. This edition supports comprehensive security auditing for cloud-native data types, such as ApsaraDB RDS, Object Storage Service (OSS), MaxCompute, AnalyticDB for PostgreSQL, AnalyticDB for MySQL, Tablestore, and ApsaraDB for OceanBase and helps you identify sensitive data and classify the data. This edition supports features such as data leak alerting, data masking, and data watermark-based tracing. You can activate and deploy DSC in the DSC console with a few clicks. This allows you to access core assets in an efficient manner. Value-added Plan: You can purchase the data detection and response feature and the log storage feature. If you purchase only the data detection and response feature, you can use the data insights feature and the data auditing feature free of charge for one month. If you want to use the data insights and data auditing features after the one-month free trial period ends, you must upgrade DSC to Enterprise Edition.
Database Management	A basic feature. Specifies whether to enable the database management feature. Only DSC Enterprise Edition supports the feature. Valid values: Enable: enables the database management feature. You can use DSC to manage and protect databases. Disable: disables the database management feature.
Instances	A basic feature. The maximum number of database instances that DSC can protect. Only DSC Enterprise Edition supports the feature. Valid values: 1 to 2000. Note You can configure the Instances parameter only if you select Enable for the Database Management parameter.
Storage Data Management	A basic feature. Specifies whether to enable the storage data management feature. Only DSC Enterprise Edition supports the feature. Valid values: Enable: enables the storage data management feature. You can use DSC to protect storage data. Disable: disables the storage data management feature. The storage data includes the data stored in OSS buckets and Simple Log Service projects.
OSS Authorization Quota	A basic feature. The size of the OSS data and the log data in Simple Log Service that you want DSC to protect. Only DSC Enterprise Edition supports the feature. Valid values: 1000 to 10000000. Unit: GB. You can increase the value in increments of 1,000 GB. You can enable only the data identification feature for the data in Simple Log Service that you authorize DSC to access. For DSC Enterprise Edition, the storage protection capacity is deducted based on 50% of the size of data in Simple Log Service for which DSC is authorized to access. For example, if the size of the data in Simple Log Service is 1000 GB, you can set the OSS Authorization Quota parameter to 500 GB when you purchase DSC Enterprise Edition. For DSC Free Edition, the storage protection capacity is the size of the data in Simple Log Service. You can purchase the capacity based on your business requirements.
Data Detection and Response	A value-added feature. Specifies whether to enable the data detection and response feature for OSS data. By default, the feature is enabled. If you enable the data detection and response feature, 1 TB of OSS protection capacity is provided by DSC each month free of charge.
Data Detection and Response - OSS Protection Capacity	A value-added feature. After you enable Data Detection and Response, you must specify the size of OSS data that you want to protect. Valid values: 1 to 9999999999. Unit: TB.
Column Encryption	A value-added feature. Specifies whether to enable the column encryption feature. By default, this parameter is set to Yes.
Columns	A value-added feature. The number of columns that you want to encrypt per month. The value must be in increments of 5 columns.
Log Storage	A value-added feature. Specifies whether to enable the log storage feature. By default, DSC provides 200 GB of log storage each month for each database instance included in your purchased database instance quota and 50 GB of log storage each month for each TB of OSS protection capacity. Enterprise: Number of database instances = the value that is specified by Instances in basic features OSS protection capacity = Value of Storage Protection Capacity provided in basic features + Value of Data Detection and Response - OSS Protection Capacity in Value-added Module Value-added Plan Number of database instances = 0 OSS protection capacity= Value of Data Detection and Response - OSS Protection Capacity in Value-added Module If the default log storage capacity provided each month cannot meet your business requirements, you can enable Log Storage and specify a value for the Extended Log Storage Capacity parameter. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Extended Log Storage Capacity	A value-added feature. If you enable Log Storage, you must specify a value for the parameter. Valid values: 1 to 500. Unit: TB. Warning You must specify a value for Extended Log Storage Capacity based on your business requirements. If the total log storage capacity is exhausted, DSC no longer stores subsequent logs.
Subscription	The subscription duration.

Click Buy Now and complete the payment.